Skip to content

WIP: Spike remove gds sso #769

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
thomasiles wants to merge 4 commits into from
Closed

WIP: Spike remove gds sso #769

thomasiles wants to merge 4 commits into from

Conversation

@thomasiles
Copy link
Contributor

@thomasiles thomasiles commented Nov 16, 2023

This is a quick spike to look at what the minimum amount of needed to remove the gds sso gem from our application.

It's not complete and not very tested. It works fine but:

  • not all tests have been removed
  • nothing has been refactored
  • there are some odd bits from the gem which I've carried over but probably need questioning
  • I haven't removed any columns from the User table

Tom Iles added 4 commits November 15, 2023 16:49
Remove the CDDO_SSO auth provider
93ce059 
We no longer use this method of authenticating users so can remove the
code and tests that enable it.
Remove omniauth_openid_connect gem
83b8604 
This Gem was used to support the cddo_sso authentication method and is
no longer used.
Add mock_user strategy for development
1b88166
Remove GDS SSO Gem
d796488 
Remove the Gem, add bits missing from the gem itself.
@sonarqubecloud
Copy link

sonarqubecloud bot commented Nov 16, 2023

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

thomasiles
thomasiles commented Nov 16, 2023
View reviewed changes
app/models/user.rb

def clear_remotely_signed_out!
# rubocop:disable Rails/SkipsModelValidations
update_attribute(:remotely_signed_out, false)
Copy link
Contributor Author

@thomasiles thomasiles Nov 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

not sure why update_attribute is used here - maybe to make sure it happens despite the state the user is in?

Copy link
Member

@lfdebrux lfdebrux Nov 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think we need the remotely_signed_out! stuff? The existing stuff is reliant on the GOV.UK Signon servers calling an API exposed by gds_sso gem.

thomasiles
thomasiles commented Nov 16, 2023
View reviewed changes
app/service/navigation_items_service.rb
if user_provider == :gds
gds_sign_out_path
elsif %i[auth0 cddo_sso mock_gds_sso].include? user_provider
if %i[auth0 mock_gds_sso].include? user_provider
Copy link
Contributor Author

@thomasiles thomasiles Nov 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this can be updated

thomasiles
thomasiles commented Nov 16, 2023
View reviewed changes
config/initializers/authentication.rb
end
end

Warden::Manager.serialize_from_session do |(uid, auth_timestamp)|
Copy link
Contributor Author

@thomasiles thomasiles Nov 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we could add more tests around these parts lifted from gds_sso

thomasiles
thomasiles commented Nov 16, 2023
View reviewed changes
spec/requests/authentication_controller_spec.rb
expect(controller_spy).to have_received :callback_from_omniauth
end
# expect(controller_spy).to have_received :callback_from_omniauth
# end
Copy link
Contributor Author

@thomasiles thomasiles Nov 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is a gds_sso specific test which I'm not sure we need

thomasiles
thomasiles commented Nov 16, 2023
View reviewed changes
spec/requests/authentication_controller_spec.rb
expect(controller_spy).to have_received :callback_from_omniauth
end
# expect(controller_spy).to have_received :callback_from_omniauth
# end
Copy link
Contributor Author

@thomasiles thomasiles Nov 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is a gds_sso specific test which I'm not sure we need

@thomasiles thomasiles marked this pull request as draft November 23, 2023 10:44
@theseanything
Copy link
Contributor

theseanything commented Jul 28, 2025

@thomasiles do we still need this or can this be closed?

@thomasiles
Copy link
Contributor Author

thomasiles commented Jul 30, 2025

@thomasiles do we still need this or can this be closed?

We haven't done the work but I think it can be closed as it's so old.

@thomasiles thomasiles closed this Jul 30, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lfdebrux lfdebrux lfdebrux left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@thomasiles @theseanything @lfdebrux