Fixes redirect on login (#6900) #6911
Conversation
|
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
✅ Deploy Preview for care-egov-staging ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
|
not sure why run failed since it passed on local, looking into it.
|
|
Very likely because of the hardcoded UUID itself. Such an entity does not exist in cypress environments database. |
Hmm, How do we plan on dealing with that? Should we just redirect them to the same page and bring up the login screen? |
|
You could do the following:
|
|
So that means, the only code change required to fix this would be: 
|
The new redirector function doesn't check for a redirect param anymore so, There'll be that to fix as well |
as required clicking on the button signs out and redirects to the page which then loads a login screen since the user is signed out, In the other case that a query param isn't present the url will just be |
|
Sorry for the oversight before added a check to ensure that the redirect param redirects to a site that has the same origin as the current site, Not using this could have let malformed urls to be able to redirect to any sites they please ,potentially malicious. |
|
@rithviknishad This new function works with both the redirect param and the direct urls , When an invalid redirect param is provided with a valid base url, The app chooses to discard the param and simply navigate to the valid base url Instead. The session expired redirects to the redirect param if available. It seems like there should be a test for the redirect param as well? |
|
Didn't this one line change (#6911 (comment)) alone solve the original issue? Was there some other issues? |
I did change the line to that but there had to be the reserved URLs change because of that rest much isn't changed. |
|
@rithviknishad The tests should work now. |
nihal467
added
cypress passed
needs review
needs testing
and removed
needs testing
labels
|
the page is going into an infinite loop on the expired session, to replicate the bug do the following steps
|
nihal467
added
test failed
changes required
and removed
needs testing
needs review
labels
Can replicate will try to figure it out. |
export default function SessionExpired() {
const { signOut, user } = useAuthContext();
const isAuthenticated = Boolean(user);
const navigate = useNavigate();
const { t } = useTranslation();
useEffect(() => {
Notification.closeAllNotifications();
}, []);
if (isAuthenticated) {
navigate("/");
}The bug seems to be due to the navigate("/") and i cannot understand why we need it? If the session has expired do we not wish to log the user out on the same page and show session expired with a return to login? |
|
@rithviknishad @nihal467 @Ashesh3 The issue being session expired page navigates to "/" and then since the session has expired it loads the session expired page again anyway which again navigates to "/", If the token is invalid i don't understand the need for checking the IsAuthenthicated and returning a navigate. |
|
Hi, This pr has been automatically marked as stale because it has not had any recent activity. It will be automatically closed if no further activity occurs for 7 more days. Thank you for your contributions. |
|
The bug also happens on the live version of care. https://care.ohc.network hence wasn't introduced by this pr. |
|
Hi, This pr has been automatically marked as stale because it has not had any recent activity. It will be automatically closed if no further activity occurs for 7 more days. Thank you for your contributions. |
|
Hi, @gigincg, @nihal467, @khavinshankar, @mathew-alex, This pr has been automatically closed because it has not had any recent activity. Thank you for your contributions. Feel free to repopen the pr. |
Proposed Changes
@coronasafe/care-fe-code-reviewers @coronasafe/code-reviewers
Merge Checklist