Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement support for Auth0 both in API and normal login #3125

Merged
merged 19 commits into from
Feb 24, 2024
Merged

Implement support for Auth0 both in API and normal login #3125

merged 19 commits into from
Feb 24, 2024

Commits on Feb 24, 2024

  1. Support Auth0 export

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    fd1d543 View commit details
    Browse the repository at this point in the history

  2. Move API-auth to Auth0 JWT

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    92b9ec2 View commit details
    Browse the repository at this point in the history

  3. Support login with Auth0 in normal OW4 

    Design is a TODO, and now a _lot_ of stuff should be removed
    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    b59063e View commit details
    Browse the repository at this point in the history

  4. Remove ways to edit a user-profile

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    5ba6393 View commit details
    Browse the repository at this point in the history

  5. Remove django-oidc-provider

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    ce5f0a5 View commit details
    Browse the repository at this point in the history

  6. Remove SSO-leftovers

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    2295ada View commit details
    Browse the repository at this point in the history

  7. Display email instead of username

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    b5e8570 View commit details
    Browse the repository at this point in the history

  8. Remove Slack app 

    Only exposed a single endpoint to make an invite-link to the slack
workspace, but has been failing for who knows how long.

Just remove it, essentially unused.
    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    6e2a146 View commit details
    Browse the repository at this point in the history

  9. Remove Mailinglists 

    This was intended to be used as a new source-of-truth or something for
the lists in Google Workspace.

The sync was never implemented.

We do not want more data sync.

Remove it.
    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    f2467b8 View commit details
    Browse the repository at this point in the history

  10. Remove references to .primary_email 

    It is the _same_ as `.email`, and with the change to Auth0 we will only
have one email on the accounts.
    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    b630df7 View commit details
    Browse the repository at this point in the history

  11. Move email-list-sync from a signal to save() 

    Now use .email
    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    8e5606f View commit details
    Browse the repository at this point in the history

  12. Stop server multiple emails over the API 

    For some reason we had both `/profile/emails` and `/user/emails`, which
appear to just duplicate functionality, while the `/user`-one allowed us
to change it?

Either way: we can already directly modify `.email` through e.g.
UserUpdateViewSet, so no need to make a new endpoint.
    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    a293478 View commit details
    Browse the repository at this point in the history

  13. Sync email-changes to Auth0 

    The email-sending appears to not actually result in emails being sent?

This should maybe have some more error-handling?
    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    fa2c380 View commit details
    Browse the repository at this point in the history

  14. Note that email-changing has been moved to OWF

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    858e051 View commit details
    Browse the repository at this point in the history

  15. Make endpoints not rely on username

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    89ebe8b View commit details
    Browse the repository at this point in the history

  16. Default BASE_URL to one that is usabel locally 

    This is mostly relevant if you get directed after logout with Auth0
    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    ba1ea32 View commit details
    Browse the repository at this point in the history

  17. Sync var-names with doppler

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    02a19d3 View commit details
    Browse the repository at this point in the history

  18. Suport logging out of Auth0-SSO-session

    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    4c66a5f View commit details
    Browse the repository at this point in the history

  19. Modify mozzila-auth for our uses 

    - Support creating a user with info from /userinfo
    - Including from API-call by chaning DRF-auth to mozilla
- Username is a variant of the email, note that this might lead to
  usernames that were previously invalid.
- Verify that access_token-audience is for us
- Do not call /userinfo on _every_ request, since we can find the user
  from `sub`, but use it if we need to create a new user
- Update email if it has diverged when we have already gotten an
  id_token (aka login directly to OW4)
    @henrikhorluck
    henrikhorluck committed Feb 24, 2024
    Configuration menu
    Copy the full SHA
    65a7bc5 View commit details
    Browse the repository at this point in the history