Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Configure a default failure handler for GitHub OAuth #22852

Closed
wants to merge 1 commit into from
Closed

Configure a default failure handler for GitHub OAuth #22852

wants to merge 1 commit into from

Conversation

flying-robot
Copy link
Contributor

Currently we don't have a failure handler registered for GitHub OAuth. That results in customers being dropped off at a plaintext page for actions like canceling their OAuth integration midway[0].

This change fixes a number of paths, but there are others that can lead to the dreaded plaintext that are out of scope for this immediate change.

[0] https://sourcegraph.atlassian.net/browse/COREAPP-25

@flying-robot
Configure a default failure handler for GitHub OAuth.
aa7243f 
Currently we don't have a failure handler registered for GitHub OAuth.
That results in customers being dropped off at a plaintext page for
actions like canceling their OAuth integration midway[0].

This change fixes a number of paths, but there are others that can lead
to the dreaded plaintext that are out of scope for this immediate change.

[0] https://sourcegraph.atlassian.net/browse/COREAPP-25
@flying-robot flying-robot requested a review from a team July 14, 2021 16:58
@unknwon
Copy link
Member

unknwon commented Jul 15, 2021

Is it ready for review yet?

@flying-robot
Copy link
Contributor Author

@unknwon kind of 😄 I'm trying to see how much surgery needs doing from a product perspective, but fundamentally yeah give it a try and see if it avoids the dreaded plaintext final state.

unknwon
unknwon reviewed Jul 15, 2021
View reviewed changes
enterprise/cmd/frontend/internal/auth/githuboauth/provider.go
@@ -66,7 +66,9 @@ func parseProvider(p *schema.GitHubAuthProvider, db dbutil.DB, sourceCfg schema.
allowSignup: p.AllowSignup,
allowOrgs: p.AllowOrgs,
}, sessionKey),
nil,
http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
http.Redirect(w, req, "/", http.StatusTemporaryRedirect)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If we naively redirect... how would we debug/see failures like we have right now (i.e. the ugly plaintext)?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I found that a number of paths drop the user off in plaintext-land, so your question above is part of why I'm not really sure about this. It may be the case that the ticket needs to be re-scoped and addressed differently.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah, I just made a comment on JIRA: https://sourcegraph.atlassian.net/browse/COREAPP-25?focusedCommentId=12563, may help you a bit!

@flying-robot
Copy link
Contributor Author

superseded by #23083

@flying-robot flying-robot deleted the flying-robot/friendlier-oauth-redirect branch July 26, 2021 14:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@unknwon unknwon unknwon left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@flying-robot @unknwon