Allow anonymous users to read lessons (sign-in CTA for actions + shell)#10
Draft
Copilot wants to merge 6 commits into
Draft
Allow anonymous users to read lessons (sign-in CTA for actions + shell)#10Copilot wants to merge 6 commits into
Copilot wants to merge 6 commits into
Conversation
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
Copilot
AI
changed the title
[WIP] Allow anonymous users to read lesson pages
Allow anonymous users to read lessons (sign-in CTA for actions + shell)
May 26, 2026
Append a hash fragment to the OAuth callbackURL so the browser scrolls to the triggering button after the sign-in redirect completes. - RunBlock: useId() generates a stable per-instance id placed on the container div; the fragment is encodeURIComponent'd to handle the colon chars React inserts (:r0:, etc.). - CheckCard: the check's own id (already used as data-check-id) is promoted to the HTML id attribute and appended as-is (check ids are plain alphanumeric slugs, no encoding needed).
Author
Done in f39dbc8. Each CTA now appends a hash fragment to the
|
exekias
requested changes
May 26, 2026
Member
exekias
left a comment
exekias
left a comment
There was a problem hiding this comment.
Buttons don't work anymore, also the cursor doesn't change to the hand when hovering
The previous approach of embedding a hash fragment directly in the OAuth callbackURL (/lessons/slug#%3Ar0%3A) caused better-auth to silently reject the sign-in request, making the buttons appear to do nothing. The cursor was also missing because the classes lacked cursor-pointer. Changes: - Add ScrollToAnchor client component that reads a stored anchor ID from sessionStorage on mount and scrolls to the element - RunBlock: strip colons from useId() output (r0 instead of :r0:) so the HTML id is a safe URL fragment; call storeScrollAnchor() before signIn.social() instead of embedding the hash in the URL; add cursor-pointer to both Run and Sign-in-to-run buttons - CheckCard: same pattern — storeScrollAnchor(check.id) before the redirect; add cursor-pointer to both Check and Sign-in-to-check buttons - Lesson page: render <ScrollToAnchor /> so the stored anchor is consumed after the OAuth redirect lands back on the lesson
exekias
requested changes
May 26, 2026
Member
exekias
left a comment
exekias
left a comment
There was a problem hiding this comment.
almost there, I want to see the hand cursor also on the shell button
Author
Fixed in 6a5a938 — added |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Lesson pages currently redirect unauthenticated visitors to
/. This removes that gate so anyone can read lesson prose, while keeping every interactive action behind auth — surfaced in-context rather than as a hard redirect.Changes
app/lessons/[slug]/page.tsx— dropif (!session) redirect("/"). Session is now optional;passedCheckIdsshort-circuits to an empty set for anonymous users.isSignedInandcallbackURL(/lessons/<slug>) are threaded into component builders.app/sign-in-button.tsx— accept optionalcallbackURLprop (default:"/dashboard") so CTAs can return users to the lesson they were reading.components/lesson/mdx-components.tsx—buildLessonComponentsnow acceptsisSignedIn: booleanandcallbackURL: string, forwarded toRunBlockandCheckCard.components/lesson/RunBlock.tsx— swaps the ▶ Run button for a compact "Sign in to run" trigger when!isSignedIn. UsesuseId()to assign a stableidto the container; the OAuthcallbackURLincludes a hash fragment (#<encoded-id>) so the browser scrolls back to the block after sign-in.components/lesson/Check.tsx— swaps the Check button for "Sign in to check" when!isSignedIn. The check's ownidis promoted to the HTMLidattribute on the<aside>; the OAuthcallbackURLincludes#<check-id>so the browser scrolls back to the check card after sign-in.components/lesson/SandboxSection.tsx—userIdis nowstring | undefined; when absent, renders the unauthenticated panel and skipsensureBranchForLessonentirely (no Xata branch created for anonymous visitors).components/lesson/BranchPanel.tsx— addskind="unauthenticated"variant: a short message +<SignInButton callbackURL={lessonPath} />.API routes retain their existing
401guards unchanged.