Jonathan Roebuck
fec31bdde5
feat(auth-node): add OAuthAuthenticatorLogoutResult type for provider logout redirects
...
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com >
Signed-off-by: Jonathan Roebuck <jroebuck@spotify.com >
2026-03-31 16:20:23 +01:00
Jon Koops
fa550786b0
fix: use schema-first generic pattern for Zod type compatibility
...
Refactor `SignInResolverFactoryOptions` and `createSchemaFromZod` to use
`TSchema extends ZodType` instead of `ZodSchema<Output, Def, Input>`,
avoiding "excessively deep" TypeScript inference errors when multiple
Zod copies are resolved in a project.
Signed-off-by: Jon Koops <jonkoops@gmail.com >
2026-03-26 16:31:41 +01:00
Gabriel Dugny
e6c41459f5
chore: Switch some zod imports to type only
...
Signed-off-by: Gabriel Dugny <gabriel.dugny@believe.com >
2026-03-17 16:48:43 +01:00
Gabriel Dugny
49171c9de4
chore: Update all imports to zod/v3
...
Signed-off-by: Gabriel Dugny <gabriel.dugny@believe.com >
2026-03-17 16:48:42 +01:00
Fredrik Adelöw
7455dae884
require the use of node prefix on native imports
...
Signed-off-by: Fredrik Adelöw <freben@gmail.com >
2026-01-26 13:22:53 +01:00
Jon Koops
4eeba9ed61
Upgrade zod-validation-error to version 4
...
Signed-off-by: Jon Koops <jonkoops@gmail.com >
2026-01-14 14:46:55 +01:00
Dominik Bargowski
b35f8b2ac8
fix(auth): fix edge case related to new chunked oauth token cookie having less chunks than previous one and refactor for readability
...
Signed-off-by: Dominik Bargowski <dominik.bargowski@gmail.com >
2025-12-10 19:58:31 +01:00
Jessica He
e9dd634664
fix(auth): update cookie deletion logic for chunked cookies
...
Signed-off-by: Jessica He <jhe@redhat.com >
2025-12-05 09:18:05 -05:00
Fredrik Adelöw
2e09a29a40
improve auth flake
...
Signed-off-by: Fredrik Adelöw <freben@gmail.com >
2025-12-03 12:32:36 +01:00
Jessica He
2389358126
fix(auth): remove leading dot in auth cookie cleanup
...
Signed-off-by: Jessica He <jhe@redhat.com >
2025-11-24 12:25:18 -05:00
Paul Schultz
05f60e1e0a
refactor: convert constructor parameter properties for erasableSyntaxOnly compatibility
...
Signed-off-by: Paul Schultz <pschultz@pobox.com >
2025-10-14 08:29:21 -05:00
Jessica He
3aff9e1213
remove domain attribute to set OAuth cookies as host-only
...
Signed-off-by: Jessica He <jhe@redhat.com >
2025-08-19 15:24:18 -04:00
Fredrik Adelöw
0169b23ed3
just a few more circular dependencies
...
Signed-off-by: Fredrik Adelöw <freben@gmail.com >
2025-06-16 10:43:28 +02:00
Jessica He
5cc1f7f3ed
Address feedback
...
Signed-off-by: Jessica He <jhe@redhat.com >
2025-05-07 15:19:49 +09:00
Jessica He
c30d1a9963
introduce dangerouslyAllowSignInWithoutUserInCatalog auth resolver config
...
Signed-off-by: Jessica He <jhe@redhat.com >
2025-04-30 10:35:39 +09:00
Patrik Oldsberg
332e934112
auth-node: add optional identity to sign-in result
...
Signed-off-by: Patrik Oldsberg <poldsberg@gmail.com >
2025-04-23 19:11:09 +02:00
Patrik Oldsberg
b6702ea5a2
auth-backend: move getDefaultOwnershipEntityRefs to resolver context
...
Signed-off-by: Patrik Oldsberg <poldsberg@gmail.com >
2025-02-27 13:38:19 +01:00
Ben Lambert
620de76e57
Merge pull request #28800 from jmadureira/oauth_authenticate_errors
...
Handle errors during an oauth start stage
2025-02-18 15:34:57 +01:00
Patrik Oldsberg
ab9a6fb321
auth-node: add scopeAlreadyGranted field
...
Signed-off-by: Patrik Oldsberg <poldsberg@gmail.com >
2025-02-12 12:39:54 +01:00
João Madureira
5838e02101
Fixed some styling issues
...
Signed-off-by: João Madureira <jpmadureira@gmail.com >
2025-02-11 13:47:22 +00:00
João Madureira
3b494fa900
Handle errors during an oauth start stage
...
Signed-off-by: João Madureira <jpmadureira@gmail.com >
2025-02-11 13:21:39 +00:00
Jessica He
61f464e864
support user configuration of auth cookie max age
...
Signed-off-by: Jessica He <jhe@redhat.com >
2025-01-28 12:07:03 -05:00
Patrik Oldsberg
f5de08bca8
Merge pull request #28241 from backstage/rugvip/fixes
...
internal type fixes
2024-12-24 10:44:37 +01:00
Fredrik Adelöw
8379bf4a80
remove PluginDatabaseManager and PluginEndpointDiscovery
...
Signed-off-by: Fredrik Adelöw <freben@gmail.com >
2024-12-21 20:49:21 +01:00
Fredrik Adelöw
d9d62ef90c
remove usages of some backend-common helpers
...
Signed-off-by: Fredrik Adelöw <freben@gmail.com >
2024-12-21 20:39:23 +01:00
Patrik Oldsberg
b664b2ae09
internal type fixes
...
Signed-off-by: Patrik Oldsberg <poldsberg@gmail.com >
2024-12-19 22:04:20 +01:00
Patrik Oldsberg
c907440f8a
auth-{backend,node}: improved error forwarding from passport helpers
...
Signed-off-by: Patrik Oldsberg <poldsberg@gmail.com >
2024-11-26 19:03:49 +01:00
Patrik Oldsberg
89401bc74f
Merge pull request #25952 from allegro-dbargowski/cookie-chunking-for-too-big-cookies-auth-node
...
Fix support for cookies bigger than 4KB in size in plugin-auth-node
2024-10-22 11:27:18 +02:00
Patrik Oldsberg
387acc4130
Merge pull request #25823 from stephenglass/fix-redirect-error-handling
...
Fix error handling using auth redirect flow
2024-10-14 16:26:23 +02:00
Stephen Glass
5e5e4a850c
fix redirect error encoding
...
Signed-off-by: Stephen Glass <stephen@stephen.glass >
2024-10-08 09:25:02 -04:00
Patrik Oldsberg
217458a9a8
auth-node: add allowedDomains options for emailLocalPartMatchingUserEntityName + fixes
...
Signed-off-by: Patrik Oldsberg <poldsberg@gmail.com >
2024-10-08 01:12:10 +02:00
Stephen Glass
bbc261bb10
Merge branch 'master' of https://github.com/backstage/backstage into fix-redirect-error-handling
2024-10-01 23:12:47 -04:00
Stephen Glass
4935d29d15
change code to use search params instead of cookie
...
Signed-off-by: Stephen Glass <stephen@stephen.glass >
2024-10-01 23:12:10 -04:00
Gustaf Räntilä
f5276a21c7
Adapted to PR feedback
...
Signed-off-by: Gustaf Räntilä <g.rantila@gmail.com >
2024-09-13 16:02:29 +02:00
Gustaf Räntilä
6f409b7942
fix: Try matching emails without plus addressing
...
Signed-off-by: Gustaf Räntilä <g.rantila@gmail.com >
2024-09-13 11:27:15 +02:00
Camila Belo
d908d8c246
feat: migrate auth0 provider to nbs
...
Signed-off-by: Camila Belo <camilaibs@gmail.com >
2024-09-09 10:53:31 +02:00
Dominik Bargowski
7c22e9458c
Handle edge cases related to refresh token cookie going under/over the limit.
...
Signed-off-by: Dominik Bargowski <dominik.bargowski@allegro.com >
2024-09-04 11:01:57 +02:00
Fredrik Adelöw
c46eb0fed2
Extend the "unable to resolve user identity" message
...
Signed-off-by: Fredrik Adelöw <freben@gmail.com >
2024-09-02 10:43:50 +02:00
Dominik Bargowski
a0a9a4a8f5
Fix support for cookies bigger than 4KB in size (i.e. refresh tokens).
...
Signed-off-by: Dominik Bargowski <dominik.bargowski@allegro.com >
2024-08-08 17:52:14 +02:00
Patrik Oldsberg
b8bbf061fd
Merge pull request #25254 from Zaperex/update-auth-node-signin-resolver
...
chore(auth-node): allow declarative signin resolvers to take precedence
2024-08-06 13:43:56 +02:00
Stephen Glass
155b901898
update test name
...
Signed-off-by: Stephen Glass <stephen@stephen.glass >
2024-07-29 00:47:32 -04:00
Stephen Glass
17c9a1a330
add test
...
Signed-off-by: Stephen Glass <stephen@stephen.glass >
2024-07-29 00:45:41 -04:00
Stephen Glass
5d8649d775
update param name
...
Signed-off-by: Stephen Glass <stephen@stephen.glass >
2024-07-28 23:28:13 -04:00
Stephen Glass
8542af998a
fix errors with auth redirect flow
...
Signed-off-by: Stephen Glass <stephen@stephen.glass >
2024-07-28 03:15:00 -04:00
Patrik Oldsberg
c5ce79a14c
Merge pull request #25569 from backstage/nbs10/rename-setup-request-handlers
...
[NBS 1.0]Rename `setupRequestMockHandlers` to `registerMswTestHooks`
2024-07-16 11:01:29 +02:00
Camila Belo
b82aff92aa
refactor(test-utils): deprecate the isDockerDisabledForTests function
...
Signed-off-by: Camila Belo <camilaibs@gmail.com >
2024-07-10 17:06:00 +02:00
Camila Belo
95a3a0b91c
refactor(test-utils): rename setupRequestMockHandlers to setupMswHandler
...
Signed-off-by: Camila Belo <camilaibs@gmail.com >
2024-07-10 15:45:49 +02:00
Olivier Liechti
aca86a6a00
Address review comments
...
Signed-off-by: Olivier Liechti <olivier.liechti@wasabi-tech.com >
2024-07-10 08:11:02 +02:00
Olivier Liechti
55c1a729ac
Simplify the bug fix, by implementing logic in the PassportHelper
...
Signed-off-by: Olivier Liechti <olivier.liechti@wasabi-tech.com >
2024-07-09 16:29:50 +02:00
Frank Kong
579afd0d32
chore(auth-node): allow declarative signin resolvers to take precedence
...
Signed-off-by: Frank Kong <frkong@redhat.com >
2024-06-14 18:33:50 -04:00