Auth appended to the routing, no_auth + database_auth injected #5789
Conversation
| children: React.ReactNode; | ||
| } | ||
|
|
||
| const DatabaseAuthProvider = ({ children }: AuthProviderProps) => { |
There was a problem hiding this comment.
Why use the context and provider indirection? If the provider has the same interface you only construct this one and the context is the same for all of them?
There was a problem hiding this comment.
We create context in the AuthContext.ts file, which then is accessed in the application through provider, where we also create distinction in the logic between each implementation. I don't know if I explained it clearly enough.
| value={{ | ||
| ...defaultAuthContext, | ||
| getToken: () => { | ||
| return "No token"; |
There was a problem hiding this comment.
If you have refactored the file with the interface, you'll see that you won't need the override of the value here and can simply either return the <GetAuthContext.Provider>{children}</GetAuthContext.Provider>
or do that in the switch case and remove this file; choice is yours on that. I don't mind having it in a separate file for matter of cleaner cut.
There was a problem hiding this comment.
As far as I know it's not possible to remove assignment of the "value" property. the interface assigned to the context is correct, but still errors is there:
Property 'value' is missing in type '{ children: ReactNode; }' but required in type 'ProviderProps<AuthContextInterface>'
There was a problem hiding this comment.
I don't get why you need to override the defaults for no auth when no auth is the default. You can use the context as is in that case.
const authContext= useContext(AuthContext);
// rest of code
return (
<AuthContext.Provider value={authContext}>
{children}
</AuthContext.Provider>
)
src/UI/Dependency/Dependency.tsx
Outdated
| @@ -87,6 +94,7 @@ export const DependencyProvider: React.FC<{ | |||
| authHelper: authHelper || new DummyAuthHelper(), | |||
| archiveHelper: archiveHelper || new DummyArchiveHelper(), | |||
| authController: authController || new DummyAuthController(), | |||
| useAuth: useAuth || defaultAuthContext, | |||
There was a problem hiding this comment.
defaultAuthContext not needed anymore if it's for free in the initialization in the authContext.ts file
There was a problem hiding this comment.
dependencies: Partial<Dependencies> indicates that any of dependencies properties can be undefined so it's required for the sake of the typescript(I think also tests would react differently, but that I didn't check, and I'm not 100% sure)
There was a problem hiding this comment.
If you update authContext.ts based on the example I gave you, useAuth will never be undefined because it has a default initialization, which is technically the noAuth one.
There was a problem hiding this comment.
but undefined that is addressed here doesn't come from the useAuth itself but from the Partial<Dependencies> . authContext file got correct type
src/Data/Auth/AuthProvider.tsx
Outdated
| /** | ||
| * AuthProvider component renders the appropriate authentication provider based on the provided config | ||
| * | ||
| * @param config - The authentication configuration. |
There was a problem hiding this comment.
This "interface" should be 100% generic. I see config which makes me assume that this is the configuration provided by the backend but then there is still a keycloak specific parameter. This should not be the case:
- It should be clear what
configis and I cannot deduce that from the code, the naming or the comments - We should not have any authentication method specific parameters in here anymore.
There was a problem hiding this comment.
changed, and removed url parameter
| /** | ||
| * Interface for the authentication context properties. | ||
| */ | ||
| export interface GetAuthProvider { |
There was a problem hiding this comment.
I don't understand why an interface can have an action verb (get) in it's name. It describes how to interact with code that implements this.
Co-authored-by: Bart Vanbrabant <[email protected]>
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
src/Data/Auth/KeycloakProvider.tsx
Outdated
| method: "oidc"; | ||
| } | ||
|
|
||
| export interface LocalConfig { |
There was a problem hiding this comment.
Why is this one in the KeycloakProvider?
There was a problem hiding this comment.
That was the top place that requires it, and when I had it in AuthProvider file it created circular dependency and I didn't feel like type.ts file is required here, but I can be mistaken.
There was a problem hiding this comment.
Moving an export to another file should not be triggering circular dependency. If you have a circular dep issue, you might have forgotten to remove the import statement if you moved it to the file where it's used or adjust it.
There was a problem hiding this comment.
it does, at least madge complains when the interface is in the authprovider, app and tests works just fine
There was a problem hiding this comment.
I believe it's only used in the authProvider component, so either;
- don't export it and declare it as an interface inside AuthProvider.
- since we are using a switch case on the config.method, perhaps this distinction isn't needed anymore and we can go for a more generic type which has the different possibilities for '
method : "oidc" | "database" | "other" | undefined
Edit: you have it in your tests, in two place, so AuthProvider can export it there, but you need to remove the LocalConfig from your imports in that file.
There was a problem hiding this comment.
It's reused, and in case of "oidc" the rest of the config is being passed to the keycloakProvider to create keycloak instance, I'll put it to the types.ts file to have it in "more correct" place
src/Data/Auth/AuthProvider.tsx
Outdated
| return <DatabaseAuthProvider>{children}</DatabaseAuthProvider>; | ||
| case "oidc": | ||
| return ( | ||
| <KeycloakProvider config={config}> |
There was a problem hiding this comment.
This doesn't make sense to me. Any reason why you wrapped it like this instead of having the entire implementation in one file?
There was a problem hiding this comment.
I tried it, but when it was in one file I couldn't reach the keycloak instance from the keycloakprovider. The logic has to be one level below initialisation of the context I guess
There was a problem hiding this comment.
A full application in React could hypothetically be written in one single component, we are splitting it up for readability and organization, but technically speaking, everything that can be achieved with multiple components can be done in one.
If you can't figure it out, which is fine, make a ticket for it, and at least, place all the elements/wrappers/parts concerning Keycloak in on single file. You should only call one Provider for Keycloak here.
There was a problem hiding this comment.
Of course it could be done, but then there would be no need for useContext. And as far as I know and searched context provider has to be one level higher that the component where we want to use given context.
I'll merge the files.
oss-tests results
|
| <ServiceInventory serviceName={service.name} service={service} /> | ||
| </StoreProvider> | ||
| </DependencyProvider> | ||
| </AuthProvider>{" "} |
There was a problem hiding this comment.
| </AuthProvider>{" "} | |
| </AuthProvider> |
| <StyledDiv> | ||
| <StyledDiv> | ||
| <div> | ||
| {authHelper.isDisabled() ? null : ( |
There was a problem hiding this comment.
{!authHelper.isDisabled() && <StyledText>{authHelper.getUser()}</StyledText>}
src/UI/Root/Root.tsx
Outdated
| import { ReactQueryDevtools } from "@tanstack/react-query-devtools"; | ||
| import { LoginPage } from "@/Slices/Login"; | ||
| import { DependencyContext } from "@/UI/Dependency"; | ||
| import { SearchSanitizer } from "@/UI/Routing"; | ||
| import { GlobalStyles } from "@/UI/Styles"; | ||
| import { NotFoundPage } from "@S/NotFound/UI"; | ||
| import { KeycloakProvider, PageFrame, Initializer } from "./Components"; | ||
| import RouteOutlet from "../Routing/RouteOutlet/RouteOutlet"; |
There was a problem hiding this comment.
Why have a separate folder for RouteOutlet?
And if you really want a separate folder, it should use an index file.
| ); | ||
| }; | ||
|
|
||
| export default RouteOutlet; |
There was a problem hiding this comment.
avoid export defaults
| <StyledDiv> | ||
| <StyledDiv> | ||
| <div> | ||
| {!authHelper.isDisabled() ? ( |
There was a problem hiding this comment.
{!authHelper.isDisabled() && {authHelper.getUser()}}
There's no need for the ternary here. You changed the wrong line, there was nothing wrong with line 47.
src/UI/Routing/RouteOutlet/index.ts
Outdated
There was a problem hiding this comment.
I still don't see the point in having a specific folder for the RouteOutlet. But fine.
Co-authored-by: Lukas <[email protected]>
Co-authored-by: Lukas <[email protected]>
Co-authored-by: Lukas <[email protected]>
…sole into issue/5759-auth-refactor
|
Processing this pull request |
|
Pull request rejected by merge tool. No change entry file found |
|
Processing this pull request |
…nable and adjustable for new authentication providers (Issue #5759, PR #5789) # Description Auth appended to the routing, no_auth injected, database_auth partially injected. Request for the review as proposed to just verify if the approach is correct with what was agreed closes #5759 # Self Check: Strike through any lines that are not applicable (`~~line~~`) then check the box - [ ] Attached issue to pull request - [ ] Changelog entry - [ ] Code is clear and sufficiently documented - [ ] Sufficient test cases (reproduces the bug/tests the requested feature) - [ ] Correct, in line with design - [ ] End user documentation is included or an issue is created for end-user documentation (add ref to issue here: )
|
Merged into branches master, iso7 in 36a46bb |
Description
Auth appended to the routing, no_auth injected, database_auth partially injected.
Request for the review as proposed to just verify if the approach is correct with what was agreed
closes #5759
Self Check:
Strike through any lines that are not applicable (
~~line~~) then check the box