Add webhook provider (Proof of Concept)

[tmayr]

This is 101% a proof of concept that needs to be cleaned up, it has my prettier configuration applied so even the review is a bit messy, just focus on the big code blocks which were added more than anything.

There's a lot of repetition as I mentioned, because the email provider is 90% similar, so taking on the same flow, I mostly copied/pasted and made it a bit more generic with taking attribute and value instead of hardcoding email and assuming it.

It also changes how the identifier is used, before it was just the email value, now its attribute:value

For now, phoneNumber is hardcoded in some parts, but thinking this would come from the provider configuration (say you specify { validationAttribute } or something like that, so you could specify whatever you want.

Will leave some comments on the blocks that are actually behavior change

@iaincollins Take a look whenever you can!, will wait for v3 before polishing this based on whatever comes up.

Refs #406

[vercel]

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/iaincollins/next-auth-docs/8abmtzic8
✅ Preview: https://next-auth-docs-git-fork-tmayr-add-webhook-provider.iaincollins.vercel.app

[tmayr]

The name is "inherited" from the email provider, nothing says it couldn't change.

You would do whatever you want here, like, sending the email, sending an sms, hitting a webhook

[tmayr]

phoneNumber is hardcoded here, need to find out a way to pass in the attribute to this method, and obviously names are off because of copying/pasting email behavior

[tmayr]

This is the main change from the email, getUserByAttribute let's you specify an attribute name and a value instead of assuming email

[tmayr]

Need to figure out how to deal with this, maybe have a verificationProperty on the provider so we know which field to set to true when verification.

[tmayr]

Exact same as src/server/lib/signin/email.js but recieves an extra value ((attribute, value, provider, options) instead of (email, provider, options))

[tmayr]

We change the identifier here to attribute:value to keep track of what we're validating in the db

[tmayr]

This would read from the body to get the correct info and pass it on, implementation is missing mainly because of this being a PoC, not sure how similar its gonna be to email.

[tmayr]

Left tons of comments on the relevant parts, excuse the prettier mess!

[tmayr]

Basically the same as getUserByEmail but with 2 params

[iaincollins]

Thank you for all the comments on this! <3

[iaincollins]

Still working on the backlog, but will circle back to this!

[stale]

Hi there! It looks like this issue hasn't had any activity for a while. It will be closed if no further activity occurs. If you think your issue is still relevant, feel free to comment on it to keep ot open. Thanks!

[balazsorban44]

Hi @tmayr, would you be interested in getting this up-to-date?

[tmayr]

@balazsorban44 Sure, any insights on what has changed (anything worthy mentioning)/or if theres any extra modifications the team would like me to apply/explore conceptually?

[balazsorban44]

Hi there! So after a recent chat with another maintainer of this repo, we discussed how we could expand on the email provider to support similar ways of authentication, like SMS as well. I am going to close this PR for now, and soon create an RFC for this new provider, which we probably will call something like token provider or something. Your PR has had an influence on me, so thank you!