Conversation
bmquinn
left a comment
bmquinn
left a comment
There was a problem hiding this comment.
Works great, the email template is awesome! 👏
nusso whoami:
magic link whoami:
|
Since this is going into staging will we need to do some safe checking on the Next app before merge here? |
|
Also, can we go ahead and the provider to the chat metrics like we talked about? |
I wondered about this. What if we add a |
mbklein
force-pushed
the
5512-magic-link-auth
branch
from
bce49a7 to
3df6ac2
Compare
I'm fine with whatever |
mbklein
force-pushed
the
5512-magic-link-auth
branch
2 times, most recently
from
4a8afc8 to
e5f735c
Compare
It's a direct ripoff of the av-download email template design. 😄 |
Implement magic link auth routes Write tests for magic link auth Update OpenAPI spec for new auth routes
mbklein
force-pushed
the
5512-magic-link-auth
branch
from
e5f735c to
ed474df
Compare
3 participants
Steps to Test
make depsenv.json:make serve/auth/login?goto=/auth/whoami/auth/logout/auth/login/nusso?goto=/auth/whoami/auth/login/magic?email=YOUR_EMAIL&goto=/auth/whoamiWhile logged in using either/both methods, try to access some institution-only works and file sets. You should be able to access them when logged in via NUSSO but not via Magic.
Authz for works, file sets, and chat have been updated such that chat can be accessed by any logged in user, but protected works and file sets require a NUSSO login.
Notes
/auth/loginand/auth/callbackroutes have been replaced by/auth/{stage}/{provider}, wherestagecan be eitherloginorcallback, andprovidercan be eithernussoormagic. It defaults tonussofor backward compatibility. Routing to the correct handler happens by requiringhandlers/auth/${provider}-${stage}.js."email|returnUrl" + [6-byte representation of expiration timestamp].