Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support disabling Auth0 #967

Merged
merged 19 commits into from
Jul 25, 2023
Merged

Support disabling Auth0 #967

merged 19 commits into from
Jul 25, 2023

Conversation

binh-dam-ibigroup
Copy link
Contributor

@binh-dam-ibigroup binh-dam-ibigroup commented Jul 12, 2023
edited
Loading

Checklist

  • Appropriate branch selected (all PRs must first be merged to dev before they can be merged to master)
  • Any modified or new methods or classes have helpful JSDoc and code is thoroughly commented
  • The description lists all applicable issues this PR seeks to resolve
  • The description lists any configuration setting(s) that differ from the default settings
  • All tests and CI builds passing

Description

This PR allows running the datatools UI without having to log in using Auth0.
When Auth0 is disabled:

  • A single admin user is created and is the only user available.
  • No user management, account management or feed activity watching are available.

The PR is based on https://github.com/ibi-group/datatools-ui/tree/auth-disable but simplifies the permission checks by creating an admin user on loading.

Rough edges caused by not knowing what panes will be available until after a few render passes - I think that can be addressed in a subsequent PR:

  • The users page in the Admin section is blank.
  • The profile page in the Account section is blank.

To disable Auth0, insert a line with DISABLE_AUTH: true in env.yml for both frontend and backend configurations.
No other changes are needed on the backend.

This PR might address #962.

miles-grant-ibigroup and others added 17 commits June 15, 2023 11:28
@miles-grant-ibigroup
support disabling AUTH0_DISABLED
7ffbd44
@binh-dam-ibigroup
refactor(LocalUserRetriever): Provide local user info for non-auth co…
fd85a0e 
…nfigs
@binh-dam-ibigroup
refactor(PublicHeader): Hide logout button on non-auth configs
dee0615
@binh-dam-ibigroup
refactor(UserButtons): Hide logout button on non-auth configs
617833a
@binh-dam-ibigroup
refactor(UserAccount): Hide most user account content on non-auth con…
3954164 
…figs
@binh-dam-ibigroup
refactor(LocalUserRetriever): Use same email as backend.
a895298
@binh-dam-ibigroup
refactor(AdminPage): Hide user list on non-auth configs
398d8f9
@binh-dam-ibigroup
refactor(ApplicationStatus): Hide Auth0 link on non-auth configs
a67add3
@binh-dam-ibigroup
refactor(WatchButton): Hide watch button on no-auth configs
184dbbf
@binh-dam-ibigroup
refactor(wrapComponentInAuthStrategy): Relax some admin checks.
6ad320a
@binh-dam-ibigroup
refactor(editor/util/ui.js): Revert unneeded changes.
8b56c67
@binh-dam-ibigroup
refactor(manager/util/index): Only check user perms for enabling edit…
cf1471d 
…ing.
@binh-dam-ibigroup
refactor(FeedSourceTable): Evaluate admin only using user perms.
62d2dad
@binh-dam-ibigroup
refactor(manager/components): Use user perms for enabling features.
6ff7aa3
@binh-dam-ibigroup
refactor(manager/actions): Enable features using users perms only.
6f9c156
@binh-dam-ibigroup
test(ActiveProjectViewer): Update snapshots
46f2f90
@binh-dam-ibigroup
refactor(UserButtons): Reinstate original urls.
5b4aa34
@binh-dam-ibigroup binh-dam-ibigroup marked this pull request as ready for review July 13, 2023 13:33
miles-grant-ibigroup
miles-grant-ibigroup approved these changes Jul 20, 2023
View reviewed changes
Copy link
Contributor

@miles-grant-ibigroup miles-grant-ibigroup left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for cleaning this up! Much better approach than mine. I've tested thoroughly and everything works fantastic! Excited for what this will allow for the project

amy-corson-ibigroup
amy-corson-ibigroup approved these changes Jul 24, 2023
View reviewed changes
Copy link
Contributor

@amy-corson-ibigroup amy-corson-ibigroup left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Very cool fix! Works great for me locally. Just a couple questions.

lib/common/containers/LocalUserRetriever.js
'user'
]
},
// FIXME: pick a better email address for both backend and frontend.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are you looking for a real email address here or just a different fake/placeholder one?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Probably a different one. This email address appears in the Notes section of each feed.

lib/public/components/UserAccount.js Outdated
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would it be worth it to add a status message in this pane if AUTH0_DISABLED is true, that says something along the lines of "You're running datatools without user authentication enabled. Features such as user management, account management and feed activity watching are unavailable"

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thoughts @miles-grant-ibigroup?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The homepage might be a better place? Could add a warning above the recent activity section?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I added the message to the home page, above Recent Activity (969af57)

@binh-dam-ibigroup binh-dam-ibigroup merged commit d8826a7 into dev Jul 25, 2023
5 checks passed
@binh-dam-ibigroup binh-dam-ibigroup deleted the auth-disable-qbd branch July 25, 2023 16:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@miles-grant-ibigroup miles-grant-ibigroup miles-grant-ibigroup approved these changes

@amy-corson-ibigroup amy-corson-ibigroup amy-corson-ibigroup approved these changes

Assignees

@binh-dam-ibigroup binh-dam-ibigroup

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@binh-dam-ibigroup @miles-grant-ibigroup @amy-corson-ibigroup