Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix OAuth2 login and logout issues in React application #26384

Merged
merged 3 commits into from
Jun 20, 2024
Merged

Fix OAuth2 login and logout issues in React application #26384

merged 3 commits into from
Jun 20, 2024

Conversation

yhao3
Copy link
Contributor

@yhao3 yhao3 commented Jun 8, 2024

Issues

Description

When creating an application with OAuth2 and React, the following issues were discovered:

JHipster version is v8.5.0

  1. When a user who is not logged in visits the logout page, infinite logout requests are sent to the backend.

    infinite-logout-requests.mov

  2. If there is a non-private route, such as the About page (/about), and the user clicks login on that page and logs in, the Redirect functionality breaks because the local storage records an incorrect redirect URL.

    redirect-issue.mov

JDL

application {
  config {
    baseName blog,
    applicationType monolith
    authenticationType oauth2
    packageName com.jhipster.demo.blog
    prodDatabaseType postgresql
    cacheProvider ehcache
    buildTool maven
    clientFramework react
    testFrameworks [cypress]
  }
  entities *
}

entity Blog {
  name String required minlength(3)
  handle String required minlength(2)
}

entity Post {
  title String required
  content TextBlob required
  date Instant required
}

entity Tag {
  name String required minlength(2)
}

relationship ManyToOne {
  Blog{user(login)} to User with builtInEntity
  Post{blog(name)} to Blog
}

relationship ManyToMany {
  Post{tag(name)} to Tag{entry}
}

paginate Post, Tag with infinite-scroll

Fixes

For issue 1, I made the following changes in logout.tsx:

  • When the user is not logged in, redirect them to the root.

Regarding issue 2, I refactored the frontend login flow:

  • In routes.tsx, changed the route path of the LoginRedirect component to /sign-in instead of directly using the /oauth2/authorization/oidc endpoint provided by the backend, and then redirected the user to the oauth2/authorization/oidc endpoint in the LoginRedirect component.
  • Based on the above change, in url-utils.ts, modified the return value of the getLoginUrl() function to /sign-in route.
  • Replaced the login buttons in account.tsx and home.tsx with callback functions that use the useNavigate hook to redirect to the route returned by getLoginUrl(), ensuring the original path of all public routes is preserved.

@yhao3 yhao3 closed this Jun 8, 2024
@yhao3 yhao3 reopened this Jun 8, 2024
@mraible
Copy link
Contributor

mraible commented Jun 12, 2024

Closing and re-opening to run tests again.

@mraible mraible closed this Jun 12, 2024
@mraible mraible reopened this Jun 12, 2024
@mraible mraible merged commit d10e08b into jhipster:main Jun 20, 2024
74 of 85 checks passed
@mraible
Copy link
Contributor

mraible commented Jun 20, 2024

Thanks for your contribution, @yhao3!

@mraible mraible added this to the 8.6.0 milestone Jun 24, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
theme: react
Projects
None yet
Milestone
8.6.0
Development

Successfully merging this pull request may close these issues.
2 participants
@yhao3 @mraible