Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Authentication and Authorization workflow #14

Closed
wants to merge 54 commits into from
Closed

Add Authentication and Authorization workflow #14

wants to merge 54 commits into from

Conversation

Eprince-hub
Copy link
Member

@Eprince-hub Eprince-hub commented Oct 24, 2024
edited
Loading

Add the authentication and authorization workflow to the GraphQL example so that users can register, login, and logout. This workflow also includes the protection of some pages and user-generated content by preventing unauthenticated users from accessing some parts of the application

TODOs

  • create new migrations for the auth workflow
    • users table
    • notes table
    • sessions table
  • create database query functions
    • database query function without session token
      • database/users.ts
        • getUserInsecure
        • getUserWithPasswordHashInsecure
        • createUserInsecure
      • database/sessions.ts
        • createSessionInsecure
    • secured database query functions with session token
      • database/users.ts
        • getUser
      • database/notes.ts
        • getNotes
        • getNote
        • createNote
      • database/sessions.ts
        • getValidSession
        • deleteSession
  • 🤔 create onboarding page
    • add link to register page
    • add link to login page
  • create registration workflow
    • add a registration form
      • send HTTP request to the register API route
    • create register API route
      • create sessions
  • create login workflow
    • add a login form
      • send HTTP request to the login API route
    • create login API route
      • create sessions
  • prevent authenticated users from accessing the register page
  • prevent authenticated users from accessing the login page
  • refactor cookie options
    • util/cookies.ts
      • export secureCookieOptions object
  • create a logout workflow
    • add a logout form
      • send HTTP request to the logout API route
    • create logout API route
      • delete sessions
  • prevent unauthenticated users from accessing the guests page
    • return user to guests page after login using returnTo query parameter
  • React Native authorization
    • Notes (user generated content)
      • create Notes page
        • send HTTP request to the notes API route
      • create notes API route
        • authenticated user can create notes
        • authenticated user can query notes
      • create Note page
        • send HTTP request to the note API route
      • create note API route
        • authenticated user can query note
    • authorization on note pages
      • only show notes where current user is note owner on notes page
      • "Access Denied" on the single note page
    • add notes navigation link to bottom navigation

ProchaLu and others added 30 commits July 2, 2024 13:05
@ProchaLu
Switch to PostgreSQL
4df6497
@ProchaLu
Add linebreak
8c4922a
@ProchaLu
Revert createGuest to addGuest
e63fa70
@ProchaLu
Update Readme
bbc274e
@ProchaLu @karlhorky
Update migrations/00000-createTableGuests.ts
444e81f 
Co-authored-by: Karl Horky <[email protected]>
@ProchaLu
Remove globalThis
826cb1b
@ProchaLu
Add libpg, safeQL, GitHub workflow
8fe7524
@ProchaLu
Add .env to GH workflow
7a3f5d4
@karlhorky
Update database/connect.ts
9914548
@karlhorky
Update connect.ts
0849efd
@ProchaLu
Merge branch 'main' of https://github.com/upleveled/expo-example-spri…
a5e3132 
…ng-2024-atvie into add-postgres
@ProchaLu
Fix missing steps in CI
86d565a
@karlhorky
Upgrade pnpm action
0d1e953
@ProchaLu
Remove type user
4cb67ea
@ProchaLu
add type Guest to migration file
832a0bb
@ProchaLu
Update imports for type Guest
5ef0c74
@ProchaLu @karlhorky
Update .github/workflows/ci.yml
ae543cf 
Co-authored-by: Karl Horky <[email protected]>
@ProchaLu @karlhorky
Update .github/workflows/ci.yml
0295119 
Co-authored-by: Karl Horky <[email protected]>
@ProchaLu @karlhorky
Update .github/workflows/ci.yml
9f8bbca 
Co-authored-by: Karl Horky <[email protected]>
@ProchaLu
Add missing dependencies for prettier
fb94173
@ProchaLu
Add custom property to avoid ts error
7101919
@karlhorky
Update .env.example
7057382
@ProchaLu
Update ESLint
f2c33e6
@ProchaLu
Fix ESLint error and run Prettier in migrations
0054219
@ProchaLu
Fix ESLint errors
3bd2d64
@ProchaLu
Remove types/react-dom
9f15a98
@ProchaLu
Remove settings.json for vscode
9abb807
@ProchaLu
Fix inconsistent API return
a2fde60
@ProchaLu
Add requestBody validation without edit
9541d3b
@ProchaLu
Refactor database connection setup and configuration
b244d07
ProchaLu added 14 commits October 7, 2024 12:21
@Eprince-hub Eprince-hub self-assigned this Oct 24, 2024
@Eprince-hub Eprince-hub changed the base branch from main to add-postgres October 24, 2024 13:20
ProchaLu and others added 7 commits October 24, 2024 15:54
@ProchaLu
Add edit functionality for guests (#7)
3971377 
* Add edit guest UI and API

* Fix API order

* Remove file

* Fix API route
@Eprince-hub
Merge branch 'add-postgres' into react-native-auth
bf87620
@Eprince-hub
Create new migrations for the auth workflow
5516bed
@ProchaLu
Improve styling (#5)
5b2435c 
* Improve styling

* Update styling

* Fix lint errors

* Update colors and styling for better UI consistency

* Add snack bar, add placeholder img

* Fix ESLint error, refactor snackbar

* Fix ESLint with new dependency array

* Remove set state in useeffect

* Remove commented out code

* Remove input validation, change button style

* Fix ESLint error

* Add ios chevron to single guest modal

* Refactor code to remove unused imports and update styling

* Update lockfile

* Remove Snackbar component

* Remove iOS back button

* Change folder structure

* Fix api route

* Refactor file path for newGuest component

* Change from id to guestId

* Simplify styling

* Refactor guest form styling and functionality
@Eprince-hub
Create database query function without session token
3dc338a
@Eprince-hub
Merge branch 'add-postgres' of https://github.com/upleveled/expo-exam…
8846844 
…ple-spring-2024-atvie into react-native-auth
@Eprince-hub
Create secured database query functions with session token
37647b8
Base automatically changed from add-postgres to next October 24, 2024 22:17
An error occurred while trying to automatically change base from add-postgres to next October 24, 2024 22:17
@ProchaLu
Copy link
Member

We decided not to do auth in the first Expo lecture, but rather as a PR in the "auth-restricting-access" lecture

Superseded by

@ProchaLu ProchaLu closed this Oct 31, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@Eprince-hub Eprince-hub

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@Eprince-hub @ProchaLu @karlhorky