refactor(auth): clean up and enhance sign-in-up logic #8653
+710
−145
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Reorganized the sign-in-up code for better readability and maintainability. Introduced validation for workspace invitations and moved some utility functions to dedicated methods. Added a migration for new auth provider columns in the workspace entity.
Removed unused `EnvironmentService` and redundant `code` property in exceptions for clarity. Simplified email validation in `workspace-invitation.service.ts`. Refactored tests to remove unnecessary `targetWorkspaceSubdomain` property.
Removed redundant services from auth and core modules to streamline the code. Added debug log statements in sign-in-up service and skipped certain test cases temporarily for evaluation.
Eliminate debug logging for workspace invite tokens and validation. This cleanup improves readability and reduces console clutter during runtime.
…ninup # Conflicts: # packages/twenty-server/src/engine/core-modules/auth/services/sign-in-up.service.ts
![greptile-apps[bot]](https://avatars.githubusercontent.com/in/867647?s=60&v=4){kind=small}
There was a problem hiding this comment.
PR Summary
This PR enhances workspace authentication by adding configurable auth provider settings and improving the sign-in/up flow with better separation of concerns.
- Added new columns
isGoogleAuthEnabled,isPasswordAuthEnabled,isMicrosoftAuthEnabledtoworkspace.entity.tsfor granular auth control - Introduced
getAuthProvidersByWorkspaceIdinworkspace.service.tsto expose available auth methods including SSO configurations - Moved workspace invitation validation to dedicated
WorkspaceInvitationServicewith separate methods for public/personal invites - Added
saveDefaultWorkspacetoUserServicefor handling workspace switching during auth flows - Created new
WorkspaceExceptionclass with specific error codes for better error handling
14 file(s) reviewed, 8 comment(s)
Edit PR Review Bot Settings | Greptile
...ver/src/database/typeorm/core/migrations/1730298416367-addAuthProvidersColumnsToWorkspace.ts
Show resolved
Hide resolved
packages/twenty-server/src/engine/core-modules/auth/dto/available-workspaces.output.ts
Outdated
Show resolved
Hide resolved
packages/twenty-server/src/engine/core-modules/auth/services/auth.service.ts
Outdated
Show resolved
Hide resolved
packages/twenty-server/src/engine/core-modules/auth/services/sign-in-up.service.spec.ts
Show resolved
Hide resolved
packages/twenty-server/src/engine/core-modules/user/services/user.service.ts
Outdated
Show resolved
Hide resolved
...server/src/engine/core-modules/workspace-invitation/services/workspace-invitation.service.ts
Show resolved
Hide resolved
packages/twenty-server/src/engine/core-modules/workspace/services/workspace.service.ts
Outdated
Show resolved
Hide resolved
packages/twenty-server/src/engine/core-modules/workspace/workspace.entity.ts
Outdated
Show resolved
Hide resolved
AMoreaux
changed the base branch from
main
to
feat/allow-to-select-auth-methods-by-workspace
…facto/improve-signinup # Conflicts: # packages/twenty-server/src/engine/core-modules/auth/dto/available-workspaces.output.ts # packages/twenty-server/src/engine/core-modules/auth/services/auth.service.ts # packages/twenty-server/src/engine/core-modules/auth/services/sign-in-up.service.ts # packages/twenty-server/src/engine/core-modules/user/services/user.service.ts # packages/twenty-server/src/engine/core-modules/workspace/services/workspace.service.ts
Removed the redundant `code` property from WorkspaceInvitationException. Adjusted the import order in WorkspaceResolver to comply with coding standards.
…facto/improve-signinup
Replace user object with user ID in saveDefaultWorkspace method call to fix incorrect parameter type. This ensures that the function operates as expected and prevents potential errors in default workspace assignment.
| where: { | ||
| email: challengeInput.email, | ||
| }, | ||
| relations: ['workspaces'], |
| @@ -130,20 +135,29 @@ export class AuthService { | |||
| }); | |||
| } | |||
|
|
|||
| async verify(email: string): Promise<Verify> { | |||
| private async findOneWithWorkspacesByEmail(email: string) { | |||
| }); | ||
| let user = await this.findOneWithWorkspacesByEmail(email); | ||
|
|
||
| if (user && workspaceId && user.defaultWorkspaceId !== workspaceId) { |
There was a problem hiding this comment.
const defaultWorkspaceId = await this.userRepository.findOne({
select: ['defaultWorkspaceId']
where: {
email,
},
});
if (user.defaultWorkspaceId !== workspaceId) {
await this.userService.saveDefaultWorkspace(user.id, workspaceId);
}
const user = await this.userRepository.findOne({
where: {
email,
},
relations: ['defaultWorkspace', 'workspaces', 'workspaces.workspace'],
});
| workspaceInviteHash, | ||
| email, | ||
| }) | ||
| : null; |
There was a problem hiding this comment.
if (workspacePersonalInviteToken || workspaceInviteHash) {
const invitationValidation =
await this.workspaceInvitationService.validateInvitation({
workspacePersonalInviteToken: workspacePersonalInviteToken,
workspaceInviteHash,
email,
})
if (
invitationValidation?.isValid === true &&
invitationValidation.workspace
) {
}
}
| .getOne(); | ||
| } | ||
|
|
||
| // UTILS METHODS | ||
| castAppTokenToWorkspaceInvitation(appToken: AppToken) { |
There was a problem hiding this comment.
this could be extracted to an .util.ts
| }); | ||
|
|
||
| if (invitationByType.type === 'PUBLIC_INVITATION') { | ||
| return await this.validatePublicInvitation(invitationByType); |
| } | ||
|
|
||
| if (invitationByType.type === 'PERSONAL_INVITATION') { | ||
| return await this.validatePersonalInvitation(invitationByType, email); |
There was a problem hiding this comment.
workspacePersonalInviteToken
| workspaceInviteHash?: string; | ||
| email: string; | ||
| }) { | ||
| const invitationByType = this.getInvitationByType({ |
There was a problem hiding this comment.
I don't see the value of invitationByType actually in this code
| await this.workspaceRepository.update(user.defaultWorkspaceId, { | ||
| displayName: data.displayName, | ||
| activationStatus: WorkspaceActivationStatus.ACTIVE, | ||
| }); | ||
|
|
||
| return existingWorkspace; | ||
| return await this.workspaceRepository.findOneBy({ |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The Pull Request introduces new authentication provider columns to the Workspace entity and updates various services and modules to accommodate these changes. It also includes the creation of a new WorkspaceException class.