Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feat/GitHub server login #665

Closed
wants to merge 14 commits into from
Closed

Feat/GitHub server login #665

wants to merge 14 commits into from

Conversation

irony
Copy link
Contributor

@irony irony commented Mar 12, 2025

Authentication with GitHub

This PR adds functionality to the API for GitHub authentication for users who are members of the Klimatbyrån organization. Here's how to implement it in your frontend:

React Implementation Example

import { useState, useEffect } from 'react';
import { useNavigate, useLocation } from 'react-router-dom';

// Auth Context Provider
export const AuthProvider = ({ children }) => {
  const [token, setToken] = useState(localStorage.getItem('auth_token'));
  const [user, setUser] = useState(null);
  
  // Function to handle login
  const login = () => {
    window.location.href = 'http://localhost:3000/api/auth/github/login';
  };
  
  // Function to handle logout
  const logout = () => {
    localStorage.removeItem('auth_token');
    setToken(null);
    setUser(null);
  };
  
  // Function to fetch user profile with token
  const fetchUserProfile = async (authToken) => {
    try {
      const response = await fetch('http://localhost:3000/api/user/profile', {
        headers: {
          'Authorization': `Bearer ${authToken}`
        }
      });
      
      if (response.ok) {
        const userData = await response.json();
        setUser(userData);
      } else {
        // Token might be invalid
        logout();
      }
    } catch (error) {
      console.error('Failed to fetch user profile:', error);
      logout();
    }
  };
  
  // Effect to load user data when token changes
  useEffect(() => {
    if (token) {
      localStorage.setItem('auth_token', token);
      fetchUserProfile(token);
    }
  }, [token]);
  
  return (
    <AuthContext.Provider value={{ token, user, login, logout, setToken }}>
      {children}
    </AuthContext.Provider>
  );
};

// Auth Callback Component
export const AuthCallback = () => {
  const navigate = useNavigate();
  const location = useLocation();
  const { setToken } = useAuth();
  
  useEffect(() => {
    const params = new URLSearchParams(location.search);
    const token = params.get('token');
    const error = params.get('error');
    
    if (token) {
      setToken(token);
      navigate('/dashboard');
    } else if (error) {
      console.error('Authentication error:', error);
      navigate('/login', { state: { error: 'Authentication failed' } });
    }
  }, [location, navigate, setToken]);
  
  return <div>Processing authentication...</div>;
};

// Login Button Component
export const LoginButton = () => {
  const { login } = useAuth();
  
  return (
    <button onClick={login} className="login-button">
      Login with GitHub
    </button>
  );
};

// Protected Route Component
export const ProtectedRoute = ({ children }) => {
  const { token } = useAuth();
  const navigate = useNavigate();
  
  useEffect(() => {
    if (!token) {
      navigate('/login');
    }
  }, [token, navigate]);
  
  if (!token) return null;
  
  return children;
};

Setup in your React Router

import { BrowserRouter, Routes, Route } from 'react-router-dom';
import { AuthProvider, AuthCallback, ProtectedRoute } from './auth';
import Dashboard from './Dashboard';
import Login from './Login';

function App() {
  return (
    <BrowserRouter>
      <AuthProvider>
        <Routes>
          <Route path="/login" element={<Login />} />
          <Route path="/auth/callback" element={<AuthCallback />} />
          <Route 
            path="/dashboard" 
            element={
              <ProtectedRoute>
                <Dashboard />
              </ProtectedRoute>
            } 
          />
          <Route path="/" element={<Home />} />
        </Routes>
      </AuthProvider>
    </BrowserRouter>
  );
}

How it works

  1. When a user clicks the "Login with GitHub" button, they are redirected to /api/auth/github/login
  2. The API redirects to GitHub's OAuth page where the user authenticates
  3. GitHub redirects back to the API with an authorization code
  4. The API verifies the code, checks organization membership, and generates a JWT token
  5. The API redirects to the frontend's callback URL with the token
  6. The frontend stores the token and uses it for authenticated API requests

Making authenticated requests

const fetchData = async () => {
  try {
    const response = await fetch('http://localhost:3000/api/companies', {
      headers: {
        'Authorization': `Bearer ${token}`
      }
    });
    
    if (response.ok) {
      const data = await response.json();
      setCompanies(data);
    }
  } catch (error) {
    console.error('Failed to fetch data:', error);
  }
};

Getting the user profile

Once authenticated, you can fetch the user's profile information:

const fetchUserProfile = async () => {
  try {
    const response = await fetch('http://localhost:3000/api/auth/profile', {
      headers: {
        'Authorization': `Bearer ${token}`
      }
    });
    
    if (response.ok) {
      const userProfile = await response.json();
      setUser(userProfile);
      return userProfile;
    } else {
      // Handle unauthorized or other errors
      if (response.status === 401) {
        // Token might be expired, redirect to login
        logout();
      }
    }
  } catch (error) {
    console.error('Failed to fetch user profile:', error);
  }
  return null;
};

The profile endpoint returns the following information:

{
  "id": "user-id",
  "name": "User Name",
  "email": "user@example.com",
  "githubId": "github-username",
  "githubImageUrl": "https://avatars.githubusercontent.com/u/12345678"
}

irony added 14 commits March 12, 2025 12:18
@irony
feat: Implement GitHub authentication endpoint with improved error ha…
7a950d9 
…ndling
@irony
feat: Add authentication routes import to app.ts
02a55ed
@irony
fix: Add error handling and remove duplicate import in auth service
2c8c38b
@irony
refactor: Resolve schema export conflicts and restructure authenticat…
978a8c8 
…ion schemas
@irony
fix: Remove duplicate export and resolve schema naming conflict
167a025
@irony
refactor: Improve token verification and session handling in auth plugin
b7aa81c
@irony
refactor: Resolve conflicting star exports in schemas index file
068c679
@irony
feat: Add support for GET and POST methods in GitHub authentication r…
f0838ce 
…oute
@irony
fix: Update Zod schema for GitHub auth route querystring
546f633
@irony
feat: Add GitHub OAuth login redirect and callback handling
1770f1e
@irony
fix: Improve GitHub authentication error handling and logging
357fca8
@irony
docs: Add GitHub authentication guide for React frontend
51e0e69
@irony
docs: Move GitHub authentication example from README to auth.md
d3f2def
@irony
feat: Add user profile endpoint and improve JWT token handling
c936761
@okis-netlight
Copy link
Contributor

This solves #666

@okis-netlight
Copy link
Contributor

Closed in favor of #669

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@irony @okis-netlight