Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add google auth setup #5

Merged
merged 51 commits into from
Feb 26, 2024
Merged

Add google auth setup #5

merged 51 commits into from
Feb 26, 2024

Conversation

pks03
Copy link
Collaborator

@pks03 pks03 commented Feb 24, 2024

No description provided.

@gitguardian GitGuardian
Copy link

gitguardian bot commented Feb 24, 2024
edited
Loading

⚠️ GitGuardian has uncovered 2 secrets following the scan of your pull request.

Please consider investigating the findings and remediating the incidents. Failure to do so may lead to compromising the associated services or software components.

🔎 Detected hardcoded secrets in your pull request
GitGuardian id GitGuardian status Secret Commit Filename
9654157 Triggered Google OAuth2 Keys f68e51f backend/config/default.ts View secret
9654157 Triggered Google OAuth2 Keys c42b0ee backend/config/default.ts View secret
🛠 Guidelines to remediate hardcoded secrets
  1. Understand the implications of revoking this secret by investigating where it is used in your code.
  2. Replace and store your secrets safely. Learn here the best practices.
  3. Revoke and rotate these secrets.
  4. If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.

To avoid such incidents in the future consider

🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.

Our GitHub checks need improvements? Share your feedbacks!

@thenicekat
Copy link
Owner

Check naming of the PRs. Also restructure them into service and route

thenicekat
thenicekat reviewed Feb 24, 2024
View reviewed changes
backend/src/service/signin.service.ts Outdated
}
);
return res.data;
} catch (error: any) {
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

remove unnecessary comments ig

@thenicekat thenicekat changed the title for uday Add google auth setup Feb 24, 2024
@Saphereye
Copy link
Collaborator

Saphereye commented Feb 24, 2024
edited
Loading

@Divyateja04 we should merge after the secrets are removed

thenicekat
thenicekat reviewed Feb 25, 2024
View reviewed changes
backend/config/default.ts Outdated
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can't we use constants.ts for this tho

thenicekat
thenicekat reviewed Feb 25, 2024
View reviewed changes
backend/src/index.ts Outdated
@@ -37,6 +40,9 @@ app.use(session({
// Add routes
app.use('/hello', helloRouter)
app.use('/posts', postsRouter)
app.use("/api/sessions/oauth/google", gauthRouter)
app.use('/user/signup',userRouter)
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this should be /user not /user/signup

thenicekat
thenicekat reviewed Feb 25, 2024
View reviewed changes
backend/src/routes/user.route.ts Outdated

export const userRouter = Router();

userRouter.post("/user/signup", async (req, res) => {
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

make this /signup not /user/signup.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok

thenicekat and others added 23 commits February 26, 2024 15:39
@thenicekat
fix: remove unnecessary logs
eeb543f
@thenicekat
fix: make axios send credentials by default
1c645b8
@pks03
tests written
424d43b
@pks03
tests written
17cacc3
@thenicekat
style: formatting controller
a815cdf
@thenicekat
style: minor changes with code formatting
e6d8c29
@pks03 @thenicekat
changed from use of signin service and route to gauth and user servic…
f92540b 
…es and routes
@pks03 @thenicekat
added signup frontend
83f5bd7
@pks03 @thenicekat
removed config
c9b4811
@thenicekat
fix: bugs with google oauth
960513b
@pks03 @thenicekat
check
8fa9a65
@thenicekat
feat: add server url to frontend
6d96cc8
@pks03 @thenicekat
check new
c72e412
@pks03 @thenicekat
yet to implement session storage to retrieve user email
04be3a1
@thenicekat
wip: check user signup code and session
7cb927e
@thenicekat
fix: axios request
3643375
@thenicekat
fix: type issues with form
7ac49d4
@thenicekat
fix: remove withCredentials: true
5c6adf6
@thenicekat
fix: try to fix by adding with credentials again
47c80f9
@thenicekat
fix: try to name the session and initialize memory store
6c297c1
@thenicekat
fix: make secure dependent on __prod__
61c4624
@pks03 @thenicekat
tests written
6a0c7ed
@thenicekat
fix: make axios send credentials by default
8ee4d97
@thenicekat thenicekat merged commit 57f3f6f into main Feb 26, 2024
0 of 2 checks passed
@thenicekat thenicekat deleted the oauth branch February 26, 2024 15:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@thenicekat thenicekat thenicekat left review comments

@Saphereye Saphereye Awaiting requested review from Saphereye

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@pks03 @thenicekat @Saphereye