Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add auth extension handling #586

Open
wants to merge 13 commits into
base: master
Choose a base branch
from
Open

Add auth extension handling #586

wants to merge 13 commits into from

Conversation

fantix
Copy link
Member

@fantix fantix commented Feb 26, 2025
edited
Loading

This adds the gel.auth module as the general binding of the Gel auth extension.

  • Add test

@scotttrinh @fantix
Add auth extension handling
cb7f9b3 
Co-authored-by: Fantix King <[email protected]>
@fantix fantix mentioned this pull request Feb 26, 2025
Draft
3 tasks
fantix
fantix commented Mar 6, 2025
View reviewed changes
gel/auth/email_password.py
Comment on lines +323 to +330
verify_response = await self._http_request(
"POST",
"/verify",
json={
"verification_token": verification_token,
"provider": self.provider,
},
)
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is it expected that the verification will proceed (even successfully) with or without a valid PKCE verifier?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, that's right. PKCE just protects the actual auth token exchange, so you can verify an email from any user agent, but you will not be able to then parlay that into an authentication unless you have the PKCE verifier.

@fantix fantix requested review from 1st1, elprans and scotttrinh March 6, 2025 20:39
@fantix fantix marked this pull request as ready for review March 6, 2025 20:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@1st1 1st1 Awaiting requested review from 1st1

@elprans elprans Awaiting requested review from elprans

@scotttrinh scotttrinh Awaiting requested review from scotttrinh

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@fantix @scotttrinh