diff --git a/crates/app/src/macros.rs b/crates/app/src/macros.rs
index fd141ea..44669a4 100644
--- a/crates/app/src/macros.rs
+++ b/crates/app/src/macros.rs
@@ -112,7 +112,7 @@ macro_rules! get_user_from_token {
Ok((grant, ua)) => {
if grant.scopes.contains(&$grant_scope) {
if ua.permissions.check_banned() {
- Some(tetratto_core::model::auth::User::banned())
+ None
} else {
Some(ua)
}
diff --git a/crates/app/src/public/html/developer/app.lisp b/crates/app/src/public/html/developer/app.lisp
index 6795001..b1661e8 100644
--- a/crates/app/src/public/html/developer/app.lisp
+++ b/crates/app/src/public/html/developer/app.lisp
@@ -180,7 +180,8 @@
(li (b (text "Redirect URL: ")) (text "{{ app.redirect }}"))
(li (b (text "Quota status: ")) (text "{{ app.quota_status }}"))
(li (b (text "User grants: ")) (text "{{ app.grants }}"))
- (li (b (text "Grant URL: ")) (text "{{ config.host }}/auth/connections_link/app/{{ app.id }}")))
+ (li (b (text "Grant URL: ")) (text "{{ config.host }}/auth/connections_link/app/{{ app.id }}"))
+ (li (b (text "App ID (for SDK): ")) (text "{{ app.id }}")))
(a
("class" "button")
diff --git a/crates/app/src/public/html/developer/home.lisp b/crates/app/src/public/html/developer/home.lisp
index d96be6f..160181b 100644
--- a/crates/app/src/public/html/developer/home.lisp
+++ b/crates/app/src/public/html/developer/home.lisp
@@ -41,8 +41,7 @@
("id" "homepage")
("placeholder" "homepage")
("required" "")
- ("minlength" "2")
- ("maxlength" "32")))
+ ("minlength" "2")))
(div
("class" "flex flex-col gap-1")
(label
@@ -53,8 +52,7 @@
("name" "redirect")
("id" "redirect")
("placeholder" "redirect URL")
- ("minlength" "2")
- ("maxlength" "32")))
+ ("minlength" "2")))
(button
(text "{{ text \"communities:action.create\" }}"))))
diff --git a/crates/app/src/public/js/app_sdk.js b/crates/app/src/public/js/app_sdk.js
index 9d18e9b..4b5599b 100644
--- a/crates/app/src/public/js/app_sdk.js
+++ b/crates/app/src/public/js/app_sdk.js
@@ -176,11 +176,7 @@ export default function tetratto({
window.localStorage.setItem("atto:grant.user_id", uid);
}
- async function refresh_token(verifier) {
- if (!user_token) {
- throw Error("No user token provided.");
- }
-
+ async function refresh_token() {
return api_promise(
json_parse(
await (
@@ -190,10 +186,10 @@ export default function tetratto({
method,
headers: {
"Content-Type": "application/json",
- "X-Cookie": `__Secure-atto-token=${user_token}`,
+ "X-Cookie": `Atto-Grant=${user_token}`,
},
body: json_stringify({
- verifier,
+ verifier: user_verifier,
}),
},
)
@@ -203,10 +199,10 @@ export default function tetratto({
}
async function request({
- api_path,
+ route,
method = "POST",
content_type = "application/json",
- body = "{}",
+ body = {},
}) {
if (!user_token) {
throw Error("No user token provided.");
@@ -215,16 +211,19 @@ export default function tetratto({
return api_promise(
json_parse(
await (
- await fetch(`${host}/api/v1/${api_path}`, {
+ await fetch(`${host}/api/v1/${route}`, {
method,
headers: {
- "Content-Type": content_type,
- "X-Cookie": `__Secure-atto-token=${user_token}`,
+ "Content-Type":
+ method === "GET" ? null : content_type,
+ "X-Cookie": `Atto-Grant=${user_token}`,
},
body:
- content_type === "application/json"
- ? json_stringify(body)
- : body,
+ method === "GET"
+ ? null
+ : content_type === "application/json"
+ ? json_stringify(body)
+ : body,
})
).text(),
),
@@ -233,6 +232,11 @@ export default function tetratto({
// ...
return {
+ user_id,
+ user_token,
+ user_verifier,
+ app_id,
+ api_key,
// app data
app,
query,
diff --git a/crates/core/src/database/auth.rs b/crates/core/src/database/auth.rs
index 64530b5..c520794 100644
--- a/crates/core/src/database/auth.rs
+++ b/crates/core/src/database/auth.rs
@@ -196,8 +196,8 @@ impl DataManager {
let res = query_row!(
&conn,
- "SELECT * FROM users WHERE (SELECT jsonb_array_elements(grants::jsonb) @> ('{\"token\":\"' || $1 || '\"}')::jsonb)",
- &[&token],
+ "SELECT * FROM users WHERE grants LIKE $1",
+ &[&format!("%\"token\":\"{token}\"%")],
|x| Ok(Self::get_user_from_row(x))
);
diff --git a/example/.gitignore b/example/.gitignore
index 004f366..b5ba3f2 100644
--- a/example/.gitignore
+++ b/example/.gitignore
@@ -4,6 +4,7 @@ html/*
public/*
!public/footer.html
!public/robots.txt
+!public/examples
media/*
icons/*
langs/*
diff --git a/example/app_sdk_test.js b/example/app_sdk_test.js
index 000eb8d..bd69519 100644
--- a/example/app_sdk_test.js
+++ b/example/app_sdk_test.js
@@ -1,10 +1,10 @@
// @ts-nocheck
// APP_API_KEY=... deno run --allow-net --allow-import --allow-env -r app_sdk_test.js
const deno = Deno;
-const sdk = (await import("http://localhost:4118/js/app_sdk.js")).default(
- "http://localhost:4118",
- deno.env.get("APP_API_KEY"),
-);
+const sdk = (await import("http://localhost:4118/js/app_sdk.js")).default({
+ host: "http://localhost:4118",
+ api_key: deno.env.get("APP_API_KEY"),
+});
// check data used
console.log("data used:", (await sdk.app()).data_used);
diff --git a/example/public/examples/auth_flow_example/index.html b/example/public/examples/auth_flow_example/index.html
new file mode 100644
index 0000000..5a4c023
--- /dev/null
+++ b/example/public/examples/auth_flow_example/index.html
@@ -0,0 +1,39 @@
+
+
+
+
+
+ Auth flow example
+
+
+
+
+
+
+
+
+
diff --git a/example/public/examples/auth_flow_example/redirect.html b/example/public/examples/auth_flow_example/redirect.html
new file mode 100644
index 0000000..532eb22
--- /dev/null
+++ b/example/public/examples/auth_flow_example/redirect.html
@@ -0,0 +1,25 @@
+
+
+
+
+
+ Auth flow example redirect
+
+
+ Waiting...
+
+
+
+