feat: add social authentication support with enabled providers endpoint and UI integration

2025-07-21 13:59:36 +02:00 · 2025-01-06 14:25:57 -05:00 · 2025-01-06 14:25:57 -05:00 · 128c33d9a1
commit 128c33d9a1
parent 4fdc16da58
7 changed files with 83 additions and 12 deletions
--- a/backend/server/main/settings.py
+++ b/backend/server/main/settings.py
@ -42,6 +42,7 @@ INSTALLED_APPS = (
    'django.contrib.messages',
    'django.contrib.staticfiles',
    'django.contrib.sites',
+    "allauth_ui",
    'rest_framework',
    'rest_framework.authtoken',
    'allauth',
@ -49,8 +50,8 @@ INSTALLED_APPS = (
    'allauth.mfa',
    'allauth.headless',
    'allauth.socialaccount',
-    # "widget_tweaks",
-    # "slippers",
+    'allauth.socialaccount.providers.github',
+    'allauth.socialaccount.providers.openid_connect',
    'drf_yasg',
    'corsheaders',
    'adventures',
@ -58,6 +59,9 @@ INSTALLED_APPS = (
    'users',
    'integrations',
    'django.contrib.gis',
+    'widget_tweaks',
+    'slippers',
+
 )

 MIDDLEWARE = (
@ -75,6 +79,8 @@ MIDDLEWARE = (
 # disable verifications for new users
 ACCOUNT_EMAIL_VERIFICATION = 'none'

+ALLAUTH_UI_THEME = "night"
+
 CACHES = {
    'default': {
        'BACKEND': 'django.core.cache.backends.locmem.LocMemCache',
@ -120,7 +126,7 @@ USE_L10N = True

 USE_TZ = True

-
+SESSION_COOKIE_SAMESITE = None

 # Static files (CSS, JavaScript, Images)
 # https://docs.djangoproject.com/en/1.7/howto/static-files/
@ -143,6 +149,7 @@ STORAGES = {
    }
 }

+SILENCED_SYSTEM_CHECKS = ["slippers.E001"]

 TEMPLATES = [
    {
@ -175,6 +182,9 @@ SESSION_SAVE_EVERY_REQUEST = True

 FRONTEND_URL = getenv('FRONTEND_URL', 'http://localhost:3000')

+# Set login redirect URL to the frontend
+LOGIN_REDIRECT_URL = FRONTEND_URL
+
 HEADLESS_FRONTEND_URLS = {
    "account_confirm_email": f"{FRONTEND_URL}/user/verify-email/{{key}}",
    "account_reset_password": f"{FRONTEND_URL}/user/reset-password",
--- a/backend/server/main/urls.py
+++ b/backend/server/main/urls.py
@ -3,7 +3,7 @@ from django.contrib import admin
 from django.views.generic import RedirectView, TemplateView
 from django.conf import settings
 from django.conf.urls.static import static
-from users.views import IsRegistrationDisabled, PublicUserListView, PublicUserDetailView, UserMetadataView, UpdateUserMetadataView
+from users.views import IsRegistrationDisabled, PublicUserListView, PublicUserDetailView, UserMetadataView, UpdateUserMetadataView, EnabledSocialProvidersView
 from .views import get_csrf_token
 from drf_yasg.views import get_schema_view

@ -27,6 +27,8 @@ urlpatterns = [

    path('auth/user-metadata/', UserMetadataView.as_view(), name='user-metadata'),

+    path('auth/social-providers/', EnabledSocialProvidersView.as_view(), name='enabled-social-providers'),
+
    path('csrf/', get_csrf_token, name='get_csrf_token'),
    
    path('', TemplateView.as_view(template_name='home.html')),
--- a/backend/server/requirements.txt
+++ b/backend/server/requirements.txt
@ -13,8 +13,8 @@ django-geojson
 setuptools
 gunicorn==23.0.0
 qrcode==8.0
-# slippers==0.6.2
-# django-allauth-ui==1.5.1
-# django-widget-tweaks==1.5.0
+slippers==0.6.2
+django-allauth-ui==1.5.1
+django-widget-tweaks==1.5.0
 django-ical==1.9.2
 icalendar==6.1.0
--- a/backend/server/users/views.py
+++ b/backend/server/users/views.py
@ -1,3 +1,4 @@
+from os import getenv
 from rest_framework.views import APIView
 from rest_framework.response import Response
 from rest_framework import status
@ -9,6 +10,7 @@ from django.conf import settings
 from django.shortcuts import get_object_or_404
 from django.contrib.auth import get_user_model
 from .serializers import CustomUserDetailsSerializer as PublicUserSerializer
+from allauth.socialaccount.models import SocialApp

 User = get_user_model()

@ -120,4 +122,31 @@ class UpdateUserMetadataView(APIView):
        if serializer.is_valid():
            serializer.save()
            return Response(serializer.data, status=status.HTTP_200_OK)
-        return Response(serializer.errors, status=status.HTTP_400_BAD_REQUEST)
+        return Response(serializer.errors, status=status.HTTP_400_BAD_REQUEST)
+    
+class EnabledSocialProvidersView(APIView):
+    """
+    Get enabled social providers for social authentication. This is used to determine which buttons to show on the frontend. Also returns a URL for each to start the authentication flow.
+    """
+
+    @swagger_auto_schema(
+        responses={
+            200: openapi.Response('Enabled social providers'),
+            400: 'Bad Request'
+        },
+        operation_description="Get enabled social providers."
+    )
+    def get(self, request):
+        social_providers = SocialApp.objects.filter(sites=settings.SITE_ID)
+        providers = []
+        for provider in social_providers:
+            if provider.provider == 'openid_connect':
+                new_provider = f'oidc/{provider.client_id}'
+            else:
+                new_provider = provider.provider
+            providers.append({
+                'provider': provider.provider,
+                'url': f"{getenv('PUBLIC_URL')}/accounts/{new_provider}/login/",
+                'name': provider.name
+            })
+        return Response(providers, status=status.HTTP_200_OK)