Feature/auth0 3rd party provider #93
Conversation
feat: include auth0 as valid social provider
smarcet
force-pushed
the
feature/auth0-3rd-party-provider
branch
5 times, most recently
from
6f122e1 to
a954e36
Compare
chore: define custom provider for LFID
smarcet
force-pushed
the
feature/auth0-3rd-party-provider
branch
from
a954e36 to
31eb023
Compare
There was a problem hiding this comment.
Pull Request Overview
This PR adds support for Auth0 and Zoho social login providers with multi-tenancy capabilities. The implementation introduces a tenant-based system to control which OAuth providers are available for specific tenants.
Key Changes:
- Added Auth0 (LFID) and Zoho social login provider packages to support additional authentication methods
- Implemented tenant-based provider filtering logic that restricts available social login providers based on tenant configuration
- Added tenant parameter support in OAuth2 authorization flow to enable tenant-specific authentication
Reviewed Changes
Copilot reviewed 11 out of 13 changed files in this pull request and generated 4 comments.
Show a summary per file
| File | Description |
|---|---|
| config/tenants.php | New configuration file defining tenant-specific allowed 3rd party providers |
| config/services.php | Added custom Auth0 tenant configuration (LFID) with environment-based settings |
| composer.json | Added socialiteproviders/auth0 and socialiteproviders/zoho packages, alphabetically sorted dependencies |
| composer.lock | Lock file updates reflecting new package installations |
| app/libs/Auth/SocialLoginProviders.php | Enhanced buildSupportedProviders with tenant filtering logic and added LFID constant |
| app/libs/OAuth2/OAuth2Protocol.php | Added Tenant constant for tenant parameter support |
| app/libs/OAuth2/Requests/OAuth2AuthorizationRequest.php | Added getTenant() method to retrieve tenant from request |
| app/Strategies/OAuth2LoginStrategy.php | Modified to extract and pass tenant parameter through login flow |
| app/Strategies/DisplayResponseUserAgentStrategy.php | Updated to pass tenant to buildSupportedProviders |
| app/libs/OAuth2/Discovery/DiscoveryDocumentBuilder.php | Updated to use refactored buildSupportedProviders method |
| app/Strategies/OTP/OTPChannelEmailStrategy.php | Added email verification check before generating password reset link |
| app/Providers/AppServiceProvider.php | Registered LFID as Auth0 provider via Socialite event listener |
| .gitignore | Simplified patterns for ignoring source map files |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| ); | ||
|
|
||
| // If no tenant param was provided, any enabled provider is allowed. | ||
| if ($tenant === '' && count($tenants)==0) { |
There was a problem hiding this comment.
Missing space around the '==' operator. Should be 'count($tenants) == 0' for consistency with project formatting standards.
| if ($tenant === '' && count($tenants)==0) { | |
| if ($tenant === '' && count($tenants) == 0) { |
| continue; | ||
| } | ||
| // 2. check if the tenant has that provider enabled | ||
| if (!count($tenants) && !in_array($provider, $allowed_3rd_party_providers)) { |
There was a problem hiding this comment.
Using '!count($tenants)' is less explicit than 'count($tenants) === 0' or 'empty($tenants)'. For consistency with line 78, consider using 'count($tenants) == 0' or the more idiomatic 'empty($tenants)'.
| if (!count($tenants) && !in_array($provider, $allowed_3rd_party_providers)) { | |
| if (count($tenants) == 0 && !in_array($provider, $allowed_3rd_party_providers)) { |
| $provider = $data["provider"] ?? null; | ||
|
|
||
| $provided_tenant = $data["tenant"] ?? ''; | ||
| Log::debug("OAuth2LoginStrategy::getLogin", ['provider' => $provider , 'provided_tenant' => $provided_tenant]); |
There was a problem hiding this comment.
The log message references 'OAuth2LoginStrategy::getLogin' but this is in 'DisplayResponseUserAgentStrategy::getLoginResponse'. The class/method name should be updated to 'DisplayResponseUserAgentStrategy::getLoginResponse' for accurate logging.
| Log::debug("OAuth2LoginStrategy::getLogin", ['provider' => $provider , 'provided_tenant' => $provided_tenant]); | |
| Log::debug("DisplayResponseUserAgentStrategy::getLoginResponse", ['provider' => $provider , 'provided_tenant' => $provided_tenant]); |
| 'client_secret' => env('LFID_CLIENT_SECRET'), | ||
| 'redirect' => env('LFID_REDIRECT_URI'), | ||
| 'base_url' => env('LFID_BASE_URL'), | ||
| 'tenants' => env('LFID_TENANTS','lf'), |
There was a problem hiding this comment.
Missing space after the comma in the env() default value. Should be env('LFID_TENANTS', 'lf') for consistent formatting.
| 'tenants' => env('LFID_TENANTS','lf'), | |
| 'tenants' => env('LFID_TENANTS', 'lf'), |
ref: https://app.clickup.com/t/86b6qmeq4