mirror of
https://github.com/Freika/dawarich.git
synced 2026-01-10 17:21:38 -05:00
b1393ee674
* Implement OmniAuth GitHub authentication * Fix omniauth GitHub scope to include user email access * Remove margin-bottom * Implement Google OAuth2 authentication * Implement OIDC authentication for Dawarich using omniauth_openid_connect gem. * Add patreon account linking and patron checking service * Update docker-compose.yml to use boolean values instead of strings * Add support for KML files * Add tests * Update changelog * Remove patreon OAuth integration * Move omniauthable to a concern * Update an icon in integrations * Update changelog * Update app version * Fix family location sharing toggle * Move family location sharing to its own controller * Update changelog * Implement basic tagging functionality for places, allowing users to categorize and label places with custom tags. * Add places management API and tags feature * Add some changes related to places management feature * Fix some tests * Fix sometests * Add places layer * Update places layer to use Leaflet.Control.Layers.Tree for hierarchical layer control * Rework tag form * Add hashtag * Add privacy zones to tags * Add notes to places and manage place tags * Update changelog * Update e2e tests * Extract tag serializer to its own file * Fix some tests * Fix tags request specs * Fix some tests * Fix rest of the tests * Revert some changes * Add missing specs * Revert changes in place export/import code * Fix some specs * Fix PlaceFinder to only consider global places when finding existing places * Fix few more specs * Fix visits creator spec * Fix last tests * Update place creating modal * Add home location based on "Home" tagged place * Save enabled tag layers * Some fixes * Fix bug where enabling place tag layers would trigger saving enabled layers, overwriting with incomplete data * Update migration to use disable_ddl_transaction! and add up/down methods * Fix tag layers restoration and filtering logic * Update OIDC auto-registration and email/password registration settings * Fix potential xss
70 lines
2.2 KiB
Ruby
70 lines
2.2 KiB
Ruby
# frozen_string_literal: true
|
|
|
|
class Users::OmniauthCallbacksController < Devise::OmniauthCallbacksController
|
|
def github
|
|
handle_auth('GitHub')
|
|
end
|
|
|
|
def google_oauth2
|
|
handle_auth('Google')
|
|
end
|
|
|
|
def openid_connect
|
|
handle_auth('OpenID Connect')
|
|
end
|
|
|
|
def failure
|
|
error_type = request.env['omniauth.error.type']
|
|
error = request.env['omniauth.error']
|
|
|
|
# Provide user-friendly error messages
|
|
error_message =
|
|
case error_type
|
|
when :invalid_credentials
|
|
'Invalid credentials. Please check your username and password.'
|
|
when :timeout
|
|
'Connection timeout. Please try again.'
|
|
when :csrf_detected
|
|
'Security error detected. Please try again.'
|
|
else
|
|
if error&.message&.include?('Discovery')
|
|
'Unable to connect to authentication provider. Please contact your administrator.'
|
|
elsif error&.message&.include?('Issuer mismatch')
|
|
'Authentication provider configuration error. Please contact your administrator.'
|
|
else
|
|
"Authentication failed: #{params[:message] || error&.message || 'Unknown error'}"
|
|
end
|
|
end
|
|
|
|
redirect_to root_path, alert: error_message
|
|
end
|
|
|
|
private
|
|
|
|
def handle_auth(provider)
|
|
@user = User.from_omniauth(request.env['omniauth.auth'])
|
|
|
|
if @user&.persisted?
|
|
flash[:notice] = I18n.t 'devise.omniauth_callbacks.success', kind: provider
|
|
sign_in_and_redirect @user, event: :authentication
|
|
elsif @user.nil?
|
|
# User creation was rejected (e.g., OIDC auto-register disabled)
|
|
error_message = if provider == 'OpenID Connect' && !oidc_auto_register_enabled?
|
|
'Your account must be created by an administrator before you can sign in with OIDC. ' \
|
|
'Please contact your administrator.'
|
|
else
|
|
'Unable to create your account. Please try again or contact support.'
|
|
end
|
|
redirect_to root_path, alert: error_message
|
|
else
|
|
redirect_to new_user_registration_url, alert: @user.errors.full_messages.join("\n")
|
|
end
|
|
end
|
|
|
|
def oidc_auto_register_enabled?
|
|
env_value = ENV['OIDC_AUTO_REGISTER']
|
|
return true if env_value.nil?
|
|
|
|
ActiveModel::Type::Boolean.new.cast(env_value)
|
|
end
|
|
end
|