Call res.redirect after user's handler code for login callback
#3
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
denysoblohin-okta
force-pushed
the
od-OKTA-306438-login-callback-handler-improvement
branch
from
039e92d
to
1b98d17
Compare
denysoblohin-okta
force-pushed
the
od-OKTA-306438-login-callback-handler-improvement
branch
from
1b98d17
to
13c839f
Compare
shuowu
reviewed
Nov 17, 2021
src/connectUtil.js
Outdated
| const afterCustomNextHandler = (err) => { | ||
| if (err) { | ||
| next(err); | ||
| } else if (!res._headerSent) { |
There was a problem hiding this comment.
what's the res._headerSent? looks like a private field, should the middleware depend on it?
There was a problem hiding this comment.
Changed to writableEnded
expressjs/express#743
There was a problem hiding this comment.
nit: express v4 seems to have a public accessor for headersSent
There was a problem hiding this comment.
If that's the case, we probably should be able to keep it.
https://github.com/okta/okta-oidc-middleware/blob/master/package.json#L44
oleksandrpravosudko-okta
approved these changes
Nov 18, 2021
shuowu-okta
approved these changes
Nov 18, 2021
Call `res.redirect` after user's `handler` code for login callback
denysoblohin-okta
force-pushed
the
od-OKTA-306438-login-callback-handler-improvement
branch
from
559cd0d
to
b7e00ac
Compare
eng-prod-CI-bot-okta
pushed a commit
that referenced
this pull request
Nov 19, 2021
OKTA-306438 <<<Jenkins Check-In of Tested SHA: b7e00ac for [email protected]>>> Artifact: okta-oidc-middleware Files changed count: 3 PR Link: "#3"
oleksandrpravosudko-okta
pushed a commit
that referenced
this pull request
Nov 19, 2021
OKTA-306438 <<<Jenkins Check-In of Tested SHA: b7e00ac for [email protected]>>> Artifact: okta-oidc-middleware Files changed count: 3 PR Link: "#3"
oleksandrpravosudko-okta
pushed a commit
that referenced
this pull request
Nov 19, 2021
OKTA-306438 <<<Jenkins Check-In of Tested SHA: b7e00ac for [email protected]>>> Artifact: okta-oidc-middleware Files changed count: 3 PR Link: "#3"
Closed
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Internal ref: OKTA-306438
Resolves okta/okta-oidc-js#340
Overseedes okta/okta-oidc-js#805
This PR improves case when user defines
routes.loginCallback.handlerDescription of this function in readme:
Current behavior
The developer needs to manually call
res.redirect()inhandler.This requirement is not explicitly covered in readme and can lead to confusion (see okta/okta-oidc-js#340)
However, it can be useful to give developer the power to manually set redirect path after authentication.
For example, developer can use
req.userContext.userinfo.localeNew behavior
If developer did not call
res.redirect()inhandler, it will be called automatically with correct value (routes.loginCallback.afterCallback) innext().Otherwise, if developer have manually called
res.redirect()with the value he needs,next()will do nothing.