Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature: Limit permissions for the extension to GitHub #102

Closed
1 of 2 tasks
bdougie opened this issue May 23, 2023 · 3 comments · Fixed by #138
Closed
1 of 2 tasks

Feature: Limit permissions for the extension to GitHub #102

bdougie opened this issue May 23, 2023 · 3 comments · Fixed by #138
Labels
💡 feature

Comments

@bdougie
Copy link
Member

bdougie commented May 23, 2023

Type of feature

🍕 Feature

Current behavior

Screen Shot 2023-05-22 at 5 18 32 PM

Suggested solution

By default these settings is marked for "all sites"

Additional context

No response

Code of Conduct

  • I agree to follow this project's Code of Conduct

Contributing Docs

  • I agree to follow this project's Contribution Docs
@diivi diivi added the good first issue Good for newcomers label May 23, 2023
@bdougie
Copy link
Member Author

bdougie commented May 23, 2023

@diivi this is not quite a good first issue until it provides the solution. https://opensauced.pizza/blog/good-first-issues-dont-exist

@diivi
Copy link
Contributor

diivi commented May 23, 2023

@Anush008 can the authentication really function without having access to websites other than GitHub? I tried changing the host_permissions, and couldn't log in anymore.

If so,

"host_permissions": ["https://github.com/*,"the_url_we_use_for_auth"]

@diivi diivi removed the good first issue Good for newcomers label May 23, 2023
@Anush008
Copy link
Member

Anush008 commented May 23, 2023
edited
Loading

@diivi, we'll be needing "https://insights.opensauced.pizza/*" in the host_permissions array for the auth to work.

ai/src/constants.ts

Line 5 in 554bded

export const OPEN_SAUCED_INSIGHTS_DOMAIN = "insights.opensauced.pizza";

ai/src/utils/checkAuthentication.ts

Lines 10 to 14 in 554bded

chrome.cookies.get(
{
name: SUPABASE_AUTH_COOKIE_NAME,
url: `https://${OPEN_SAUCED_INSIGHTS_DOMAIN}`,
},

The getter above won't return a value without access to https://insights.opensauced.pizza/* .

@Anush008 Anush008 mentioned this issue May 26, 2023
Merged
19 tasks
@Anush008 Anush008 linked a pull request May 26, 2023 that will close this issue
feat: Logout from the extension #138
Merged
19 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
💡 feature
Projects
Extension Status Board
Status: Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat: Logout from the extension open-sauced/ai
3 participants
@bdougie @diivi @Anush008