Previously the destination parameter was added to the login-with.html.twig (#2925758: Respect the destination parameter when logging in)

However, the way it appends the destination to social login button will be cached with the template at the first time it was rendered.
The parameter could be dynamic to always redirect users back to where they were before login, e.g. a login link in comment block.

Additionally, the destination parameter was passed through Url::fromRoute() with a base: prefix on return to Drupal after logging in, kludging away any query params that were contained therein.

(Original solution proposal with front-end JS removed)

CommentFileSizeAuthor
#12 social_auth-destination-2981743-12.patch3.39 KBbradjones1
#9 interdiff-2981743-7-8.txt274 bytesamourow
#8 interdiff-2981743-7-8.txt19 bytesamourow
#8 social_auth-destination-2981743-8.patch2.85 KBamourow
#7 interdiff-2981743-6-7.txt450 bytesgvso
#7 2981743-7.patch2.78 KBgvso
#6 interdiff-2981743-4-6.txt2.8 KBgvso
#6 2981743-6.patch2.83 KBgvso
#4 social_auth-destination-2981743-4.patch2.81 KBamourow
#3 social_auth-destination-2981743-3.patch2.74 KBamourow

Comments

amourow created an issue. See original summary.

gvso’s picture

gvso
Primary language Spanish
CreditAttribution: gvso at Google Code-In, Google Summer of Code commented

Any ideas on how to solve it in Social Auth itself?

amourow’s picture

amourow
he/him/his
CreditAttribution: amourow as a volunteer and at Fliegen commented
Status: Active » Needs review
StatusFileSize
new social_auth-destination-2981743-3.patch2.74 KB

rewrite the script from my theme into Social Auth module.

I also remove the destination preprocess from social_auth.module which is cached with the template.

amourow’s picture

amourow
he/him/his
CreditAttribution: amourow as a volunteer and at Fliegen commented
StatusFileSize
new social_auth-destination-2981743-4.patch2.81 KB

I accidentally removed the base_path from social_auth.module. Update the patch.

gvso’s picture

gvso
Primary language Spanish
CreditAttribution: gvso at Google Code-In, Google Summer of Code commented
Status: Needs review » Needs work

Thanks for the patch!

It works perfectly if the user is not logged in. However, when the user is logged in, the destination parameter is concatenated more than once.

gvso’s picture

gvso
Primary language Spanish
CreditAttribution: gvso at Google Code-In, Google Summer of Code commented
Status: Needs work » Needs review
StatusFileSize
new 2981743-6.patch2.83 KB
new interdiff-2981743-4-6.txt2.8 KB

I made some changes to make it work

gvso’s picture

gvso
Primary language Spanish
CreditAttribution: gvso at Google Code-In, Google Summer of Code commented
StatusFileSize
new 2981743-7.patch2.78 KB
new interdiff-2981743-6-7.txt450 bytes

I removed unnecessary wrapper

amourow’s picture

amourow
he/him/his
CreditAttribution: amourow as a volunteer and at Fliegen commented
StatusFileSize
new social_auth-destination-2981743-8.patch2.85 KB
new interdiff-2981743-7-8.txt19 bytes

once() is not a core jquery method in Drupal 8 and it cause the TypeError issue
Add core/jquery.once to libraries.yml

amourow’s picture

amourow
he/him/his
CreditAttribution: amourow as a volunteer and at Fliegen commented
StatusFileSize
new interdiff-2981743-7-8.txt274 bytes

Re-upload the interdiff txt

davps’s picture

davps CreditAttribution: davps as a volunteer and at DrupalJedi commented
Status: Needs review » Needs work

It could be resolved by:

  1. disabling the cache on /user/login page, or
  2. use front-end javascript to populate the destination parameter

I'm not sure that js solution is the correct way to resolve issue.

As possible case, it might be properly configured viewing element. As login_with is a theme with a preprocess you can add $variables['#cache']['max-age'] = 0; in the preprocess and it will disable caching for current element (themeing).

As advanced solution need to add cache dependency (cache context) by destination

gvso’s picture

gvso
Primary language Spanish
CreditAttribution: gvso at Google Code-In, Google Summer of Code commented

As advanced solution need to add cache dependency (cache context) by destination

Any examples of how this solution would look like?

bradjones1’s picture

bradjones1
Primary language English
CreditAttribution: bradjones1 at FRUITION commented
Status: Needs work » Needs review
StatusFileSize
new social_auth-destination-2981743-12.patch3.39 KB

It would look something like the enclosed patch. :-)

bradjones1’s picture

bradjones1
Primary language English
CreditAttribution: bradjones1 at FRUITION commented
Title: Destination parameter is cached with template » Destination parameter is improperly cached, handled on return
Issue summary: View changes

I just noticed this patch also includes a cleanup of the handling of the destination parameter vis-a-vis the return to Drupal. If you are employing social auth as part of a chain-reaction of OAuth operations (e.g., OAuth Request is fulfilled after auth with a social provider) the query params in the destination string were kludged when generating a Url from the "base:" route.

I discovered this ticket via that fact pattern, and the cache issue effectively breaks destination handling for social auth, so I figure we can roll these together and have adjusted the ticket title as such.

adanielyan’s picture

adanielyan CreditAttribution: adanielyan commented

#12 crashes the site on login. There are 3 errors in watchdog:

Failed to authenticate user. Exception: Cannot redirect to an empty URL.

LogicException: The controller must return a response (null given). Did you forget to add a return statement somewhere in your controller? in Symfony\Component\HttpKernel\HttpKernel->handleRaw() (line 169 of /vendor/symfony/http-kernel/HttpKernel.php).

InvalidArgumentException: Cannot redirect to an empty URL. in Symfony\Component\HttpFoundation\RedirectResponse->setTargetUrl() (line 86 of /vendor/symfony/http-foundation/RedirectResponse.php).

bradjones1’s picture

bradjones1
Primary language English
CreditAttribution: bradjones1 at FRUITION commented

@adanielyan - Are you able to use xdebug to go in and see what might be causing this fact pattern? Alternatively, are you at DrupalCon this week and we could get together and look at it together?

gvso’s picture

gvso
Primary language Spanish
CreditAttribution: gvso at Google Code-In, Google Summer of Code commented
Title: Destination parameter is improperly cached, handled on return » Invalidate cache based on destination parameter and accept only paths as redirection values
Status: Needs review » Needs work

  • gvso committed 448e65c on 8.x-2.x 
    Issue #2981743 by amourow, bradjones1, davps, adanielyan: Invalidate...
gvso’s picture

gvso
Primary language Spanish
CreditAttribution: gvso at Google Code-In, Google Summer of Code commented
Status: Needs work » Fixed

Thanks, @bradjones1. I personally like avoiding a mix of markups with code as much as possible. I just added cache tags on the theme itself, so the cache gets invalidated after the destination parameter changes.

I liked the idea of just accepting paths. I think we shouldn't accept routes as possible destinations, though there were more changes needed to accomplish this fully.

Thanks, everyone!

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.