Provide Social Auth settings: functionality [#2821853]

Comment	File	Size	Author
#13	interdiff-2821853-11-13.txt	10.29 KB	gvso
#13	2821853-13.patch	11.55 KB	gvso
#11	interdiff.txt	4.35 KB	denutkarsh
#11	2821853-11.patch	7.14 KB	denutkarsh
#10	interdiff.txt	4.79 KB	denutkarsh
#10	2821853-10.patch	3.96 KB	denutkarsh
#8	interdiff.txt	926 bytes	denutkarsh
#8	2821853-8.patch	1.83 KB	denutkarsh
#7	interdiff.txt	391 bytes	denutkarsh
#7	2821853-6.patch	1.58 KB	denutkarsh
#6	interdiff.txt	2.16 KB	denutkarsh
#6	2821853-5.patch	1.58 KB	denutkarsh
#4	2821853-4.patch	1.43 KB	denutkarsh

Comment #1

25 October 2016 at 00:22

gvso created an issue. See original summary.

Log in or register to post comments

Comment #2

denutkarsh commented 26 January 2017 at 14:47

Assigned:

Unassigned

» denutkarsh

I'd like to provide the patch for this issue.

Log in or register to post comments

Comment #3

denutkarsh commented 26 January 2017 at 14:47

Issue summary:

View changes

Log in or register to post comments

Comment #4

denutkarsh commented 4 February 2017 at 12:34

Status:

Active

» Needs work

Status	File	Size
new	2821853-4.patch	1.43 KB

IMHO we could easily implement these features in authenticateUser() method #2848144: Create authenticate method. Since the patch hasn't been committed for that issue till now, so i think currently this patch is of no use. Indents still nodes to be fixed on needs line and i haven't implemented "Disable Login Role" feature. Anyways, i am think of something like this.

Log in or register to post comments

Comment #5

denutkarsh commented 4 February 2017 at 17:20

Assigned:	denutkarsh	» Unassigned
Status:	Needs work	» Needs review

Here is the patch. Tested it with "Social Auth Twitter", it works correctly.

Log in or register to post comments

Comment #6

denutkarsh commented 4 February 2017 at 17:22

Status	File	Size
new	2821853-5.patch	1.58 KB
new	interdiff.txt	2.16 KB

Here is the patch. Tested it with "Social Auth Twitter", it works correctly.

Log in or register to post comments

Comment #7

denutkarsh commented 4 February 2017 at 17:32

Status	File	Size
new	2821853-6.patch	1.58 KB
new	interdiff.txt	391 bytes

Oops, forgot to correct route path. Here is the new patch.
Edit: Patch name is not right because of the confusing between the comment number.

Log in or register to post comments

Comment #8

denutkarsh commented 4 February 2017 at 18:11

Status	File	Size
new	2821853-8.patch	1.83 KB
new	interdiff.txt	926 bytes

Forgot to implement "Post login path". Here is the new patch, which all contains the fix for a bug for "Disabled Roles".

Log in or register to post comments

Comment #9

gvso

Spanish

commented 7 February 2017 at 11:57

Status:

Needs review

» Needs work

Thanks!

+++ b/src/SocialAuthUserManager.php
@@ -98,11 +98,25 @@ class SocialAuthUserManager {
+      // Check if Admin can authenticate.
+      if($config->get('disable_admin_login')){
+        if($drupal_user->id() == 1) {
+          return $this->redirect('user.login');
+        }
+      }

I'd prefer this logic to be place in a different method. Thus, implementers which do not use the authenticateUser method can check this setting. Also, use drupal_set_message to let the user knows why he couldn't log in.

+++ b/src/SocialAuthUserManager.php
@@ -98,11 +98,25 @@ class SocialAuthUserManager {
+      // Check for Disabled roles.
+      $disabled_roles = $config->get('disabled_roles');
+      foreach($disabled_roles as $role){
+        if(!empty($role) && $drupal_user->hasRole($role)){
+          return $this->redirect('user.login');
+        }
+      }

Same as above.

+++ b/src/SocialAuthUserManager.php
@@ -124,7 +138,14 @@ class SocialAuthUserManager {
+        if($config->get('redirect_user_form')) {
+          return $this->redirect('entity.user.edit_form', [
+            'user' => $drupal_user->id(),
+          ]);
+        }
+        else{
+          return $this->redirect('user.page');
+        }

Same here. Plus, I think if the new created user is not redirected to the edit form, it should be redirected to post_login_path

Log in or register to post comments

Comment #10

denutkarsh commented 8 February 2017 at 19:56

Status:

Needs work

» Needs review

Status	File	Size
new	2821853-10.patch	3.96 KB
new	interdiff.txt	4.79 KB

Here is the new patch.

Log in or register to post comments

Comment #11

denutkarsh commented 9 February 2017 at 17:28

Issue tags:

+beta blocker

Status	File	Size
new	2821853-11.patch	7.14 KB
new	interdiff.txt	4.35 KB

Here is the new patch, which redirect to route if it exists or else it just redirects to path.

Log in or register to post comments

Comment #12

gvso

Spanish

commented 10 February 2017 at 22:49

Status:

Needs review

» Needs work

This looks better, but I have a few suggestions.

+++ b/src/SocialAuthUserManager.php
@@ -100,9 +105,17 @@ class SocialAuthUserManager {
+      if ($redirect = $this->isAdminDisabled($drupal_user)) {
...
+      if ($redirect = $this->isUserDisabled($drupal_user)) {

@@ -124,7 +137,12 @@ class SocialAuthUserManager {
+        if ($redirect = $this->redirectToUserForm($drupal_user)) {

I think it is better if this methods return TRUE/FALSE values. First, it would allow implementers which don't use the authenticateUser method to provide their own messages/functionality. Second, you avoid the assignment operation inside the if clause

+++ b/src/SocialAuthUserManager.php
@@ -333,6 +351,92 @@ class SocialAuthUserManager {
+      drupal_set_message($this->t('Authentication for Admin is disabled for Security Reasons.'), 'error');

'..for Admin (user 1).'

+++ b/src/SocialAuthUserManager.php
@@ -333,6 +351,92 @@ class SocialAuthUserManager {
+        drupal_set_message($this->t('Authentication for @role is disabled for Security Reasons.', array('@role' => $role)), 'error');

'.. is disabled.'

Log in or register to post comments

Comment #13

gvso

Spanish

commented 17 February 2017 at 15:22

Status:

Needs work

» Needs review

Status	File	Size
new	2821853-13.patch	11.55 KB
new	interdiff-2821853-11-13.txt	10.29 KB

Here's a new patch for this issue.

Log in or register to post comments

Comment #14

denutkarsh commented 17 February 2017 at 15:32

@gvso The new patch, looks good to me. But should we follow the first suggestion in #12 since we have already removed the assignment operation inside the if clause ?

Log in or register to post comments

Comment #15

gvso

Spanish

commented 18 February 2017 at 00:43

What do you mean by following the first suggestion?

Log in or register to post comments

Comment #16

denutkarsh commented 18 February 2017 at 02:27

Status:

Needs review

» Reviewed & tested by the community

RTBC, didn't noticed that you are following the first suggestion i.e you are returning TRUE/FALSE values.

Log in or register to post comments

Comment #17

18 February 2017 at 13:37

denutkarsh committed bc6c06c on 8.x-1.x authored by gvso

Issue #2821853 by denutkarsh, gvso: Provide Social Auth settings:...

Log in or register to post comments

Comment #18

denutkarsh commented 18 February 2017 at 13:40

Status:

Reviewed & tested by the community

» Fixed

Thanks! I've committed it on 8.x-1.x

Log in or register to post comments

Comment #19

denutkarsh commented 18 February 2017 at 13:41

Issue tags:

-beta blocker

Log in or register to post comments

Comment #20

4 March 2017 at 13:44

Status:

Fixed

» Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.

Log in or register to post comments

Provide Social Auth settings: functionality

Problem/Motivation

Proposed resolution

Comments

Comment #1

Comment #2

Comment #3

Comment #4

Comment #5

Comment #6

Comment #7

Comment #8

Comment #9

Comment #10

Comment #11

Comment #12

Comment #13

Comment #14

Comment #15

Comment #16

Comment #17

Comment #18

Comment #19

Comment #20

Related issues

Referenced by

News items

Our community

Documentation

Drupal code base

Governance of community