Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(adapter-nextjs): wrong use of nullish coalescing #14112

Merged
merged 1 commit into from
Jan 6, 2025
Merged

fix(adapter-nextjs): wrong use of nullish coalescing #14112

merged 1 commit into from
Jan 6, 2025

Conversation

HuiSF
Copy link
Member

@HuiSF HuiSF commented Jan 3, 2025

Description of changes

Remove wrong usage of nullish coalescing.

Issue #, if available

Description of how you validated changes

  • unit tests

Checklist

  • PR description included
  • yarn test passes
  • Unit Tests are changed or added
  • Relevant documentation is changed or added (and PR referenced)

Checklist for repo maintainers

  • Verify E2E tests for existing workflows are working as expected or add E2E tests for newly added workflows
  • New source file paths included in this PR have been added to CODEOWNERS, if appropriate

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

AllanZhengYP
AllanZhengYP approved these changes Jan 3, 2025
View reviewed changes
Copy link
Member

@AllanZhengYP AllanZhengYP left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice catch!

pranavosu
pranavosu reviewed Jan 3, 2025
View reviewed changes
packages/adapter-nextjs/__tests__/auth/utils/getRedirectOrDefault.test.ts
describe('getRedirectOrDefault', () => {
test.each([
[undefined, '/'],
['', '/'],
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

when will empty string be an issue? won't the redirectURL be undefined or expected to be valid?

Copy link
Member Author

@HuiSF HuiSF Jan 6, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Empty string is not a valid URI to redirect to. This supplier of the value is the redirectOnSignInComplete and redirectOnSignOutComplete parameters on the public API, they are requiring a string value, so empty string is allowed. As it's not a valid URI so we fallback to the root here, as if it's undefined.

Base automatically changed from hui/feat/adapter-nextjs/7-use-max-age to feat/server-auth/main January 6, 2025 22:21
@HuiSF HuiSF requested a review from a team as a code owner January 6, 2025 22:21
@HuiSF HuiSF force-pushed the hui/fix/8-fix-wrong-use-coalescing branch from df2aa27 to 59585f0 Compare January 6, 2025 22:28
@HuiSF HuiSF merged commit f8d978b into feat/server-auth/main Jan 6, 2025
28 checks passed
@HuiSF HuiSF deleted the hui/fix/8-fix-wrong-use-coalescing branch January 6, 2025 22:37
HuiSF added a commit that referenced this pull request Jan 6, 2025
@HuiSF
fix(adapter-nextjs): wrong use of nullish coalescing (#14112)
1d73cbb
HuiSF added a commit that referenced this pull request Jan 9, 2025
@HuiSF
fix(adapter-nextjs): wrong use of nullish coalescing (#14112)
1c95376
HuiSF added a commit that referenced this pull request Jan 27, 2025
@HuiSF
fix(adapter-nextjs): wrong use of nullish coalescing (#14112)
b3a4f14
HuiSF added a commit that referenced this pull request Feb 11, 2025
@HuiSF
feat: support server-side auth flows with Cognito managed login (#14168)
825d338 
* feat(adapter-nextjs): add runtimeOptions.cookies to createServerRunner (#13788)

* feat(aws-amplify|adapter-nextjs): add runtimeOptions.cookies to createServerRunner

* chore: resolve comments

* chore(adapter-nextjs): adapt the latest impl. changes

* feat(adapter-nextjs): add createAuthRouteHandlers to createServerRunner (#13801)

* feat(aws-amplify|adapter-nextjs): add runtimeOptions.cookies to createServerRunner

* feat(adapter-nextjs): add createAuthRouteHandlers to createServerRunner

* chore(adapter-nextjs): resolve comments

* chore(adapter-nextjs): remove unnecessary check

* feat(adapter-nextjs): server-side auth flows integrating cognito hosted UI (#13827)

* chore(auth): export necessary utilities and types to support server-side auth

* chore(aws-amplify): export necessary utilities to support server-side auth

* feat(adapter-nextjs): server-side auth api route integrating cognito hosted ui

* chore(adapter-nextjs): resolve comments

* refactor(adapter-nextjs): remove redundant username fallback

* feat(adapter-nextjs): add user has signed in check before initiating sign-in and sign-up (#13839)

* feat(adapter-nextjs): add user has signed in check before initiating sign-in and sign-up

* chore(adapter-nextjs): rename hasUserSignedIn to hasActiveUserSession

* fix(adapter-nextjs): make createAuthRouteHandlers interface work in both App and Pages routers (#13840)

* feat(adapter-nextjs): set cookie secure: false with non-SSL domain (#13841)

* feat(adapter-nextjs): allow cookie secure: false with non-SSL domain

* fix(adapter-nextjs): wrong naming and impl. of isSSLOrigin

* chore(adapter-nextjs): resolve comment

* refactor(adapter-nextjs): use maxAge attribute to set cookie from server to avoid clock drift (#14103)

* fix(adapter-nextjs): wrong use of nullish coalescing (#14112)

* refactor(adapter-nextjs): remove redundant clockDrift cookie (#14114)

refactor(adapter-nextjs): remove redundant clockDrift cookie ⤵️

Reasons:
  1. token exachange is happening on a server - and production server rarely has wrong system time
  2. when setting token cookies from server, it uses Max-Age header which is relative to the client system time. Clock drift became irrelevant
  3. surely we can argue sever system time can go wrong too, however, a Next.js app API route can be executed on different servers (load balancing), there is no source of truth to generate a clock drift value

* chore: enable tag publishing for server-auth (#14115)

* fix(adapter-nextjs): wrong spot for checking app origin and auth config (#14119)

* fix(adapter-nextjs): not await params async API in Next.js 15 (#14125)

* feat(adapter-nextjs): surface redirect error and sign-in timeout error (#14116)

* feat(adapter-nextjs): surface redirect error and sign-in timeout error

* feat(adapter-nextjs): expose both error and errorDescription

* chore(adapter-nextjs): remove unnecessary undefined fallback

* chore(adapter-nextjs): add warning re: using http in production (#14134)

* fix(core): generateRandomString uses Math.random() (#14132)

* fix(core): generateRandomString uses Math.random()

* chore(core): use better test to test actual logic

* chore(aws-amplify/adapter-nextjs): remove extraneous deps (#14141)

* fix(adapter-nextjs): removing only tokens and LastAuthUser cookies (#14152)

* fix(adapter-nextjs): wrong cookie attributes get set sometimes (#14169)

* chore: add E2E tests for next.js server auth

* chore: disable tag release

* fix(aws-amplify|api): internals export paths
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@pranavosu pranavosu pranavosu left review comments

@AllanZhengYP AllanZhengYP AllanZhengYP approved these changes

@ashika112 ashika112 ashika112 approved these changes

@jjarvisp jjarvisp jjarvisp approved these changes

@sktimalsina sktimalsina Awaiting requested review from sktimalsina sktimalsina is a code owner

@cshfang cshfang Awaiting requested review from cshfang cshfang is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@HuiSF @pranavosu @AllanZhengYP @ashika112 @jjarvisp