feat: use system browser for oauth flow

Signed-off-by: Adam Setch <[email protected]>

Author: setchy

config/webpack.config.renderer.base.ts

@@ -42,8 +42,8 @@ const configuration: webpack.Configuration = {
   plugins: [
     // Development Keys - See README.md
     new webpack.EnvironmentPlugin({
-      OAUTH_CLIENT_ID: '3fef4433a29c6ad8f22c',
-      OAUTH_CLIENT_SECRET: '9670de733096c15322183ff17ed0fc8704050379',
+      OAUTH_CLIENT_ID: 'Ov23liQIkFs5ehQLNzHF',
+      OAUTH_CLIENT_SECRET: '404b80632292e18419dbd2a6ed25976856e95255',
     }),
 
     // Extract CSS into a separate file

src/main/main.ts

@@ -190,14 +190,16 @@ app.whenReady().then(async () => {
   });
 });
 
+// Handle custom protocol URL events for OAuth 2.0 callback
 app.on('open-url', (event, url) => {
   event.preventDefault();
-  const code = new URL(url).searchParams.get('code'); // Extract the authorization code
-  console.log('Authorization Code:', code);
 
-  if (code) {
-    // Exchange the code for an access token
-    mb.window.webContents.send(namespacedEvent('auth-code'), code);
-    // exchangeCodeForToken(code);
+  const link = new URL(url);
+
+  const type = link.hostname;
+  const code = link.searchParams.get('code');
+
+  if (code && (type === 'auth' || type === 'oauth')) {
+    mb.window.webContents.send(namespacedEvent('auth-code'), type, code);
   }
 });

src/renderer/context/App.tsx

@@ -17,7 +17,6 @@ import {
   type Account,
   type AccountNotifications,
   type AppearanceSettingsState,
-  type AuthCode,
   type AuthState,
   type FilterSettingsState,
   type GitifyError,
@@ -114,7 +113,7 @@ export const defaultSettings: SettingsState = {
 interface AppContextState {
   auth: AuthState;
   isLoggedIn: boolean;
-  loginWithGitHubApp: (authCode: AuthCode) => void;
+  loginWithGitHubApp: () => void;
   loginWithOAuthApp: (data: LoginOAuthAppOptions) => void;
   loginWithPersonalAccessToken: (data: LoginPersonalAccessTokenOptions) => void;
   logoutFromAccount: (account: Account) => void;
@@ -237,17 +236,14 @@ export const AppProvider = ({ children }: { children: ReactNode }) => {
     return hasAccounts(auth);
   }, [auth]);
 
-  const loginWithGitHubApp = useCallback(
-    async (authCode: AuthCode) => {
-      // const { authCode } = await authGitHub();
-      const { token } = await getToken(authCode);
-      const hostname = Constants.DEFAULT_AUTH_OPTIONS.hostname;
-      const updatedAuth = await addAccount(auth, 'GitHub App', token, hostname);
-      setAuth(updatedAuth);
-      saveState({ auth: updatedAuth, settings });
-    },
-    [auth, settings],
-  );
+  const loginWithGitHubApp = useCallback(async () => {
+    const { authCode } = await authGitHub();
+    const { token } = await getToken(authCode);
+    const hostname = Constants.DEFAULT_AUTH_OPTIONS.hostname;
+    const updatedAuth = await addAccount(auth, 'GitHub App', token, hostname);
+    setAuth(updatedAuth);
+    saveState({ auth: updatedAuth, settings });
+  }, [auth, settings]);
 
   const loginWithOAuthApp = useCallback(
     async (data: LoginOAuthAppOptions) => {

src/renderer/routes/Accounts.tsx

@@ -22,23 +22,20 @@ import {
   Text,
 } from '@primer/react';
 
+import { logError } from '../../shared/logger';
 import { AvatarWithFallback } from '../components/avatars/AvatarWithFallback';
 import { Contents } from '../components/layout/Contents';
 import { Page } from '../components/layout/Page';
 import { Footer } from '../components/primitives/Footer';
 import { Header } from '../components/primitives/Header';
 import { AppContext } from '../context/App';
-import { type Account, type Link, Size } from '../types';
+import { type Account, Size } from '../types';
 import {
   formatRequiredScopes,
   getAccountUUID,
   refreshAccount,
 } from '../utils/auth/utils';
-import {
-  openExternalLink,
-  updateTrayIcon,
-  updateTrayTitle,
-} from '../utils/comms';
+import { updateTrayIcon, updateTrayTitle } from '../utils/comms';
 import { getAuthMethodIcon, getPlatformIcon } from '../utils/icons';
 import {
   openAccountProfile,
@@ -48,7 +45,8 @@ import {
 import { saveState } from '../utils/storage';
 
 export const AccountsRoute: FC = () => {
-  const { auth, settings, logoutFromAccount } = useContext(AppContext);
+  const { auth, settings, loginWithGitHubApp, logoutFromAccount } =
+    useContext(AppContext);
   const navigate = useNavigate();
 
   const logoutAccount = useCallback(
@@ -67,6 +65,14 @@ export const AccountsRoute: FC = () => {
     navigate('/accounts', { replace: true });
   }, []);
 
+  const loginWithGitHub = useCallback(async () => {
+    try {
+      await loginWithGitHubApp();
+    } catch (err) {
+      logError('loginWithGitHub', 'failed to login with GitHub', err);
+    }
+  }, []);
+
   const loginWithPersonalAccessToken = useCallback(() => {
     return navigate('/login-personal-access-token', { replace: true });
   }, []);
@@ -231,7 +237,7 @@ export const AccountsRoute: FC = () => {
           <ActionMenu.Overlay width="medium">
             <ActionList>
               <ActionList.Item
-                onSelect={() => openExternalLink('https://github.com' as Link)}
+                onSelect={() => loginWithGitHub()}
                 data-testid="account-add-github"
               >
                 <ActionList.LeadingVisual>

src/renderer/routes/Login.tsx

@@ -1,15 +1,14 @@
 import { KeyIcon, MarkGithubIcon, PersonIcon } from '@primer/octicons-react';
 import { Button, Heading, Stack, Text } from '@primer/react';
-import { type FC, useContext, useEffect } from 'react';
+import { type FC, useCallback, useContext, useEffect } from 'react';
 import { useNavigate } from 'react-router-dom';
 
-import { ipcRenderer } from 'electron';
-import { namespacedEvent } from '../../shared/events';
+import { logError } from '../../shared/logger';
 import { LogoIcon } from '../components/icons/LogoIcon';
 import { Centered } from '../components/layout/Centered';
 import { AppContext } from '../context/App';
-import { type AuthCode, type Link, Size } from '../types';
-import { openExternalLink, showWindow } from '../utils/comms';
+import { Size } from '../types';
+import { showWindow } from '../utils/comms';
 
 export const LoginRoute: FC = () => {
   const navigate = useNavigate();
@@ -22,21 +21,14 @@ export const LoginRoute: FC = () => {
     }
   }, [isLoggedIn]);
 
-  useEffect(() => {
-    ipcRenderer.on(namespacedEvent('auth-code'), (_, authCode: AuthCode) => {
-      console.log('RENDER AUTH CODE', authCode);
-      loginWithGitHubApp(authCode);
-    });
+  const loginUser = useCallback(() => {
+    try {
+      loginWithGitHubApp();
+    } catch (err) {
+      logError('loginWithGitHubApp', 'failed to login with GitHub', err);
+    }
   }, [loginWithGitHubApp]);
 
-  // const loginUser = useCallback(() => {
-  //   try {
-  //     loginWithGitHubApp();
-  //   } catch (err) {
-  //     logError('loginWithGitHubApp', 'failed to login with GitHub', err);
-  //   }
-  // }, [loginWithGitHubApp]);
-
   return (
     <Centered fullHeight={true}>
       <Stack direction="vertical" align="center">
@@ -53,7 +45,7 @@ export const LoginRoute: FC = () => {
           <Button
             leadingVisual={MarkGithubIcon}
             variant="primary"
-            onClick={() => openExternalLink('https://github.com' as Link)}
+            onClick={() => loginUser()}
             data-testid="login-github"
           >
             GitHub

src/renderer/utils/auth/types.ts

@@ -22,6 +22,7 @@ export interface LoginPersonalAccessTokenOptions {
 }
 
 export interface AuthResponse {
+  authType: AuthMethod;
   authCode: AuthCode;
   authOptions: LoginOAuthAppOptions;
 }

src/renderer/utils/auth/utils.ts

@@ -1,8 +1,9 @@
-import { BrowserWindow } from '@electron/remote';
 import { format } from 'date-fns';
 import semver from 'semver';
 
+import { ipcRenderer } from 'electron';
 import { APPLICATION } from '../../../shared/constants';
+import { namespacedEvent } from '../../../shared/events';
 import { logError, logWarn } from '../../../shared/logger';
 import type {
   Account,
@@ -22,80 +23,31 @@ import { Constants } from '../constants';
 import { getPlatformFromHostname } from '../helpers';
 import type { AuthMethod, AuthResponse, AuthTokenResponse } from './types';
 
-// TODO - Refactor our OAuth2 flow to use system browser and local app gitify://callback - see #485 #561 #654
-export function authGitHub(authOptions = Constants.DEFAULT_AUTH_OPTIONS) {
-  const authUrl = new URL(`https://${authOptions.hostname}`);
-  authUrl.pathname = '/login/oauth/authorize';
-  authUrl.searchParams.append('client_id', authOptions.clientId);
-  authUrl.searchParams.append('scope', Constants.AUTH_SCOPE.toString());
-
-  openExternalLink(authUrl.toString() as Link);
-
-  // return new Promise((resolve, reject) => {
-  //   // Build the OAuth consent page URL
-  //   const authWindow = new BrowserWindow({
-  //     width: 548,
-  //     height: 736,
-  //     show: true,
-  //   });
-
-  //   const authUrl = new URL(`https://${authOptions.hostname}`);
-  //   authUrl.pathname = '/login/oauth/authorize';
-  //   authUrl.searchParams.append('client_id', authOptions.clientId);
-  //   authUrl.searchParams.append('scope', Constants.AUTH_SCOPE.toString());
-
-  //   const session = authWindow.webContents.session;
-  //   session.clearStorageData();
-
-  //   authWindow.loadURL(authUrl.toString());
-
-  //   const handleCallback = (url: Link) => {
-  //     const raw_code = /code=([^&]*)/.exec(url) || null;
-  //     const authCode =
-  //       raw_code && raw_code.length > 1 ? (raw_code[1] as AuthCode) : null;
-  //     const error = /\?error=(.+)$/.exec(url);
-  //     if (authCode || error) {
-  //       // Close the browser if code found or error
-  //       authWindow.destroy();
-  //     }
-  //     // If there is a code, proceed to get token from github
-  //     if (authCode) {
-  //       resolve({ authCode, authOptions });
-  //     } else if (error) {
-  //       reject(
-  //         "Oops! Something went wrong and we couldn't " +
-  //           'log you in using GitHub. Please try again.',
-  //       );
-  //     }
-  //   };
-
-  //   // If "Done" button is pressed, hide "Loading"
-  //   authWindow.on('close', () => {
-  //     authWindow.destroy();
-  //   });
-
-  //   authWindow.webContents.on(
-  //     'did-fail-load',
-  //     (_event, _errorCode, _errorDescription, validatedURL) => {
-  //       if (validatedURL.includes(authOptions.hostname)) {
-  //         authWindow.destroy();
-  //         reject(
-  //           `Invalid Hostname. Could not load https://${authOptions.hostname}/.`,
-  //         );
-  //       }
-  //     },
-  //   );
-
-  //   authWindow.webContents.on('will-redirect', (event, url) => {
-  //     event.preventDefault();
-  //     handleCallback(url as Link);
-  //   });
-
-  //   authWindow.webContents.on('will-navigate', (event, url) => {
-  //     event.preventDefault();
-  //     handleCallback(url as Link);
-  //   });
-  // });
+export function authGitHub(
+  authOptions = Constants.DEFAULT_AUTH_OPTIONS,
+): Promise<AuthResponse> {
+  return new Promise((resolve) => {
+    //   // Build the OAuth consent page URL
+    const authUrl = new URL(`https://${authOptions.hostname}`);
+    authUrl.pathname = '/login/oauth/authorize';
+    authUrl.searchParams.append('client_id', authOptions.clientId);
+    authUrl.searchParams.append('scope', Constants.AUTH_SCOPE.toString());
+
+    openExternalLink(authUrl.toString() as Link);
+
+    ipcRenderer.on(
+      namespacedEvent('auth-code'),
+      (_, authType: 'auth' | 'oauth', authCode: AuthCode) => {
+        const type: AuthMethod =
+          authType === 'auth' ? 'GitHub App' : 'OAuth App';
+        handleCallback(type, authCode);
+      },
+    );
+
+    const handleCallback = (authType: AuthMethod, authCode: AuthCode) => {
+      resolve({ authType, authCode, authOptions });
+    };
+  });
 }
 
 export async function getUserData(