Implement new user onboarding flow with welcome message

Tool: gitpod/catfood.gitpod.cloud

Author: filiptronicek

components/dashboard/public/complete-auth/index.html

@@ -6,21 +6,31 @@
 -->
 
 <html>
+
 <head>
     <meta charset='utf-8'>
     <title>Done</title>
     <script>
         if (window.opener) {
             const search = new URLSearchParams(window.location.search);
             const message = search.get("message");
-            window.opener.postMessage(message, `https://${window.location.hostname}`);
+            const newUser = search.get("newUser");
+            window.opener.postMessage(message + "&newUser=" + newUser, `https://${window.location.hostname}`);
+
+            if (newUser === "true") {
+                localStorage.setItem("newUserOnboardingPending", newUser);
+            }
         } else {
             console.log("This page is supposed to be opened by Gitpod.")
             setTimeout("window.close();", 1000);
         }
     </script>
 </head>
+
 <body>
-    If this tab is not closed automatically, feel free to close it and proceed. <button className="px-4 py-2 my-auto bg-gray-900 hover:bg-gray-800 dark:bg-kumquat-base dark:hover:bg-kumquat-ripe text-gray-50 dark:text-gray-900 text-sm font-medium rounded-xl focus:outline-none focus:ring transition ease-in-out" type="button" onclick="window.open('', '_self', ''); window.close();">Close</button>
+    If this tab is not closed automatically, feel free to close it and proceed. <button
+        className="px-4 py-2 my-auto bg-gray-900 hover:bg-gray-800 dark:bg-kumquat-base dark:hover:bg-kumquat-ripe text-gray-50 dark:text-gray-900 text-sm font-medium rounded-xl focus:outline-none focus:ring transition ease-in-out"
+        type="button" onclick="window.open('', '_self', ''); window.close();">Close</button>
 </body>
+
 </html>

components/dashboard/src/login/SSOLoginForm.tsx

@@ -16,10 +16,6 @@ import { useOnboardingState } from "../dedicated-setup/use-needs-setup";
 import { getOrgSlugFromQuery } from "../data/organizations/orgs-query";
 import { storageAvailable } from "../utils";
 
-type Props = {
-    onSuccess: () => void;
-};
-
 function getOrgSlugFromPath(path: string) {
     // '/login/acme' => ['', 'login', 'acme']
     const pathSegments = path.split("/");
@@ -29,6 +25,9 @@ function getOrgSlugFromPath(path: string) {
     return pathSegments[2];
 }
 
+type Props = {
+    onSuccess: () => void;
+};
 export const SSOLoginForm: FC<Props> = ({ onSuccess }) => {
     const location = useLocation();
     const { data: onboardingState } = useOnboardingState();

components/dashboard/src/start/StartWorkspace.tsx

@@ -88,7 +88,7 @@ function parseParameters(search?: string): { notFound?: boolean } {
 
 export interface StartWorkspaceState {
     /**
-     * This is set to the istanceId we started (think we started on).
+     * This is set to the instanceId we started (think we started on).
      * We only receive updates for this particular instance, or none if not set.
      */
     startedInstanceId?: string;

components/dashboard/src/teams/TeamOnboarding.tsx

@@ -166,7 +166,6 @@ export default function TeamOnboardingPage() {
                         Here's a preview of the welcome message that will be shown to your organization members:
                     </span>
                     <WelcomeMessagePreview
-                        welcomeMessage={settings?.onboardingSettings?.welcomeMessage?.message}
                         setWelcomeMessageEditorOpen={setWelcomeMessageEditorOpen}
                         disabled={!isOwner || updateTeamSettings.isLoading}
                     />
@@ -177,25 +176,23 @@ export default function TeamOnboardingPage() {
 }
 
 type WelcomeMessagePreviewProps = {
-    welcomeMessage: string | undefined;
     disabled?: boolean;
-    setWelcomeMessageEditorOpen: (open: boolean) => void;
+    setWelcomeMessageEditorOpen?: (open: boolean) => void;
 };
-const WelcomeMessagePreview = ({
-    welcomeMessage,
-    disabled,
-    setWelcomeMessageEditorOpen,
-}: WelcomeMessagePreviewProps) => {
+export const WelcomeMessagePreview = ({ disabled, setWelcomeMessageEditorOpen }: WelcomeMessagePreviewProps) => {
     const { data: settings } = useOrgSettingsQuery();
     const avatarUrl = settings?.onboardingSettings?.welcomeMessage?.featuredMemberResolvedAvatarUrl;
+    const welcomeMessage = settings?.onboardingSettings?.welcomeMessage?.message;
 
     return (
         <div className="max-w-2xl mx-auto">
             <div className="flex justify-between gap-2 items-center">
                 <Heading2 className="py-6">Welcome to Gitpod</Heading2>
-                <Button variant="secondary" onClick={() => setWelcomeMessageEditorOpen(true)} disabled={disabled}>
-                    Edit
-                </Button>
+                {setWelcomeMessageEditorOpen && (
+                    <Button variant="secondary" onClick={() => setWelcomeMessageEditorOpen(true)} disabled={disabled}>
+                        Edit
+                    </Button>
+                )}
             </div>
             <Subheading>{gitpodWelcomeSubheading}</Subheading>
             {/* todo: sanitize md */}

components/dashboard/src/workspaces/Workspaces.tsx

@@ -37,6 +37,8 @@ import { useUpdateCurrentUserMutation } from "../data/current-user/update-mutati
 import { useUserLoader } from "../hooks/use-user-loader";
 import Tooltip from "../components/Tooltip";
 import { useFeatureFlag } from "../data/featureflag-query";
+import { storageAvailable } from "../utils";
+import { WelcomeMessagePreview } from "../teams/TeamOnboarding";
 
 export const GETTING_STARTED_DISMISSAL_KEY = "workspace-list-getting-started";
 
@@ -46,6 +48,18 @@ const WorkspacesPage: FunctionComponent = () => {
     const [showInactive, setShowInactive] = useState(false);
     const [deleteModalVisible, setDeleteModalVisible] = useState(false);
 
+    const orgOnboardingPending = useMemo(() => {
+        if (storageAvailable("localStorage")) {
+            return localStorage.getItem("newUserOnboardingPending") === "true";
+        }
+        return false;
+    }, []);
+    const dismissOrgOnboardingPending = useCallback(() => {
+        if (storageAvailable("localStorage")) {
+            localStorage.removeItem("newUserOnboardingPending");
+        }
+    }, []);
+
     const { data, isLoading } = useListWorkspacesQuery({ limit });
     const deleteInactiveWorkspaces = useDeleteInactiveWorkspacesMutation();
     useListenToWorkspacesStatusUpdates();
@@ -400,6 +414,12 @@ const WorkspacesPage: FunctionComponent = () => {
                 ) : (
                     <EmptyWorkspacesContent />
                 ))}
+
+            <Modal visible={orgOnboardingPending} onClose={dismissOrgOnboardingPending}>
+                <ModalBody>
+                    <WelcomeMessagePreview />
+                </ModalBody>
+            </Modal>
         </>
     );
 };

components/public-api-server/pkg/oidc/router.go

@@ -169,13 +169,16 @@ func (s *Service) getCallbackHandler() http.HandlerFunc {
 				return
 			}
 		} else {
-			cookies, _, err := s.createSession(r.Context(), result, config)
+			cookies, message, err := s.createSession(r.Context(), result, config)
 			if err != nil {
 				log.WithError(err).Warn("Failed to create session from downstream session provider.")
 				reportLoginCompleted("failed", "sso")
 				respondeWithError(rw, r, "We were unable to create a user session.", http.StatusInternalServerError, useHttpErrors)
 				return
 			}
+			if message.NewUser {
+				oauth2Result.ReturnToURL += "&newUser=true"
+			}
 			for _, cookie := range cookies {
 				http.SetCookie(rw, cookie)
 			}

components/public-api-server/pkg/oidc/service.go

@@ -323,7 +323,12 @@ func (s *Service) authenticate(ctx context.Context, params authenticateParams) (
 	}, nil
 }
 
-func (s *Service) createSession(ctx context.Context, flowResult *AuthFlowResult, clientConfig *ClientConfig) ([]*http.Cookie, string, error) {
+type Message struct {
+	NewUser bool   `json:"newUser"`
+	UserID  string `json:"userId"`
+}
+
+func (s *Service) createSession(ctx context.Context, flowResult *AuthFlowResult, clientConfig *ClientConfig) ([]*http.Cookie, Message, error) {
 	type CreateSessionPayload struct {
 		AuthFlowResult
 		OrganizationID string `json:"organizationId"`
@@ -336,26 +341,30 @@ func (s *Service) createSession(ctx context.Context, flowResult *AuthFlowResult,
 	}
 	payload, err := json.Marshal(sessionPayload)
 	if err != nil {
-		return nil, "", err
+		return nil, Message{}, fmt.Errorf("failed to construct session request: %w", err)
 	}
 
 	url := fmt.Sprintf("http://%s/session", s.sessionServiceAddress)
 	req, err := http.NewRequestWithContext(ctx, http.MethodPost, url, bytes.NewReader(payload))
 	if err != nil {
-		return nil, "", fmt.Errorf("failed to construct session request: %w", err)
+		return nil, Message{}, fmt.Errorf("failed to construct session request: %w", err)
 	}
 	req.Header.Set("Content-Type", "application/json")
 
 	res, err := http.DefaultClient.Do(req)
 	if err != nil {
-		return nil, "", fmt.Errorf("failed to make request to /session endpoint: %w", err)
+		return nil, Message{}, fmt.Errorf("failed to make request to /session endpoint: %w", err)
 	}
 
 	body, err := io.ReadAll(res.Body)
 	if err != nil {
-		return nil, "", err
+		return nil, Message{}, err
+	}
+	message := Message{}
+	err = json.Unmarshal(body, &message)
+	if err != nil {
+		return nil, Message{}, err
 	}
-	message := string(body)
 
 	if res.StatusCode == http.StatusOK {
 		return res.Cookies(), message, nil

components/public-api-server/pkg/oidc/service_test.go

@@ -8,7 +8,6 @@ import (
 	"context"
 	"encoding/json"
 	"fmt"
-	"io"
 	"log"
 	"net/http"
 	"net/http/httptest"
@@ -25,7 +24,6 @@ import (
 	"github.com/go-chi/chi/v5"
 	"github.com/go-chi/chi/v5/middleware"
 	"github.com/golang-jwt/jwt/v5"
-	"github.com/google/go-cmp/cmp"
 	"github.com/google/uuid"
 	"github.com/stretchr/testify/require"
 	"golang.org/x/oauth2"
@@ -277,20 +275,8 @@ func TestCreateSession(t *testing.T) {
 	_, message, err := service.createSession(context.Background(), &AuthFlowResult{}, &config)
 	require.NoError(t, err, "failed to create session")
 
-	got := map[string]interface{}{}
-	err = json.Unmarshal([]byte(message), &got)
-	require.NoError(t, err, "failed to parse response")
-
-	expected := map[string]interface{}{
-		"claims":             nil,
-		"idToken":            nil,
-		"oidcClientConfigId": config.ID,
-		"organizationId":     config.OrganizationID,
-	}
-
-	if diff := cmp.Diff(expected, got); diff != "" {
-		t.Errorf("Unexpected create session payload (-want +got):\n%s", diff)
-	}
+	require.True(t, message.NewUser, "expected new user")
+	require.Equal(t, message.UserID, "user-id", "expected user id")
 }
 
 func Test_validateRequiredClaims(t *testing.T) {
@@ -537,11 +523,13 @@ func newFakeSessionServer(t *testing.T) string {
 		})
 		w.WriteHeader(http.StatusOK)
 
-		// mirroring back the request body for testing
-		body, err := io.ReadAll(r.Body)
-		if err != nil {
-			body = []byte(err.Error())
+		message := Message{
+			NewUser: true,
+			UserID:  "user-id",
 		}
+		body, err := json.Marshal(message)
+		require.NoError(t, err)
+
 		_, err = w.Write(body)
 		if err != nil {
 			log.Fatal(err)

components/server/src/auth/login-completion-handler.ts

@@ -39,6 +39,7 @@ export class LoginCompletionHandler {
     ) {
         const logContext = LogContext.from({ user, request });
 
+        log.info("Login completion handler", { user, returnToUrl, authHost, elevateScopes });
         try {
             await new Promise<void>((resolve, reject) => {
                 request.login(user, (err) => {

components/server/src/iam/iam-session-app.ts

@@ -103,6 +103,7 @@ export class IamSessionApp {
 
         return {
             userId: user.id,
+            newUser: !existingUser,
         };
     }