Merge pull request #293 from supertokens/email-password-feature-branch

feat: Email password feature branch

Author: rishabhpoddar

CHANGELOG.md

@@ -7,6 +7,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## unreleased
 
+## [0.12.3] - 2023-02-27
+- Adds APIs and logic to the dashboard recipe to enable email password based login
 ## [0.12.2] - 2023-02-23
 - Fix expiry time of access token cookie.
 

coreDriverInterfaceSupported.json

@@ -1,12 +1,15 @@
 {
-    "_comment": "contains a list of core-driver interfaces branch names that this core supports",
-    "versions": [
-        "2.9",
-        "2.10",
-        "2.11",
-        "2.12",
-        "2.13",
-        "2.14",
-        "2.15"
-    ]
-}
+  "_comment": "contains a list of core-driver interfaces branch names that this core supports",
+  "versions": [
+    "2.9",
+    "2.10",
+    "2.11",
+    "2.12",
+    "2.13",
+    "2.14",
+    "2.15",
+    "2.16",
+    "2.17",
+    "2.18"
+  ]
+}

examples/with-flask/with-thirdpartyemailpassword/app.py

@@ -3,6 +3,7 @@
 from dotenv import load_dotenv
 from flask import Flask, abort, g, jsonify
 from flask_cors import CORS
+
 from supertokens_python import (
     InputAppInfo,
     SupertokensConfig,
@@ -11,9 +12,9 @@
 )
 from supertokens_python.framework.flask import Middleware
 from supertokens_python.recipe import (
+    emailverification,
     session,
     thirdpartyemailpassword,
-    emailverification,
 )
 from supertokens_python.recipe.session.framework.flask import verify_session
 from supertokens_python.recipe.thirdpartyemailpassword import (

setup.py

@@ -70,7 +70,7 @@
 
 setup(
     name="supertokens_python",
-    version="0.12.2",
+    version="0.12.3",
     author="SuperTokens",
     license="Apache 2.0",
     author_email="[email protected]",

supertokens_python/constants.py

@@ -11,8 +11,19 @@
 # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 # License for the specific language governing permissions and limitations
 # under the License.
-SUPPORTED_CDI_VERSIONS = ["2.9", "2.10", "2.11", "2.12", "2.13", "2.14", "2.15"]
-VERSION = "0.12.2"
+SUPPORTED_CDI_VERSIONS = [
+    "2.9",
+    "2.10",
+    "2.11",
+    "2.12",
+    "2.13",
+    "2.14",
+    "2.15",
+    "2.16",
+    "2.17",
+    "2.18",
+]
+VERSION = "0.12.3"
 TELEMETRY = "/telemetry"
 USER_COUNT = "/users/count"
 USER_DELETE = "/user/remove"
@@ -25,4 +36,4 @@
 FDI_KEY_HEADER = "fdi-version"
 API_VERSION = "/apiversion"
 API_VERSION_HEADER = "cdi-version"
-DASHBOARD_VERSION = "0.3"
+DASHBOARD_VERSION = "0.4"

supertokens_python/querier.py

@@ -166,11 +166,18 @@ async def f(url: str) -> Response:
 
         return await self.__send_request_helper(path, "POST", f, len(self.__hosts))
 
-    async def send_delete_request(self, path: NormalisedURLPath):
+    async def send_delete_request(
+        self, path: NormalisedURLPath, params: Union[Dict[str, Any], None] = None
+    ):
+        if params is None:
+            params = {}
+
         async def f(url: str) -> Response:
             async with AsyncClient() as client:
                 return await client.delete(  # type:ignore
-                    url, headers=await self.__get_headers_with_api_version(path)
+                    url,
+                    params=params,
+                    headers=await self.__get_headers_with_api_version(path),
                 )
 
         return await self.__send_request_helper(path, "DELETE", f, len(self.__hosts))

supertokens_python/recipe/dashboard/__init__.py

@@ -14,16 +14,17 @@
 
 from __future__ import annotations
 
-from typing import Optional, Callable
+from typing import TYPE_CHECKING, Callable, Optional, Union
 
-from supertokens_python import AppInfo, RecipeModule
-from supertokens_python.recipe.dashboard.utils import InputOverrideConfig
+if TYPE_CHECKING:
+    from supertokens_python import AppInfo, RecipeModule
+    from supertokens_python.recipe.dashboard.utils import InputOverrideConfig
 
 from .recipe import DashboardRecipe
 
 
 def init(
-    api_key: str,
+    api_key: Union[str, None] = None,
     override: Optional[InputOverrideConfig] = None,
 ) -> Callable[[AppInfo], RecipeModule]:
     return DashboardRecipe.init(

supertokens_python/recipe/dashboard/api/__init__.py

@@ -13,6 +13,8 @@
 # under the License.
 from .api_key_protector import api_key_protector
 from .dashboard import handle_dashboard_api
+from .signin import handle_emailpassword_signin_api
+from .signout import handle_emailpassword_signout_api
 from .userdetails.user_delete import handle_user_delete
 from .userdetails.user_email_verify_get import handle_user_email_verify_get
 from .userdetails.user_email_verify_put import handle_user_email_verify_put
@@ -45,4 +47,6 @@
     "handle_user_sessions_post",
     "handle_user_password_put",
     "handle_email_verify_token_post",
+    "handle_emailpassword_signin_api",
+    "handle_emailpassword_signout_api",
 ]

supertokens_python/recipe/dashboard/api/implementation.py

@@ -17,13 +17,12 @@
 from textwrap import dedent
 from typing import TYPE_CHECKING, Any, Dict
 
-from supertokens_python.normalised_url_domain import NormalisedURLDomain
 from supertokens_python import Supertokens
+from supertokens_python.normalised_url_domain import NormalisedURLDomain
 from supertokens_python.normalised_url_path import NormalisedURLPath
+
 from ..constants import DASHBOARD_API
-from ..interfaces import (
-    APIInterface,
-)
+from ..interfaces import APIInterface
 
 if TYPE_CHECKING:
     from ..interfaces import APIOptions
@@ -48,7 +47,7 @@ async def dashboard_get(
 
             connection_uri = ""
             super_tokens_instance = Supertokens.get_instance()
-
+            auth_mode = options.config.auth_mode
             connection_uri = super_tokens_instance.supertokens_config.connection_uri
 
             dashboard_path = options.app_info.api_base_path.append(
@@ -65,6 +64,7 @@ async def dashboard_get(
                             window.staticBasePath = "${bundleDomain}/static"
                             window.dashboardAppPath = "${dashboardPath}"
                             window.connectionURI = "${connectionURI}"
+                            window.authMode = "${authMode}"
                         </script>
                         <script defer src="${bundleDomain}/static/js/bundle.js"></script></head>
                         <link href="${bundleDomain}/static/css/main.css" rel="stylesheet" type="text/css">
@@ -81,6 +81,7 @@ async def dashboard_get(
                 bundleDomain=bundle_domain,
                 dashboardPath=dashboard_path,
                 connectionURI=connection_uri,
+                authMode=auth_mode,
             )
 
         self.dashboard_get = dashboard_get

supertokens_python/recipe/dashboard/api/signin.py

@@ -0,0 +1,56 @@
+# Copyright (c) 2021, VRAI Labs and/or its affiliates. All rights reserved.
+#
+# This software is licensed under the Apache License, Version 2.0 (the
+# "License") as published by the Apache Software Foundation.
+#
+# You may not use this file except in compliance with the License. You may
+# obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+# License for the specific language governing permissions and limitations
+# under the License.
+from __future__ import annotations
+
+from typing import TYPE_CHECKING
+
+if TYPE_CHECKING:
+    from supertokens_python.recipe.dashboard.interfaces import APIInterface, APIOptions
+
+from supertokens_python.exceptions import raise_bad_input_exception
+from supertokens_python.normalised_url_path import NormalisedURLPath
+from supertokens_python.querier import Querier
+from supertokens_python.utils import send_200_response
+
+
+async def handle_emailpassword_signin_api(_: APIInterface, api_options: APIOptions):
+    body = await api_options.request.json()
+    if body is None:
+        raise_bad_input_exception("Please send body")
+    email = body.get("email")
+    password = body.get("password")
+
+    if email is None or not isinstance(email, str):
+        raise_bad_input_exception("Missing required parameter 'email'")
+    if password is None or not isinstance(password, str):
+        raise_bad_input_exception("Missing required parameter 'password'")
+    response = await Querier.get_instance().send_post_request(
+        NormalisedURLPath("/recipe/dashboard/signin"),
+        {"email": email, "password": password},
+    )
+
+    if "status" in response and response["status"] == "OK":
+        return send_200_response(
+            {"status": "OK", "sessionId": response["sessionId"]}, api_options.response
+        )
+    if "status" in response and response["status"] == "INVALID_CREDENTIALS_ERROR":
+        return send_200_response(
+            {"status": "INVALID_CREDENTIALS_ERROR"},
+            api_options.response,
+        )
+    if "status" in response and response["status"] == "USER_SUSPENDED_ERROR":
+        return send_200_response(
+            {"status": "USER_SUSPENDED_ERROR", "message": response["message"]},
+            api_options.response,
+        )