building/testing auth flow

[aayu5hgit]

Here we're building/testing/discussing the supabase auth flow.

This will be developed further in isolation here using a raw implementation of supabase-js because the nuxt module hides all of the logic and auth is a key part of our app that we need to understand.

Flows handled:

• register
• etc. will add when have time

[aayu5hgit]

@Drew-Macgibbon

(bug): Improper login page reload

At the time, when auth is OFF, everything works normal.
But when auth is ON and login is clicked, there are times when it doesn't showcase the changes such as

• The navbar still shows login and not logged in
• Page doesn't gets updated

A forced page reload has to be made to see the changes.

[aayu5hgit]

@Drew-Macgibbon

(bug): Update Many returns null

When the auth and SMTP are toggled ON and Update Many is clicked, console shows up the following error

I couldn't understand the actual working of this functionality, so can you explain me just the rough flow of things taking place within this functionality?

[Drew-Macgibbon]

@Drew-Macgibbon

(bug): Improper login page reload

At the time, when auth is OFF, everything works normal.
But when auth is ON and login is clicked, there are times when it doesn't showcase the changes such as

• The navbar still shows login and not logged in
• Page doesn't gets updated

A forced page reload has to be made to see the changes.

I think I fixed this in develop, but we lost power so I couldn't merge before I left.

I'll send you the updated env tomorrow so you can work on the dev branch.

[Drew-Macgibbon]

@Drew-Macgibbon

(bug): Update Many returns null

When the auth and SMTP are toggled ON and Update Many is clicked, console shows up the following error

I couldn't understand the actual working of this functionality, so can you explain me just the rough flow of things taking place within this functionality?

This is expected behaviour, but a shoddy implementation by me. I was using data from private-data which is in the git ignore since it includes emails of users etc.

I just commented out the code and set users to an empty array since the code is only for use locally. And errors if the import isn't valid.

Although it is an admin route, so should return an error that you are not authorised. As I'm pretty sure I set isAdmin to false in the server/middleware/auth

[aayu5hgit]

@Drew-Macgibbon

(bug): Login creds & supabase auth

While logging in on the live website, some errors are being encountered:

• Post (400); there is something going wrong with supabase auth
  

• After clicking submit button, the toast (which is used in profile updation page) is raising up. So we need to make another component which only handles the submission.

[Drew-Macgibbon]

@Drew-Macgibbon

(bug): Login creds & supabase auth

While logging in on the live website, some errors are being encountered:

• Post (400); there is something going wrong with supabase auth
  

• After clicking submit button, the toast (which is used in profile updation page) is raising up. So we need to make another component which only handles the submission.

Ah yes the feedback needs to be updated.

Check the supabase auth logs for more info on the error. You can also resend magic links from the auth tab in supabase.

If the createError is an object convert it to a template literal for logging the error.message

[Drew-Macgibbon]

@aayu5hgit list all the bugs you're facing so I can help give you direction.

[aayu5hgit]

@Drew-Macgibbon

(bug): Auth API Error

When I tried to login locally, it wasn't happening, then I registered again and the verification email didn't arrive and the following error is being displayed in the console (if I try to enter credentials)

NOTE: Scenario was tested when

• Auth was ON
• SMTP was ON

[Drew-Macgibbon]

@Drew-Macgibbon

(bug): Auth API Error

When I tried to login locally, it wasn't happening, then I registered again and the verification email didn't arrive and the following error is being displayed in the console (if I try to enter credentials)

NOTE: Scenario was tested when

• Auth was ON
• SMTP was ON

OK, just had a quick look at the supabase logs and am seeing permission denied for schema public

Which means we have a grant_permission error. The authenticator is the Postgres user without the permission. As far as I am aware the authenticator should only be accessing the auth schema. So I think the issue stems from using the auth.users.id as the primary key for public.users.id. This is likely confusing the authenticator

to test this theory I will add a new primary key and move the public.users.id to auth_id. Although I've just discovered that the auth.users.id is NOT immutable, which will require some further thought. I guess a trigger that updates auth_id if it's changed should work...

[Drew-Macgibbon]

@aayu5hgit ok I have implemented the changes. I also added a trigger to watch the auth.users.id and update the row accordingly. This needed to be handled because if the user updates their email (obviously something we want to allow) it will change their auth.id.

You will need to update the prisma endpoints to check the auth_id instead of the id

hopefully this resolves the errors, I'll leave the testing in your capable hands.

[aayu5hgit]

@Drew-Macgibbon okay, so do I need to update the whole ‘prisma schema‘ too on the codebase?