Skip to content

Commit

Permalink
fix(auth): make username a required field (#4734)
Browse files Browse the repository at this point in the history 
Co-authored-by: Mikyo King <[email protected]>
  • Loading branch information
@axiomofjoy @mikeldking
axiomofjoy and mikeldking authored Sep 25, 2024
1 parent bb2df0f commit 77cc1fe
Show file tree
Hide file tree
Showing 12 changed files with 23 additions and 24 deletions.
1 change: 1 addition & 0 deletions app/global-setup.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,7 @@ async function globalSetup(config: FullConfig) {

// Add the user
await page.getByLabel("Email").fill("[email protected]");
await page.getByLabel("Username *").fill("member");
await page.getByLabel("Password *", { exact: true }).fill("member123");
await page.getByLabel("Confirm Password").fill("member123");

Expand Down
2 changes: 1 addition & 1 deletion app/schema.graphql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -153,7 +153,7 @@ type CreateUserApiKeyMutationPayload {

input CreateUserInput {
email: String!
username: String
username: String!
password: String!
role: UserRoleInput!
}
Expand Down
10 changes: 7 additions & 3 deletions app/src/components/settings/UserForm.tsx
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@ const MIN_PASSWORD_LENGTH = 4;

export type UserFormParams = {
email: string;
username: string | null;
username: string;
password: string;
confirmPassword: string;
role: UserRole;
Expand All @@ -36,7 +36,7 @@ export function UserForm({
} = useForm<UserFormParams>({
defaultValues: {
email: email ?? "",
username: username ?? null,
username: username ?? "",
password: password ?? "",
confirmPassword: "",
role: role ?? UserRole.MEMBER,
Expand Down Expand Up @@ -87,14 +87,18 @@ export function UserForm({
<Controller
name="username"
control={control}
rules={{
required: "Email is required",
}}
render={({
field: { name, onChange, onBlur, value },
fieldState: { invalid, error },
}) => (
<TextField
label="Username"
name={name}
description="The user's username. Optional."
isRequired
description="A unique username."
errorMessage={error?.message}
validationState={invalid ? "invalid" : "valid"}
onChange={onChange}
Expand Down
4 changes: 2 additions & 2 deletions app/src/pages/settings/__generated__/NewUserDialogMutation.graphql.ts
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

1 change: 1 addition & 0 deletions app/tests/user-management.spec.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,7 @@ test("can create a user", async ({ page }) => {
const email = `member-${randomUUID()}@localhost.com`;
// Add the user
await page.getByLabel("Email").fill(email);
await page.getByLabel("Username *").fill(email);
await page.getByLabel("Password *", { exact: true }).fill("member123");
await page.getByLabel("Confirm Password").fill("member123");
await page.getByRole("dialog").getByLabel("member", { exact: true }).click();
Expand Down
2 changes: 1 addition & 1 deletion integration_tests/_helpers.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -92,7 +92,7 @@
class _Profile:
email: _Email
password: _Password
username: Optional[_Username] = None
username: _Username


class _String(str, ABC):
Expand Down
12 changes: 0 additions & 12 deletions integration_tests/auth/test_auth.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -422,18 +422,6 @@ def test_only_admin_can_create_user(
new_user.log_in()
assert _will_be_asked_to_reset_password(new_user)

@pytest.mark.parametrize("role_or_user", [_ADMIN, _DEFAULT_ADMIN])
@pytest.mark.parametrize("role", list(UserRoleInput))
def test_username_is_optional(
self,
role_or_user: _RoleOrUser,
role: UserRoleInput,
_get_user: _GetUser,
_profiles: Iterator[_Profile],
) -> None:
profile = replace(next(_profiles), username=None)
_get_user(role_or_user).create_user(role, profile=profile)


class TestPatchViewer:
@pytest.mark.parametrize("role_or_user", [_MEMBER, _ADMIN, _DEFAULT_ADMIN])
Expand Down
2 changes: 2 additions & 0 deletions src/phoenix/auth.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -227,6 +227,8 @@ def validate(
DEFAULT_ADMIN_USERNAME = "admin"
DEFAULT_ADMIN_EMAIL = "admin@localhost"
DEFAULT_ADMIN_PASSWORD = "admin"
DEFAULT_SYSTEM_USERNAME = "system"
DEFAULT_SYSTEM_EMAIL = "system@localhost"
DEFAULT_SECRET_LENGTH = 32
DEFAULT_PASSWORD_RESET_TOKEN_EXPIRY_MINUTES = 15
DEFAULT_ACCESS_TOKEN_EXPIRY_MINUTES = 10
Expand Down
5 changes: 4 additions & 1 deletion src/phoenix/db/facilitator.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,8 @@
DEFAULT_ADMIN_PASSWORD,
DEFAULT_ADMIN_USERNAME,
DEFAULT_SECRET_LENGTH,
DEFAULT_SYSTEM_EMAIL,
DEFAULT_SYSTEM_USERNAME,
compute_password_hash,
)
from phoenix.db import models
Expand Down Expand Up @@ -84,7 +86,8 @@ async def _ensure_user_roles(session: AsyncSession) -> None:
) is not None:
system_user = models.User(
user_role_id=system_role_id,
email="system@localhost",
username=DEFAULT_SYSTEM_USERNAME,
email=DEFAULT_SYSTEM_EMAIL,
reset_password=False,
)
session.add(system_user)
Expand Down
2 changes: 1 addition & 1 deletion src/phoenix/db/migrations/versions/cd164e83824f_users_and_tokens.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@ def upgrade() -> None:
nullable=False,
index=True,
),
sa.Column("username", sa.String, nullable=True, unique=True, index=True),
sa.Column("username", sa.String, nullable=False, unique=True, index=True),
sa.Column("email", sa.String, nullable=False, unique=True, index=True),
sa.Column("profile_picture_url", sa.String, nullable=True),
sa.Column("password_hash", sa.LargeBinary, nullable=True),
Expand Down
2 changes: 1 addition & 1 deletion src/phoenix/db/models.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -642,7 +642,7 @@ class User(Base):
index=True,
)
role: Mapped["UserRole"] = relationship("UserRole", back_populates="users")
username: Mapped[Optional[str]] = mapped_column(nullable=True, unique=True, index=True)
username: Mapped[str] = mapped_column(nullable=False, unique=True, index=True)
email: Mapped[str] = mapped_column(nullable=False, unique=True, index=True)
profile_picture_url: Mapped[Optional[str]]
password_hash: Mapped[Optional[bytes]]
Expand Down
4 changes: 2 additions & 2 deletions src/phoenix/server/api/mutations/user_mutations.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@
@strawberry.input
class CreateUserInput:
email: str
username: Optional[str] = UNSET
username: str
password: str
role: UserRoleInput

Expand Down Expand Up @@ -93,7 +93,7 @@ async def create_user(
password_hash = await info.context.hash_password(password, salt)
user = models.User(
reset_password=True,
username=input.username or None,
username=input.username,
email=email,
password_hash=password_hash,
password_salt=salt,
Expand Down

0 comments on commit 77cc1fe

Please sign in to comment.