Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

@W-17386338 - Secure SSR Endpoints by Verifying SLAS Callback Requests #2180

Merged
merged 16 commits into from
Jan 23, 2025
+264 −19
Merged

@W-17386338 - Secure SSR Endpoints by Verifying SLAS Callback Requests #2180

Changes from 1 commit
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
58e5039
changes from previous branch
yunakim714 Jan 2, 2025
32e0d42
verify callbacktoken in post callbacks
yunakim714 Jan 2, 2025
0ab4052
add package lock
yunakim714 Jan 2, 2025
33be681
cleanup
yunakim714 Jan 2, 2025
adbccc9
regex check tenant id
yunakim714 Jan 6, 2025
55cefa6
add jest tests
yunakim714 Jan 14, 2025
1817222
revert changes
yunakim714 Jan 14, 2025
7ffd098
revert changes
yunakim714 Jan 14, 2025
692e937
cleanup tests
yunakim714 Jan 14, 2025
9e38e2d
move jwkscaching function to jwtutils
yunakim714 Jan 21, 2025
374cb46
Merge branch 'feature-passwordless-social-login' into W-17386338-veri…
yunakim714 Jan 21, 2025
03bcc67
Merge branch 'feature-passwordless-social-login' into W-17386338-veri…
yunakim714 Jan 22, 2025
18a8199
remove octoperf header
yunakim714 Jan 22, 2025
590f420
grab tenant id from jwt
yunakim714 Jan 22, 2025
a6b1dc0
add test for tenant id check
yunakim714 Jan 22, 2025
82891a1
remove octoperf header
yunakim714 Jan 22, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Loading
Loading status checks…
revert changes
@yunakim714
yunakim714 committed Jan 14, 2025

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode
commit 7ffd098045bdf35f8535af2137a57225adeec3d1
4 changes: 2 additions & 2 deletions packages/template-retail-react-app/app/ssr.js
View file
Original file line number Diff line number Diff line change
@@ -27,7 +27,7 @@ import {emailLink} from '@salesforce/retail-react-app/app/utils/marketing-cloud/
import {
PASSWORDLESS_LOGIN_LANDING_PATH,
RESET_PASSWORD_LANDING_PATH
} from './constants'
} from '@salesforce/retail-react-app/app/constants'
import {validateSlasCallbackToken} from '@salesforce/retail-react-app/app/utils/jwt-utils'

const config = getConfig()
@@ -56,7 +56,7 @@ const options = {
// When setting this to true, make sure to also set the PWA_KIT_SLAS_CLIENT_SECRET
// environment variable as this endpoint will return HTTP 501 if it is not set

useSLASPrivateClient: false,
useSLASPrivateClient: true,
applySLASPrivateClientToEndpoints:
/oauth2\/(token|passwordless|password\/(login|token|reset|action))/,

4 changes: 2 additions & 2 deletions packages/template-retail-react-app/config/default.js
View file
Original file line number Diff line number Diff line change
@@ -17,11 +17,11 @@ module.exports = {
},
login: {
passwordless: {
enabled: true,
enabled: false,
callbackURI: '/passwordless-login-callback'
},
social: {
enabled: true,
enabled: false,
idps: ['google', 'apple'],
redirectURI: '/social-callback'
},