zaid.marzguioui/myeasycms-v2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Integrate captcha token in password sign-in process

Browse Source 
In this update, a captcha token is introduced in the password sign-in process to improve security. A `useCaptchaToken` hook has been added to the `PasswordSignInContainer` and corresponding adjustments have been made in the `useSignInWithEmailPassword` hook. The SignInWithPasswordCredentials type is now used for credentials instead of a locally defined interface.
This commit is contained in:
giancarlo
2024-04-28 00:04:06 +07:00
parent a2211c7e75
commit 2b2977f0c8
2 changed files with 12 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
packages/features/auth/src/components/password-sign-in-container.tsx
View File

@@ -6,6 +6,7 @@ import type { z } from 'zod';
import { useSignInWithEmailPassword } from '@kit/supabase/hooks/use-sign-in-with-email-password'; import { useSignInWithEmailPassword } from '@kit/supabase/hooks/use-sign-in-with-email-password';
import { useCaptchaToken } from '../captcha/client';
import type { PasswordSignInSchema } from '../schemas/password-sign-in.schema'; import type { PasswordSignInSchema } from '../schemas/password-sign-in.schema';
import { AuthErrorAlert } from './auth-error-alert'; import { AuthErrorAlert } from './auth-error-alert';
import { PasswordSignInForm } from './password-sign-in-form'; import { PasswordSignInForm } from './password-sign-in-form';
@@ -13,23 +14,28 @@ import { PasswordSignInForm } from './password-sign-in-form';
export const PasswordSignInContainer: React.FC<{ export const PasswordSignInContainer: React.FC<{
onSignIn?: (userId?: string) => unknown; onSignIn?: (userId?: string) => unknown;
}> = ({ onSignIn }) => { }> = ({ onSignIn }) => {
const { captchaToken } = useCaptchaToken();
const signInMutation = useSignInWithEmailPassword(); const signInMutation = useSignInWithEmailPassword();
const isLoading = signInMutation.isPending; const isLoading = signInMutation.isPending;
const onSubmit = useCallback( const onSubmit = useCallback(
async (credentials: z.infer<typeof PasswordSignInSchema>) => { async (credentials: z.infer<typeof PasswordSignInSchema>) => {
try { try {
const data = await signInMutation.mutateAsync(credentials); const data = await signInMutation.mutateAsync({
const userId = data?.user?.id; ...credentials,
options: { captchaToken },
});
if (onSignIn) { if (onSignIn) {
const userId = data?.user?.id;
onSignIn(userId); onSignIn(userId);
} }
} catch (e) { } catch (e) {
// wrong credentials, do nothing // wrong credentials, do nothing
} }
}, },
[onSignIn, signInMutation], [captchaToken, onSignIn, signInMutation],
); );
return ( return (

9
packages/supabase/src/hooks/use-sign-in-with-email-password.ts
View File

@@ -1,17 +1,14 @@
import type { SignInWithPasswordCredentials } from '@supabase/supabase-js';
import { useMutation } from '@tanstack/react-query'; import { useMutation } from '@tanstack/react-query';
import { useSupabase } from './use-supabase'; import { useSupabase } from './use-supabase';
interface Credentials {
email: string;
password: string;
}
export function useSignInWithEmailPassword() { export function useSignInWithEmailPassword() {
const client = useSupabase(); const client = useSupabase();
const mutationKey = ['auth', 'sign-in-with-email-password']; const mutationKey = ['auth', 'sign-in-with-email-password'];
const mutationFn = async (credentials: Credentials) => { const mutationFn = async (credentials: SignInWithPasswordCredentials) => {
const response = await client.auth.signInWithPassword(credentials); const response = await client.auth.signInWithPassword(credentials);
if (response.error) { if (response.error) {