FIX: when using external auth disallowed characters weren't removed from username (#15185)
This commit is contained in:
parent
0b364140ec
commit
10cc082560
|
@ -135,18 +135,9 @@ class Auth::Result
|
||||||
return result
|
return result
|
||||||
end
|
end
|
||||||
|
|
||||||
suggested_username = UserNameSuggester.suggest(username_suggester_attributes)
|
|
||||||
if email_valid && email.present?
|
|
||||||
if username.present? && User.username_available?(username, email)
|
|
||||||
suggested_username = username
|
|
||||||
elsif staged_user = User.where(staged: true).find_by_email(email)
|
|
||||||
suggested_username = staged_user.username
|
|
||||||
end
|
|
||||||
end
|
|
||||||
|
|
||||||
result = {
|
result = {
|
||||||
email: email,
|
email: email,
|
||||||
username: suggested_username,
|
username: resolve_username,
|
||||||
auth_provider: authenticator_name,
|
auth_provider: authenticator_name,
|
||||||
email_valid: !!email_valid,
|
email_valid: !!email_valid,
|
||||||
can_edit_username: can_edit_username,
|
can_edit_username: can_edit_username,
|
||||||
|
@ -165,7 +156,24 @@ class Auth::Result
|
||||||
|
|
||||||
private
|
private
|
||||||
|
|
||||||
|
def staged_user
|
||||||
|
return @staged_user if defined?(@staged_user)
|
||||||
|
if email.present? && email_valid
|
||||||
|
@staged_user = User.where(staged: true).find_by_email(email)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
|
||||||
def username_suggester_attributes
|
def username_suggester_attributes
|
||||||
username || name || email
|
username || name || email
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def resolve_username
|
||||||
|
if staged_user
|
||||||
|
if !username.present? || UserNameSuggester.fix_username(username) == staged_user.username
|
||||||
|
return staged_user.username
|
||||||
|
end
|
||||||
|
end
|
||||||
|
|
||||||
|
UserNameSuggester.suggest(username_suggester_attributes)
|
||||||
|
end
|
||||||
end
|
end
|
||||||
|
|
|
@ -729,6 +729,18 @@ RSpec.describe Users::OmniauthCallbacksController do
|
||||||
|
|
||||||
expect(cookies['authentication_data']).to be_nil
|
expect(cookies['authentication_data']).to be_nil
|
||||||
end
|
end
|
||||||
|
|
||||||
|
it "removes disallowed characters from username" do
|
||||||
|
username = "strange_name*&^"
|
||||||
|
fixed_username = "strange_name"
|
||||||
|
|
||||||
|
mock_auth("user.with.strange.username@gmail.com", username)
|
||||||
|
|
||||||
|
get "/auth/google_oauth2/callback.json"
|
||||||
|
data = JSON.parse(cookies[:authentication_data])
|
||||||
|
|
||||||
|
expect(data["username"]).to eq(fixed_username)
|
||||||
|
end
|
||||||
end
|
end
|
||||||
|
|
||||||
context 'when attempting reconnect' do
|
context 'when attempting reconnect' do
|
||||||
|
@ -881,5 +893,59 @@ RSpec.describe Users::OmniauthCallbacksController do
|
||||||
expect(response['email']).to eq(new_email)
|
expect(response['email']).to eq(new_email)
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
||||||
|
context "when user is staged" do
|
||||||
|
fab!(:staged_user) { Fabricate(
|
||||||
|
:user,
|
||||||
|
username: "staged_user",
|
||||||
|
email: "staged.user@gmail.com",
|
||||||
|
staged: true
|
||||||
|
)
|
||||||
|
}
|
||||||
|
|
||||||
|
it "should use username of the staged user if username is not present in payload" do
|
||||||
|
mock_auth(staged_user.email, nil)
|
||||||
|
|
||||||
|
get "/auth/google_oauth2/callback.json"
|
||||||
|
data = JSON.parse(cookies[:authentication_data])
|
||||||
|
|
||||||
|
expect(data["username"]).to eq(staged_user.username)
|
||||||
|
end
|
||||||
|
|
||||||
|
it "should use username of the staged user if username in payload is the same" do
|
||||||
|
mock_auth(staged_user.email, staged_user.username)
|
||||||
|
|
||||||
|
get "/auth/google_oauth2/callback.json"
|
||||||
|
data = JSON.parse(cookies[:authentication_data])
|
||||||
|
|
||||||
|
expect(data["username"]).to eq(staged_user.username)
|
||||||
|
end
|
||||||
|
|
||||||
|
it "should override username of the staged user if payload contains a new username" do
|
||||||
|
new_username = "new_username"
|
||||||
|
mock_auth(staged_user.email, new_username)
|
||||||
|
|
||||||
|
get "/auth/google_oauth2/callback.json"
|
||||||
|
data = JSON.parse(cookies[:authentication_data])
|
||||||
|
|
||||||
|
expect(data["username"]).to eq(new_username)
|
||||||
|
end
|
||||||
|
end
|
||||||
|
|
||||||
|
def mock_auth(email, nickname)
|
||||||
|
OmniAuth.config.mock_auth[:google_oauth2] = OmniAuth::AuthHash.new(
|
||||||
|
provider: 'google_oauth2',
|
||||||
|
uid: '123545',
|
||||||
|
info: OmniAuth::AuthHash::InfoHash.new(
|
||||||
|
email: email,
|
||||||
|
nickname: nickname
|
||||||
|
),
|
||||||
|
extra: {
|
||||||
|
raw_info: OmniAuth::AuthHash.new(email_verified: true)
|
||||||
|
}
|
||||||
|
)
|
||||||
|
|
||||||
|
Rails.application.env_config["omniauth.auth"] = OmniAuth.config.mock_auth[:google_oauth2]
|
||||||
|
end
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
Loading…
Reference in New Issue