feat(oauth): support Fenix WebChannels #2320
Conversation
vladikoff
force-pushed
the
feature.fenix-channel-clean
branch
4 times, most recently
from
8ee8749 to
4fb0a6d
Compare
|
@shane-tomlinson @rfk @vbudhram I'm finishing up the tests for this, but please take a look at the non-test code. We scoped it down with Grisha, and seems like there are not as many changes as anticipated for the v1 of this |
There was a problem hiding this comment.
seems like there are not as many changes as anticipated for the v1 of this
This is indeed a smaller change than I was expecting, 👍!
It all makes sense to me, and I left only nits below. But I don't feel like the right person to give this an explicit r+.
As I mentioned briefly in Portland, I think the use of a single "broker" abstraction is starting to strain a little bit here, and the fact that we need separate "oauth webchannel broker" and "pairing supplicant webchannel broker" models is a symptom of that. I suspect there are two related but distinct abstractions in play here, once which controls the kind of flow being performed (a pairing supplicant flow) and another which controls how the results of that flow are communicated out (via oauth webchannels).
It'd be nice to be able to decompose those, but that's a way bigger refactor than justified by this PR. Also it's something that @shane-tomlinson will likely have much better-informed opinions on that I do 😄.
| }); | ||
|
|
||
| return channel; | ||
| }, |
There was a problem hiding this comment.
I wonder if it's worth some sort of WebChannelMixin that could provide shared implementations of this logic.
There was a problem hiding this comment.
👍 - seems like a great suggestion to minimize duplication.
There was a problem hiding this comment.
Now as easy as other methods, I filed a follow up for this #2406
packages/fxa-content-server/app/scripts/models/auth_brokers/oauth-webchannel-v1.js
Outdated
Show resolved
Hide resolved
| const supportedEngines = | ||
| response.capabilities && response.capabilities.engines; | ||
| if (supportedEngines) { | ||
| // supportedEngines override the defaults |
There was a problem hiding this comment.
This is a subtle change in behaviour from the desktop broker, I think it would be worth calling out more explicitly in e.g. the new protocol doc for the oauth-webchannel broker.
There was a problem hiding this comment.
So Fenix passes back all of the engines it supports and there are no defaults?
There was a problem hiding this comment.
(Thought I answered this somewhere already) Yes, the native app like Fenix will send in the engines in supports
packages/fxa-content-server/docs/relier-communication-protocols/oauth-webchannel.md
Outdated
Show resolved
Hide resolved
There was a problem hiding this comment.
@vladikoff This looks 👍🏽 to me, I don't really have any objections with the approach here.
packages/fxa-content-server/app/tests/spec/models/auth_brokers/oauth-webchannel-v1.js
Outdated
Show resolved
Hide resolved
packages/fxa-content-server/app/scripts/models/auth_brokers/oauth-webchannel-v1.js
Outdated
Show resolved
Hide resolved
| }, | ||
|
|
||
| getCommand(commandName) { | ||
| if (!this.commands) { |
There was a problem hiding this comment.
Would this ever be undefined and throw?
There was a problem hiding this comment.
Yeah some brokers can have this be undefined
| as part of the [firefox-accounts](https://github.com/mozilla-mobile/android-components/blob/master/components/service/firefox-accounts/README.md) Android component. | ||
|
|
||
| ``` | ||
| * Communication channel is established from web content to this class via webextension, as follows: |
packages/fxa-content-server/app/scripts/lib/channels/receivers/web-channel.js
Outdated
Show resolved
Hide resolved
packages/fxa-content-server/app/scripts/models/auth_brokers/oauth-redirect.js
Outdated
Show resolved
Hide resolved
| }); | ||
|
|
||
| return channel; | ||
| }, |
There was a problem hiding this comment.
👍 - seems like a great suggestion to minimize duplication.
| const supportedEngines = | ||
| response.capabilities && response.capabilities.engines; | ||
| if (supportedEngines) { | ||
| // supportedEngines override the defaults |
There was a problem hiding this comment.
So Fenix passes back all of the engines it supports and there are no defaults?
packages/fxa-content-server/app/scripts/models/auth_brokers/pairing/supplicant-webchannel.js
Outdated
Show resolved
Hide resolved
packages/fxa-content-server/docs/relier-communication-protocols/oauth-webchannel.md
Outdated
Show resolved
Hide resolved
| * [fxa-web-content] <--js events--> [fxawebchannel.js webextension] <--port messages--> [WebChannelFeature] | ||
| * | ||
| * [fxa-web-channel] [WebChannelFeature] Notes: | ||
| * fxa-status ------> | web content requests account status & device capabilities |
There was a problem hiding this comment.
Do you need/want to document fxaccounts:can_link_account?
There was a problem hiding this comment.
No, we are dropping that for now
| .then( | ||
| openFxaFromRp('signup', { | ||
| query: { | ||
| context: 'oauth_webchannel_v1', |
There was a problem hiding this comment.
No longer need ?service=sync? Wow
packages/fxa-content-server/tests/functional/oauth_webchannel.js
Outdated
Show resolved
Hide resolved
|
|
||
| // switch to the original window | ||
| .then(closeCurrentWindow()) | ||
| .then(testIsBrowserNotified('fxaccounts:oauth_login')) |
There was a problem hiding this comment.
Do you need to test for an expected screen here?
There was a problem hiding this comment.
Not here, for now we take over on login
vladikoff
force-pushed
the
feature.fenix-channel-clean
branch
2 times, most recently
from
d52f95e to
56971a5
Compare
vladikoff
force-pushed
the
feature.fenix-channel-clean
branch
from
56971a5 to
5523dbf
Compare
|
@shane-tomlinson we landed the client part in mozilla-mobile/android-components#4221 , I've rebased this PR against train-145. Re-Requested review, let me know! |
vladikoff
force-pushed
the
feature.fenix-channel-clean
branch
2 times, most recently
from
4dc790f to
b67f200
Compare
| @@ -345,7 +354,10 @@ export default BaseAuthenticationBroker.extend({ | |||
| this.clearOriginalTabMarker(); | |||
| return this.getOAuthResult(account).then(result => { | |||
| result = _.extend(result, additionalResultData); | |||
| return this.sendOAuthResultToRelier(result); | |||
There was a problem hiding this comment.
The way you reordered the metrics flush and sending the result to the relier makes much more sense. 👍
| */ | ||
| sendOAuthResultToRelier(result, account) { | ||
| result.redirect = Constants.OAUTH_WEBCHANNEL_REDIRECT; | ||
| if (account && account.get('declinedSyncEngines')) { |
packages/fxa-content-server/app/scripts/models/auth_brokers/pairing/supplicant-webchannel.js
Outdated
Show resolved
Hide resolved
packages/fxa-content-server/app/tests/spec/models/auth_brokers/oauth-webchannel-v1.js
Outdated
Show resolved
Hide resolved
| ); | ||
| }, | ||
| tests: { | ||
| signup: function() { |
There was a problem hiding this comment.
Does Fenix make use of the email first flow? If so, should probably test that too.
vladikoff
force-pushed
the
feature.fenix-channel-clean
branch
from
b67f200 to
25f33db
Compare
Ref: mozilla-mobile/android-components#3881
Fixes mozilla/application-services#1594
Fixes #2317