Skip to content

fix(oauth): updated oauth providers that had unstable reference IDs leading to duplicate oauth records #2441

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
waleedlatif1 merged 2 commits into from
Dec 18, 2025
Merged

fix(oauth): updated oauth providers that had unstable reference IDs leading to duplicate oauth records #2441

waleedlatif1 merged 2 commits into from
Dec 18, 2025

Conversation

@waleedlatif1
Copy link
Collaborator

@waleedlatif1 waleedlatif1 commented Dec 18, 2025

Summary

  • updated oauth providers that had unstable reference IDs leading to duplicate oauth records

Type of Change

  • Bug fix

Testing

Tested manually

Checklist

  • Code follows project style guidelines
  • Self-reviewed my changes
  • Tests added/updated and passing
  • No new warnings introduced
  • I confirm that I have read and agree to the terms outlined in the Contributor License Agreement (CLA)

@vercel
Copy link

vercel bot commented Dec 18, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

1 Skipped Deployment
Project Deployment Review Updated (UTC)
docs Skipped Skipped Dec 18, 2025 4:40am

test-sim
test-sim reviewed Dec 18, 2025
View reviewed changes
@waleedlatif1 waleedlatif1 marked this pull request as ready for review December 18, 2025 04:04
@greptile-apps
Copy link
Contributor

greptile-apps bot commented Dec 18, 2025
edited
Loading

Greptile Summary

This PR fixes OAuth providers (Wealthbox, Slack, Webflow) that were generating unstable reference IDs, which caused duplicate credential records in the database.

Key Changes

  • Account creation logic: Modified to check only (userId, providerId) instead of (userId, providerId, accountId), allowing the system to replace existing credentials when a user reconnects to the same provider
  • Wealthbox: Changed from timestamp-based ID (wealthbox-${Date.now()}) to stable constant (wealthbox-user)
  • Slack: Now fetches team and user IDs from auth.test API to create stable identifier ({teamId}-{userId})
  • Webflow: Changed from timestamp-based fallback (webflow-${Date.now()}) to stable fallback (webflow-user)
  • OAuth modal: Added performance optimization using useMemo to prevent unnecessary re-computations and sort new scopes to the top

Issues Found

  • Minor email formatting issue in Wealthbox provider (missing hyphen removal in email generation)

Confidence Score: 4/5

  • This PR is safe to merge with one minor syntax fix needed
  • The core fix correctly addresses the duplicate OAuth record issue by using stable identifiers and updating the account creation logic. The Slack implementation properly fetches unique identifiers from the API. The only issue is a minor email formatting inconsistency in the Wealthbox provider that should be fixed for consistency.
  • apps/sim/lib/auth/auth.ts requires attention for the email formatting fix at line 738

Important Files Changed

Filename Overview
apps/sim/lib/auth/auth.ts Fixed OAuth provider reference IDs for Wealthbox, Slack, and Webflow to use stable identifiers; updated account creation logic to replace existing credentials per (userId, providerId) pair
apps/sim/app/workspace/[workspaceId]/w/[workflowId]/components/panel/components/editor/components/sub-block/components/credential-selector/components/oauth-required-modal.tsx Optimized scope display logic using useMemo to prevent unnecessary re-computations and sort new scopes to the top

Sequence Diagram

sequenceDiagram
    participant User
    participant App
    participant OAuth Provider
    participant Auth System
    participant Database

    User->>App: Connect OAuth service
    App->>OAuth Provider: Initiate OAuth flow
    OAuth Provider->>User: Request authorization
    User->>OAuth Provider: Grant access
    OAuth Provider->>Auth System: Return tokens & user data
    
    Auth System->>Auth System: getUserInfo() extracts stable identifier
    Note over Auth System: Wealthbox: 'wealthbox-user'<br/>Slack: '{teamId}-{userId}'<br/>Webflow: 'webflow-{userId}'
    
    Auth System->>Database: Check existing (userId, providerId)
    
    alt Existing credential found
        Database->>Auth System: Return existing account
        Auth System->>Database: Update accountId, tokens, scopes
        Note over Database: Replace credential for same provider
    else No existing credential
        Auth System->>Database: Create new account record
        Note over Database: Store with stable accountId
    end
    
    Database->>Auth System: Success
    Auth System->>App: OAuth connected
    App->>User: Show success message
Loading

greptile-apps[bot]
greptile-apps bot reviewed Dec 18, 2025
View reviewed changes
Copy link
Contributor

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

2 files reviewed, 3 comments

Edit Code Review Agent Settings | Greptile

@waleedlatif1
Copy link
Collaborator Author

waleedlatif1 commented Dec 18, 2025

@greptile

greptile-apps[bot]
greptile-apps bot reviewed Dec 18, 2025
View reviewed changes
Copy link
Contributor

@greptile-apps greptile-apps bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

2 files reviewed, 1 comment

Edit Code Review Agent Settings | Greptile

@waleedlatif1 waleedlatif1 merged commit 471cb47 into staging Dec 18, 2025
11 checks passed
@waleedlatif1 waleedlatif1 deleted the fix/creds branch December 18, 2025 04:45
@waleedlatif1 waleedlatif1 mentioned this pull request Dec 18, 2025
Merged
waleedlatif1 added a commit that referenced this pull request Dec 18, 2025
@waleedlatif1
fix(oauth): updated oauth providers that had unstable reference IDs l…
76d0578 
…eading to duplicate oauth records (#2441)

* fix(oauth): updated oauth providers that had unstable reference IDs leading to duplicate oauth records

* ack PR comments
waleedlatif1 added a commit that referenced this pull request Dec 18, 2025
@waleedlatif1
fix(salesforce): updated to more flexible oauth that allows productio…
9da19e8 
…n, developer, and custom domain salesforce orgs (#2441) (#2444)

* fix(oauth): updated oauth providers that had unstable reference IDs leading to duplicate oauth records (#2441)

* fix(oauth): updated oauth providers that had unstable reference IDs leading to duplicate oauth records

* ack PR comments

* ack PR comments

* cleanup salesforce refresh logic

* ack more PR comments
waleedlatif1 added a commit that referenced this pull request Dec 18, 2025
@waleedlatif1
Revert "fix(salesforce): updated to more flexible oauth that allows p…
27e57de 
…roduction, developer, and custom domain salesforce orgs (#2441) (#2444)"

This reverts commit 9da19e8.
waleedlatif1 added a commit that referenced this pull request Dec 18, 2025
@waleedlatif1
Revert "fix(salesforce): updated to more flexible oauth that allows p…
c23130a 
…roduction, developer, and custom domain salesforce orgs (#2441) (#2444)" (#2453)

This reverts commit 9da19e8.
@waleedlatif1 waleedlatif1 mentioned this pull request Dec 18, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

2 more reviewers

@greptile-apps greptile-apps[bot] greptile-apps[bot] left review comments

@test-sim test-sim test-sim left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@waleedlatif1 @test-sim