17. OAuth/03. Mock GitHub OAuth (💪 problem)

Mock GitHub OAuth

Loading "Simulating Third Party Dependencies"

👨‍💼 Great, so Kellie 🧝‍♂️ put together a mock for all the GitHub APIs we call. To enable these mocks, we need to update

.env

to have the GitHub variables prefixed with MOCK_ (you may need to restart the app after this change).

Unfortunately, that's not all we need to do to mock out the auth flow. See, the problem is we get redirected to GitHub as part of the auth flow when we call authenticator.authenticate in the action of /auth/github. But if we really want to isolate our development and testing from third party services (we do), we need to avoid that redirect.

So what we'll do instead is simulate what authenticator.authenticate does, then redirect straight to /auth/github/callback without going through GitHub.

The most interesting bit to this is the state value which is used to prevent cross-site request forgery. The idea is that the client (our app) generates this state is sent to the identity provider (GitHub) and when the identity provider sends the user back to the app, it sends the same state. So then the client can use the state in the URL and compare it with the state in the cookie to make sure they're the same. So you'll be generating a value for this and putting it in a cookie as well as the redirect URL's search params.

Kody 🐨 will be in

app/routes/_auth+/auth.github.ts

to help get this worked out for you.

Once you're done, you should be able to click the "Login with GitHub" button on

/login

and it should pop up a the toast notification saying we've authenticated with GitHub. You'll also get the mock profile logged to the server terminal output.

Good luck!

← Previous Next →

Edit on GitHubEdit this page on GitHub

problem solution diff chat

general
npm install everytime I setup a new playground
Duki 🌌:
Is it normal that I have to run `npm install` in my playground directory, everytime I setup the play...
✅1
2 · 2 days ago
general
Welcome to EpicWeb.dev! Say Hello 👋
Kent C. Dodds ◆ 🚀🏆🌌:
This is the first post of many hopefully!
18
78 · a year ago
🔐auth
The latest web-auth workshop cannot be launch
QzCurious 🌌:
I've done: 1. Remove web-auth directory 2. Follow https://github.com/epicweb-dev/web-auth?tab=readme...
✅1
7 · a month ago
general
Migration to Vite: Server-only module referenced by client
Fabian 🌌:
Hi, I'm working on migrating to Vite following the remix docs (https://remix.run/docs/en/main/guides...
✅1
1 · 2 months ago
🔐auth
Github token added on refactor of connection model exercise
abraham_aguilera 🌌:
Where does the newly created `GITHUB_TOKEN` come from in the `resolveConnectionData` introduced in t...
✅1
2 · 5 months ago
🔐auth
Potential Security Concern with Empty Session Data in createCookieSessionStorage?
QzCurious 🌌:
Since session data can be an empty object, it seems possible that someone could guess when encrypted...
✅1
6 · a month ago
general
Remix Vite Plugin
Binalfew 🚀 🌌:
<@105755735731781632> Now that remix officially supports vite (though not stable) what does it mean...
✅1
3 · a year ago
general
🔭foundations
Solutions video on localhost:5639 ?
quang 🚀 🌌:
Hi, so I'm having a hard time navigating (hopefully will be better with time) The nav on epicweb.de...
✅1
9 · a year ago
🔐auth
Where are we getting target_type from?
Salym 🚀 🏆 🌌:
I don't see target_type in ur verification schema, how are we generating this?
✅1
9 · 4 months ago
🔐auth
Unknown file extension ".png" for ".../user.png"
TraderDave79 🌌:
I'm going through the `web-auth` module and in the "Require Authenticated" exercise, after making th...
✅1
9 · 5 months ago
🔐auth
github.com refuses to connect in workshop app
TraderDave79 🌌:
Web Authentication / OAuth / 02. GitHub Strategy / Problem & Solution apps, when clicking "Login wit...
✅1
3 · 4 months ago
general
Epicshop is now social and mobile friendly!
Kent C. Dodds ◆ 🚀🏆🌌:
I'm excited to announce that now the Epic Web workshops are mobile friendly! https://foundations.ep...
🎉2
0 · 4 months ago
💾data
general
📝forms
🔭foundations
double underscore?
trendaaang 🌌:
What with the `__note-editor.tsx`? I don't see that in the Remix docs and I don't remember Kent talk...
✅1
2 · 6 months ago
🔐auth
RBAC with Entity scoping
abraham_aguilera 🌌:
Hi all! I'm working on implementing access control but I want to be able to scope permissions per en...
✅1
3 · 6 months ago
🔐auth
💾data
08. ROLE-BASED ACCESS / 02. ROLES SEED - migration to local vs production
Fabian 🌌:
So I'm in a bit over my head with this one, in particular with how migration works in a local env vs...
✅1
1 · 6 months ago
🔐auth
Redirect Cookie > 03. Redirect missing ProgressToggle form
Román 🏆 🚀 🌌:
This last exercises of the Auth module isn't showing the ProgressToggle form for some reason. I fork...
✅1
5 · a year ago
💾data
🔐auth
Prisma batching in the Require Authorized (07/03/solution)
ajara 🌌 🚀:
When I did the `requireUser` function in `auth.server.ts` I thought about using `requireUserId` func...
✅1
4 · 7 months ago
🔭foundations
💾data
general
📝forms
🔐auth
Native Logging
trendaaang 🌌:
I was thinking that it could be useful to log every CRUD operation to help track down errors. Is tha...
✅1
6 · 7 months ago
general
The video play is pretty laggy currently
QzCurious 🌌:
I thought I should tag you for this <@105755735731781632>. Please take a look if something wrong.
✅2
9 · 7 months ago
general
New Workshop Scheduled
Kent C. Dodds ◆ 🚀🏆🌌:
Hey Epic Web devs! I wanted to let you know before everyone else on here: https://www.epicweb.dev/ev...
2
0 · 7 months ago

Create Post