[$150] Auth flow changes

[jmgasper]

@afrisalyp - We're working on some auth flow changes and could use some help. We've started work here:

#340

Basically, we're going to move from the "old" auth flow and HS256 token, to the "new" auth flow and RS256 token instead.

From Topcoder:

Logout and refresh are not working. Also code clean-up is required for decode and refresh logic. If possible lets use this lib - https://github.com/topcoder-platform/tc-auth-lib

The logout URL should look like:

https://accounts-auth0.topcoder-dev.com/?logout=true&retUrl=https%3A%2F%2Fx.topcoder-dev.com%2F

Topcoder provided this for reference:

appirio-tech/connect-app#4082

[jmgasper]

Contest https://www.topcoder.com/challenges/30144220 has been created for this ticket.

This is an automated message for ghostar via Topcoder X

[jmgasper]

Contest https://www.topcoder.com/challenges/30144220 has been updated - it has been assigned to afrisalyp.

This is an automated message for ghostar via Topcoder X

[afrisalyp]

@jmgasper

Should I use feature/Auth0-RS256-Token branch?

[jmgasper]

@afrisalyp - Sure, thanks.

[afrisalyp]

@jmgasper

I got this error after started the topcoder-x-ui backend service.
I've tried to use babel, but still the same.
Any steps that should I do to use tc-auth-lib?

/home/afrisalyp/topcoder/topcoder-x/topcoder-x-ui/node_modules/@topcoder-platform/tc-auth-lib/src/connector-wrapper.js:10
export function configureConnector({connectorUrl, frameId, mockMode, mockToken}) {
^^^^^^

SyntaxError: Unexpected token export
    at Module._compile (internal/modules/cjs/loader.js:723:23)
    at Module._compile (/home/afrisalyp/topcoder/topcoder-x/topcoder-x-ui/node_modules/pirates/lib/index.js:99:24)
    at Module._extensions..js (internal/modules/cjs/loader.js:789:10)
    at Object.newLoader [as .js] (/home/afrisalyp/topcoder/topcoder-x/topcoder-x-ui/node_modules/pirates/lib/index.js:104:7)
    at Module.load (internal/modules/cjs/loader.js:653:32)
    at tryModuleLoad (internal/modules/cjs/loader.js:593:12)
    at Function.Module._load (internal/modules/cjs/loader.js:585:3)
    at Module.require (internal/modules/cjs/loader.js:692:17)
    at require (internal/modules/cjs/helpers.js:25:18)
    at Object.<anonymous> (/home/afrisalyp/topcoder/topcoder-x/topcoder-x-ui/node_modules/@topcoder-platform/tc-auth-lib/index.js:1:47)

[jmgasper]

@sachin-maheshwari ☝️ Any ideas?

[sachin-maheshwari]

@jmgasper some ES6 standards are making that cause. I handled this through "esm" like - https://github.com/topcoder-platform/topcoder-x-ui/blob/feature/Auth0-RS256-Token/package.json#L14 . You can handle in different ways.

[jmgasper]

@afrisalyp - I deployed these changes to https://x.topcoder-dev.com. I'm not seeing the logout working. Can you double check please?

@sachin-maheshwari - Can you have a look as well and let me know what you think please? We'll still need to update with the new login flow.

[afrisalyp]

@jmgasper

Do you see screen like this?
It seems we need to fix some configuration in auth0.

I got this error message

invalid_request: The "returnTo" querystring parameter "http://topcoderx.topcoder-dev.com/#!/app/main" is not defined as a valid URL in "Allowed Logout URLs". To add a new URL, please do it here: https://manage.auth0.com/#/applications/BXWXUWnilVUPdN01t2Se29Tw2ZYNGZvH/settings

[sachin-maheshwari]

@jmgasper @afrisalyp check now. I changed in LONGIN_URL at aws end.

[sachin-maheshwari]

@jmgasper i don't think new "refresh token" changes working.

[sachin-maheshwari]

@jmgasper also, can we use our central lib for auth (instead of https://github.com/topcoder-platform/topcoder-x-ui/tree/develop/src/front/src/app/auth). Example- https://github.com/appirio-tech/connect-app/blob/test/auth0lib/package.json#L153 appirio-tech/connect-app#4082

[jmgasper]

@sachin-maheshwari - Login URL change looks to be working. I'm going to create new tickets for the refresh token and central lib stuff.

[jmgasper]

Payment failed: [500]: Failed to get billing detail for the project.

This is an automated message for ghostar via Topcoder X

[jmgasper]

@afrisalyp - Sorry for the delay here. I'm hoping to get the billing code fixed ASAP.

[afrisalyp]

No problem. Thanks.

[jmgasper]

Payment task has been updated: https://software.topcoder.com/review/actions/ViewProjectDetails?pid=30144220

This is an automated message for ghostar via Topcoder X