-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
refactor(auth): remove legacy auth & ADFS support #1150
Conversation
65668a8
to
b79184e
Compare
if (isBrowser() && !isUsingSSL() && !options.noAuthMode) { | ||
console.warn( | ||
'You should use SSL (https) when you login with OAuth since CDF only allows redirecting back to an HTTPS site' | ||
); | ||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Wouldn't this warning be logged even if we're not using legacy auth?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, but it was placed there due to legacy auth. No reason to restrict to https anymore.
The https restriction came from legacy auth.
if (!options) { | ||
throw Error('`CogniteClient` is missing parameter `options`'); | ||
} | ||
|
||
if (!isString(options.appId)) { | ||
throw Error('options.appId is required and must be of type string'); | ||
} | ||
|
||
if (!isString(options.project)) { | ||
throw Error('options.project is required and must be of type string'); | ||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Feels like we can still use verifyOptionsRequiredFields
in some form to manage this easier - but i'm also not sure how many new "required" things we would be adding to options
.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The verifyOptionsRequiredFields
did a bit more and mostly related to auth options.
Keeping this as required for now as it's aligned with version 9.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM btw, comments are not blockers
b79184e
to
98d09bc
Compare
As part of the v10 release we would like to remove legacy auth (the API is gone so legacy auth doesn't work) and ADFS support. ADFS is only used by Aramco and Cntxt and we would rather transition them to CogIdP.
Jira: