sarman/tftsr-devops_investigation
1
0
Fork 0
Code Issues 1 Pull Requests Actions 34 Packages Projects 3 Releases 9 Wiki Activity
05f4b51370
tftsr-devops_investigation/src-tauri
History
Shaun Arman 05f4b51370
Some checks are pending
Auto Tag / auto-tag (push) Waiting to run
Details
Test / rust-fmt-check (push) Waiting to run
Details
Test / rust-clippy (push) Waiting to run
Details
Test / rust-tests (push) Waiting to run
Details
Test / frontend-typecheck (push) Waiting to run
Details
Test / frontend-tests (push) Waiting to run
Details
feat: implement OAuth2 callback server with automatic token exchange 
Phase 2.2: OAuth2 flow - Part 3 (Callback server) COMPLETE 

Implemented:
- Local HTTP server on localhost:8765 using warp
  * GET /callback?code=...&state=... - OAuth redirect handler
  * GET /health - Health check endpoint
  * Graceful shutdown with oneshot channel

- Automatic callback handling
  * Server auto-starts on first initiate_oauth call
  * Background task listens for OAuth redirects
  * Automatically exchanges code for token
  * Stores encrypted token in database
  * Logs audit event for each successful OAuth

- Updated initiate_oauth command
  * Starts callback server if not running
  * Stores (service, verifier) tuple in OAuth state
  * Returns auth URL to open in browser/webview

- Updated handle_oauth_callback_internal
  * Accepts AppState reference (not State)
  * Called automatically by callback server
  * Exchanges code, encrypts token, stores in DB

- Beautiful success/error HTML pages
  * Green checkmark on success
  * Auto-closes window after 3 seconds
  * Clear error messages on failure

- Global state management
  * OAUTH_STATE: Maps state key -> (service, verifier)
  * CALLBACK_SERVER_SHUTDOWN: Holds shutdown channel
  * Thread-safe with Mutex wrappers

Dependencies added:
- warp 0.3 - Lightweight HTTP framework

TDD tests (7 passing with --test-threads=1):
Callback server tests:
  * Health endpoint verification
  * Callback parameter parsing
  * Missing/partial parameter handling
  * Graceful shutdown

Integration command tests:
  * OAuth state storage and retrieval
  * Multiple key management
  * OAuthInitResponse serialization

COMPLETE OAUTH2 FLOW:
1. User calls initiate_oauth("confluence")
2. Callback server starts (if not running)
3. Frontend receives auth URL
4. User opens URL in browser/webview
5. User authorizes, redirected to localhost:8765/callback?code=...
6. Callback server receives redirect
7. Token exchanged automatically
8. Token encrypted and stored in DB
9. Success page shown to user
10. Window auto-closes

Next: Frontend components (AuthWindow, Settings UI, CSP updates)
2026-04-03 14:59:39 -05:00
..
.cargo fix: suppress MinGW auto-export to resolve Windows DLL ordinal overflow 2026-03-29 12:33:24 -05:00
capabilities feat: initial implementation of TFTSR IT Triage & RCA application 2026-03-14 22:36:25 -05:00
gen/schemas fix: UI contrast issues and ARM64 build failure 2026-04-03 08:05:58 -05:00
icons fix: replace empty icon placeholder files with real app icons 2026-03-15 20:31:52 -05:00
src feat: implement OAuth2 callback server with automatic token exchange 2026-04-03 14:59:39 -05:00
target security: rotate exposed token, redact from PLAN.md, add secret patterns to .gitignore 2026-03-15 14:04:49 -05:00
build.rs feat: initial implementation of TFTSR IT Triage & RCA application 2026-03-14 22:36:25 -05:00
Cargo.lock feat: implement OAuth2 callback server with automatic token exchange 2026-04-03 14:59:39 -05:00
Cargo.toml feat: implement OAuth2 callback server with automatic token exchange 2026-04-03 14:59:39 -05:00
tauri.conf.json chore: bump version to 0.2.2 2026-04-03 13:51:25 -05:00