Skip to content

Adding optional devmode for environments where SMTP is not configured #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mutantsan merged 4 commits into from
Oct 28, 2025
Merged

Adding optional devmode for environments where SMTP is not configured #4

mutantsan merged 4 commits into from
Oct 28, 2025

Conversation

@Engerrs
Copy link
Member

@Engerrs Engerrs commented Oct 27, 2025

No description provided.

mutantsan
mutantsan requested changes Oct 27, 2025
View reviewed changes
ckanext/auth/views.py Outdated
if not ah.is_2fa_dev_mode_enabled():
tk.abort(404, tk._("Not found"))

user_name: str = tk.get_or_bust(dict(tk.request.form), "login")
Copy link
Member

@mutantsan mutantsan Oct 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Leads to 500 error without login. Should check for it and return 400 bad request if not here.

@auth.route("/get-user-code", methods=["POST"])
def get_2fa_user_code() -> Response:
    if not ah.is_2fa_dev_mode_enabled():
        return tk.abort(404, tk._("Not found"))

    user_name = tk.request.form.get("login")

    if not user_name:
        return tk.abort(400, tk._("Missing 'login' parameter"))

    user = model.User.get(user_name)

    if not user or not user.email:
        return tk.abort(404, tk._("User not found or has no email set"))

    code = utils.get_email_verification_code(user)

    log.info("Providing 2FA code %s for user %s in dev mode", code, user.name)

    return jsonify({"success": True, "result": {"code": code}})

ckanext/auth/assets/js/auth-login-form.js Outdated
},

_show_user_code: function () {
const is_dev_mode = $('.dev-mode-user-code');
Copy link
Member

@mutantsan mutantsan Oct 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Move to initialize, as other containers.

this.devModeCodeBlock = $("#dev-mode-user-code");

Then

_showUserCode: function () {
    if (this.devModeCodeBlock.length !== 1) {
        return;
    }

    $.ajax({
        url: "/mfa/get-user-code",
        method: "POST",
        data: this.form.serialize(),
        success: (response) => {
            if (!response?.success) return;

            this.devModeCodeBlock.find('.code-wrapper').text(response.result.code);
            this.devModeCodeBlock.show();
        },
        error: (resp) => {
            console.error(resp);
        }
    });
},

ckanext/auth/assets/js/auth-login-form.js Outdated
if (this.isEmailMfa) {
this._setResendCountdown();
this._sendVerificationCode();
this._show_user_code();
Copy link
Member

@mutantsan mutantsan Oct 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's not going to work like that. Should be moved to _sendVerificationCode -> complete.

complete: () => {
    this.submitBtn.prop("disabled", false);
    this._showUserCode();
}

@mutantsan mutantsan merged commit de5b0a5 into DataShades:master Oct 28, 2025
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mutantsan mutantsan mutantsan requested changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Engerrs @mutantsan