(core) Add authSubject and authProvider to sessions

Summary: This also updates Authorizer to link the authSubject to Grist users if not previously linked. Linked subjects are now used as the username for password-based logins, instead of emails, which remain as a fallback. Test Plan: Existing tests, and tested login flows manually. Reviewers: paulfitz Reviewed By: paulfitz Differential Revision: https://phab.getgrist.com/D3356
2026-03-02 04:09:24 +00:00 · 2022-04-11 11:08:44 -07:00
parent 14f7e30e6f
commit 859c593448
9 changed files with 56 additions and 29 deletions
--- a/stubs/app/server/server.ts
+++ b/stubs/app/server/server.ts
@@ -78,10 +78,8 @@ export async function main() {
      if (!email) {
        throw new Error('need GRIST_DEFAULT_EMAIL to create site');
      }
-      const user = await db.getUserByLogin(email, {
-        email,
-        name: email,
-      });
+      const profile = {email, name: email};
+      const user = await db.getUserByLogin(email, {profile});
      if (!user) {
        // This should not happen.
        throw new Error('failed to create GRIST_DEFAULT_EMAIL user');