fix(users): GitHub strategy missing email #1250
Conversation
|
I'll add some tests to this PR, sometime tomorrow. |
mleanos
force-pushed
the
fix/users-github-strategy-email
branch
from
7fdd0e4 to
41fa2e6
Compare
|
Added a test to ensure the @lirantal WDYT? |
|
I think it's overall ok, although I'm wondering if there's really a case where GitHub will return no email for a user? |
|
If a user chooses the "Don't show my email address" option in their Profile settings for Public email. Then GitHub won't return the email address. Also, Twitter doesn't send user's email at all. |
|
Which only make you wonder how twitter ever worked, right? :) |
|
Twitter worked, because we allow empty/missing email fields in our User model. The issue will only show itself if there's an attempt to save a new User without the email field. Thus, mongodb treats both of those as the same, and won't allow it since we have the unique index setting on that field; there's a violation of the unique constraint in that case. We don't run into this issue with local testing, since most of us just use one User for any particular Social Account. I guess User's of this framework haven't ran into this issue, or reported it. Until @farajfarook did. |
|
That's what I was referring to - that probably users of MEAN.JS who used GitHub did get this problem for such cases where the user opted out from sharing the email detail. Anyway, it looks like a correct way of handling it. @codydaig maybe another pair of eyes? |
|
@mleanos BTW you are definitely able to run some manual tests with local users signup, GitHub as well as another strategy, right? just to make sure we're not breaking anything larger here. |
|
@lirantal I've been going through the Social Accounts implementation & testing. I've noticed some issues with the other providers as well. This fix is part of a bigger initiative to get the Social Providers working 100%. I have a list of issues I've come across, but haven't organized it yet. I have tested this with the other provider's and there aren't any issues, other than the other aspects of the Social Provider's implementation that are broken. However, this does also take care of the issue raised in #1145. I did extensive testing with the Also, the test I added will ensure that the |
|
@mleanos ok, that's clear. |
|
User's do have to manually drop the index. However, we can probably add a Gulp task that is executed with one of our other tasks, that start the server; Another option might be to add something to our mongoose server config, that ensures the index is dropped if the sparse option is not set for it. Or we simply display a message in this case. I haven't looked into that, but I think it will be possible. One caveat to this option is that this check will be performed every time the database is started; I'm not sure how I feel about that. I'd like to make it as easy as possible for our users. However, it might be more trouble for us than it's worth. As it stands, it's technically not a breaking change. Users will only run into any issue when a duplicate I'm happy to do more work on this to make it easier on our users. But I just wanted to throw those options out there. And the inline comment might suffice for now. |
|
We would like to be unobtrusive but in the same time not break things horribly. I would like to suggest that we have an @ilanbiala WDYT? |
|
If we do like Angular does and put in our Changelog the breaking changes and the fixes, then I think that is sufficient. |
|
sounds good to me. |
mleanos
force-pushed
the
fix/users-github-strategy-email
branch
from
41fa2e6 to
1909b5f
Compare
|
I added a |
| * If you are upgrading an existing MEANJS application, and have not changed this field, you will already have an existing index on the Email field of your Users collection. If this is the case, you will need to follow these steps for the `sparse` option to be applied. | ||
|
|
||
|
|
||
| 1. Manually drop the Email field's index in your Users collection, on your applications MongoDB instance. |
There was a problem hiding this comment.
@mleanos
Can we provide actual copy&paste instructions on how to do it to ease the users?
There was a problem hiding this comment.
Sure. I can add the MongoDB commands to drop the index, and then the commands to start the application.
|
@mleanos added my comment and also you can see how the markup renders through GitHub, check this URL for your file: https://github.com/mleanos/mean/blob/fix/users-github-strategy-email/UPGRADE.md |
|
@lirantal I know how to test it once it's in a remote GitHub repo. I just can't view the rendered markup locally. It's not a problem. I can just push to my fork, and test there. |
mleanos
force-pushed
the
fix/users-github-strategy-email
branch
2 times, most recently
from
4333aab to
07b56f6
Compare
|
@lirantal @ilanbiala @codydaig I updated this PR to include a companion upgrade script, for dropping the index using Mongoose. I also updated the UPGRADE readme to include directions on how to use the script. How does the UPGRADE.md file look to y'all? |
|
Coverage remained the same at 70.615% when pulling 07b56f6c3802a41f1be539431b9111aecf5af86f on mleanos:fix/users-github-strategy-email into bc0b4a6 on meanjs:master. |
|
Coverage remained the same at 70.615% when pulling 07b56f6c3802a41f1be539431b9111aecf5af86f on mleanos:fix/users-github-strategy-email into bc0b4a6 on meanjs:master. |
|
|
||
| var mongoose = require('mongoose'), | ||
| chalk = require('chalk'), | ||
| mg = require('../config/lib/mongoose'); |
There was a problem hiding this comment.
I think this should be mongoose instead of mg to be consistent with the rest of the project.
There was a problem hiding this comment.
mongooseConfig, then? mg is a bit fuzzy.
|
Coverage remained the same at 70.615% when pulling 570b69b74cf7e5c5588004e46f23b6fdfeeedd69 on mleanos:fix/users-github-strategy-email into bc0b4a6 on meanjs:master. |
|
LGTM |
|
Great, let's add. |
| // get a reference to the User collection | ||
| var userCollection = db.connections[0].collections.users; | ||
|
|
||
| console.log(chalk.yellow('*************** Removing index "' + _indexToRemove + '" from the User collection ***************')); |
There was a problem hiding this comment.
Is this line not over 80 characters?
There was a problem hiding this comment.
@ilanbiala Yes. I don't really like what I did with the messages. I'll clean them up.
Just to clarify, are you concerned with the length of the line of the code, or the output of the console log?
There was a problem hiding this comment.
Mostly length, I think the content is pretty good.
There was a problem hiding this comment.
Alright. I can break these up into multiple lines of code.
mleanos
force-pushed
the
fix/users-github-strategy-email
branch
2 times, most recently
from
a3a21d9 to
9c57a79
Compare
|
Coverage remained the same at 70.615% when pulling 9c57a79d4fdfea28cd230864b6a4463acc61d639 on mleanos:fix/users-github-strategy-email into f2a6bf9 on meanjs:master. |
|
Coverage remained the same at 70.615% when pulling 9c57a79d4fdfea28cd230864b6a4463acc61d639 on mleanos:fix/users-github-strategy-email into f2a6bf9 on meanjs:master. |
|
@ilanbiala I've cleaned up those long lines of code. LGTY? |
| } | ||
| } else { | ||
| console.log(chalk.green(message)); | ||
| console.log(chalk.green('The next time your application starts, Mongoose will rebuild the index "' + _indexToRemove + '".')); |
|
👍 |
| @@ -193,6 +193,29 @@ describe('User Model Unit Tests:', function () { | |||
|
|
|||
| }); | |||
|
|
|||
| it('should not index missing email field, and not enforce unique index constraint (sparse index)', function (done) { | |||
There was a problem hiding this comment.
Also slightly long, this is 120 chars
|
@mleanos strangely we don't have a linting rule for line length. Adding that would be nice for the future so we can catch extra long lines more easily. |
Fixes an issue with an empty/missing/null Email coming from GitHub's OAuth call response. Also, introduces the `sparse` index option on the User model's Email field. This will ensure that we can have multiple User documents without the Email field. Adds a server-side User model test for the sparse index setting on the email field. Confirms that User documents without the email field are not indexed, illustrating the sparse option on the schema's email field works properly. Added the dropdb task to the Gulp test:client & test:server tasks, to ensure we have a clean database & that any indexes are rebuilt; this will ensure any Schema changes (in this case the email index is rebuilt using the sparse index option) are reflected when the database is started again. Added a UPGRADE.md for tracking important upgrade information for our user's to be aware of, when we introduce potentially breaking changes. Included an explanation of the Sparse index being added, and how to apply it to an existing MEANJS application's database. Adds a script for dropping the `email` field's index from the User collection. Related meanjs#1145
mleanos
force-pushed
the
fix/users-github-strategy-email
branch
from
9c57a79 to
bd64737
Compare
|
@ilanbiala I shortened the lines in the upgrade script to be less than 80 chars. As for the test line you mentioned, I shortened it as much as possible but it's still about 105 chars long. I didn't see any other way of shortening that line. Quite a bit of our If this looks good to you now, I'll merge. |
|
LGTm. |
- Intentionally omits setting email in constructor to trigger defaults when creating user. Handles cases where email is not authorized/given by provider. Related to issue meanjs#1250
* fix(users) patch OAuth default email issue - Intentionally omits setting email in constructor to trigger defaults when creating user. Handles cases where email is not authorized/given by provider. Related to issue #1250
Fixes an issue with an empty/missing/null Email coming from GitHub's
OAuth call response.
Also, introduces the
sparseindex option on the User model's Emailfield. This will ensure that we can have multiple User documents without
the Email field.
Related #1145