Merge pull request #25 from jeremykenedy/auth

add socialite authentication & providers, fully configure the app to …
jeremykenedy · Dec 1, 2022 · 71c6e54 · 71c6e54
2 parents 667ac23 + 804bdbb
commit 71c6e54
Show file tree

Hide file tree

Showing 99 changed files with 2,965 additions and 3,740 deletions.
diff --git a/.env.example b/.env.example
@@ -49,9 +49,18 @@ PUSHER_APP_ID=
 PUSHER_APP_KEY=
 PUSHER_APP_SECRET=
 PUSHER_APP_CLUSTER=mt1
+PUSHER_HOST=
+PUSHER_PORT=443
+PUSHER_SCHEME=https
 
-MIX_PUSHER_APP_KEY="${PUSHER_APP_KEY}"
-MIX_PUSHER_APP_CLUSTER="${PUSHER_APP_CLUSTER}"
+VITE_PUSHER_APP_KEY="${PUSHER_APP_KEY}"
+VITE_PUSHER_HOST="${PUSHER_HOST}"
+VITE_PUSHER_PORT="${PUSHER_PORT}"
+VITE_PUSHER_SCHEME="${PUSHER_SCHEME}"
+VITE_PUSHER_APP_CLUSTER="${PUSHER_APP_CLUSTER}"
+
+WWWGROUP=1000
+WWWUSER=1000
 
 EMAIL_EXCEPTION_ENABLED=true
 EMAIL_EXCEPTION_FROM="${MAIL_FROM_ADDRESS}"
@@ -60,4 +69,98 @@ EMAIL_EXCEPTION_CC=''
 EMAIL_EXCEPTION_BCC=''
 EMAIL_EXCEPTION_SUBJECT=''
 
+JWT_SECRET=
+
+# These ALL below will all be seeded but can be changed through the super admin GUI.
+# If they have a value in the database for the field, that field will never seed again.
+# This is to protect and not override the users data.
+
+SEED_SUPER_ADMIN_USER_ENABLED=true
+SEED_SUPER_ADMIN_USER_NAME='Rick Sanchez'
+SEED_SUPER_ADMIN_USER_EMAIL='[email protected]'
+SEED_SUPER_ADMIN_USER_PASSWORD='password'
+
+SEED_ADMIN_USER_ENABLED=true
+SEED_ADMIN_USER_NAME='Morty Smith'
+SEED_ADMIN_USER_EMAIL='[email protected]'
+SEED_ADMIN_USER_PASSWORD='password'
+
+SEED_USER_ENABLED=true
+SEED_USER_NAME='Beth Smith'
+SEED_USER_EMAIL='[email protected]'
+SEED_USER_PASSWORD='password'
+
 GOOGLE_ANALYTICS_ID=''
+
+# https://dev.twitch.tv/docs/authentication/
+TWITCH_ENABLED=false
+TWITCH_KEY=''
+TWITCH_SECRET=''
+TWITCH_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/twitch/callback'
+
+# https://github.com/settings/applications/new
+GITHUB_ENABLED=false
+GITHUB_KEY=''
+GITHUB_SECRET=''
+GITHUB_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/github/callback'
+
+# https://developers.tiktok.com/
+TIKTOK_ENABLED=false
+TIKTOK_KEY=''
+TIKTOK_SECRET=''
+TIKTOK_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/tiktok/callback'
+
+# https://developers.facebook.com/
+FACEBOOK_ENABLED=false
+FACEBOOK_KEY=''
+FACEBOOK_SECRET=''
+FACEBOOK_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/facebook/callback'
+
+# https://developers.facebook.com/
+GOOGLE_ENABLED=false
+GOOGLE_KEY=''
+GOOGLE_SECRET=''
+GOOGLE_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/google/callback'
+
+# https://developers.google.com/youtube/v3/getting-started
+YOUTUBE_ENABLED=false
+YOUTUBE_KEY=''
+YOUTUBE_SECRET=''
+YOUTUBE_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/google/callback'
+
+# https://apps.twitter.com/
+TWITTER_ENABLED=false
+TWITTER_CLIENT_ID=''
+TWITTER_CLIENT_SECRET=''
+TWITTER_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/twitter/callback'
+
+# https://instagram.com/developer/register/
+# https://developers.facebook.com/apps
+INSTAGRAM_ENABLED=false
+INSTAGRAM_KEY=''
+INSTAGRAM_SECRET=''
+INSTAGRAM_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/instagram/callback'
+
+#https://socialiteproviders.com/Microsoft/
+#https://portal.azure.com/
+MICROSOFT_ENABLED=false
+MICROSOFT_CLIENT_ID=''
+MICROSOFT_CLIENT_SECRET=''
+MICROSOFT_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/microsoft/callback'
+
+# https://socialiteproviders.com/Apple/
+# https://github.com/SocialiteProviders/Apple#installation--basic-usage
+# https://developer.okta.com/blog/2019/06/04/what-the-heck-is-sign-in-with-apple
+# https://bannister.me/blog/generating-a-client-secret-for-sign-in-with-apple-on-each-request
+APPLE_ENABLED=false
+APPLE_KEY=''
+APPLE_SECRET=''
+APPLE_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/apple/callback'
+
+# https://socialiteproviders.com/LinkedIn/
+# https://www.linkedin.com/developers/apps/new
+# https://www.linkedin.com/developers/apps/
+LINKEDIN_ENABLED=false
+LINKEDIN_CLIENT_ID=''
+LINKEDIN_CLIENT_SECRET=''
+LINKEDIN_REDIRECT_URI='https://YOURWEBURLHERE.COM/api/oauth/linkedin/callback'
diff --git a/.eslintrc.js b/.eslintrc.js
@@ -7,7 +7,10 @@ module.exports = {
   extends: ["eslint:recommended", "plugin:vue/vue3-recommended", "plugin:vue/vue3-essential", "@vue/eslint-config-typescript/recommended", "@vue/eslint-config-prettier", "plugin:storybook/recommended"],
   parserOptions: {
     ecmaVersion: 13,
-    sourceType: "module"
+    sourceType: "module",
+    ecmaFeatures : {
+      jsx : false
+    }
   },
   plugins: ["vue", "html", "prettier"],
   rules: {
@@ -23,6 +26,7 @@ module.exports = {
     "@typescript-eslint/no-unused-vars": 0,
     "vue/no-unused-components": 0,
     "vue/require-explicit-emits": 0,
-    "@typescript-eslint/no-this-alias": 0
+    "@typescript-eslint/no-this-alias": 0,
+    "no-undef": 0
   }
-};
+};
diff --git a/.github/FUNDING.yml b/.github/FUNDING.yml
@@ -0,0 +1,4 @@
+# These are supported funding model platforms
+
+github: [jeremykenedy]
+patreon: jeremykenedy
diff --git a/.github/workflows/gitguardian.yml b/.github/workflows/gitguardian.yml
@@ -0,0 +1,21 @@
+name: GitGuardian scan
+
+on: [push, pull_request]
+
+jobs:
+  scanning:
+    name: GitGuardian scan
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v2
+        with:
+          fetch-depth: 0 # fetch all history so multiple commits can be scanned
+      - name: GitGuardian scan
+        uses: GitGuardian/ggshield-action@master
+        env:
+          GITHUB_PUSH_BEFORE_SHA: ${{ github.event.before }}
+          GITHUB_PUSH_BASE_SHA: ${{ github.event.base }}
+          GITHUB_PULL_BASE_SHA: ${{ github.event.pull_request.base.sha }}
+          GITHUB_DEFAULT_BRANCH: ${{ github.event.repository.default_branch }}
+          GITGUARDIAN_API_KEY: ${{ secrets.GITGUARDIAN_API_KEY }}