mirror of
https://github.com/teamhanko/hanko.git
synced 2025-10-27 06:06:54 +08:00
b91e6cada4
Hook execution order is the reverse of the actual argument order, so the issue session hook is run first and user creation is run last. This leads to the issue session hook not having the full data for the created user and hence the JWT also does not contain email of the user. This commit changes the order so that the issue session hook is run last.
168 lines
5.7 KiB
Go
168 lines
5.7 KiB
Go
package flow
|
|
|
|
import (
|
|
"github.com/teamhanko/hanko/backend/flow_api/flow/capabilities"
|
|
"github.com/teamhanko/hanko/backend/flow_api/flow/credential_onboarding"
|
|
"github.com/teamhanko/hanko/backend/flow_api/flow/credential_usage"
|
|
"github.com/teamhanko/hanko/backend/flow_api/flow/login"
|
|
"github.com/teamhanko/hanko/backend/flow_api/flow/profile"
|
|
"github.com/teamhanko/hanko/backend/flow_api/flow/registration"
|
|
"github.com/teamhanko/hanko/backend/flow_api/flow/shared"
|
|
"github.com/teamhanko/hanko/backend/flow_api/flow/user_details"
|
|
"github.com/teamhanko/hanko/backend/flowpilot"
|
|
"time"
|
|
)
|
|
|
|
var CapabilitiesSubFlow = flowpilot.NewSubFlow(shared.FlowCapabilities).
|
|
State(shared.StatePreflight, capabilities.RegisterClientCapabilities{}).
|
|
MustBuild()
|
|
|
|
var CredentialUsageSubFlow = flowpilot.NewSubFlow(shared.FlowCredentialUsage).
|
|
State(shared.StateLoginInit,
|
|
credential_usage.ContinueWithLoginIdentifier{},
|
|
credential_usage.WebauthnGenerateRequestOptions{},
|
|
credential_usage.WebauthnVerifyAssertionResponse{},
|
|
shared.ThirdPartyOAuth{}).
|
|
State(shared.StateLoginPasskey,
|
|
credential_usage.WebauthnVerifyAssertionResponse{},
|
|
shared.Back{}).
|
|
State(shared.StateThirdParty,
|
|
shared.ExchangeToken{}).
|
|
State(shared.StateLoginMethodChooser,
|
|
credential_usage.ContinueToPasswordLogin{},
|
|
credential_usage.ContinueToPasscodeConfirmation{},
|
|
shared.Back{},
|
|
).
|
|
State(shared.StateLoginPassword,
|
|
credential_usage.PasswordLogin{},
|
|
credential_usage.ContinueToPasscodeConfirmationRecovery{},
|
|
shared.Back{},
|
|
).
|
|
State(shared.StateLoginPasswordRecovery,
|
|
credential_usage.PasswordRecovery{}).
|
|
State(shared.StatePasscodeConfirmation,
|
|
credential_usage.VerifyPasscode{},
|
|
credential_usage.ReSendPasscode{},
|
|
shared.Back{}).
|
|
BeforeState(shared.StatePasscodeConfirmation,
|
|
credential_usage.SendPasscode{}).
|
|
MustBuild()
|
|
|
|
var CredentialOnboardingSubFlow = flowpilot.NewSubFlow(shared.FlowCredentialOnboarding).
|
|
State(shared.StateCredentialOnboardingChooser,
|
|
credential_onboarding.ContinueToPasskey{},
|
|
credential_onboarding.ContinueToPassword{},
|
|
credential_onboarding.SkipCredentialOnboardingMethodChooser{},
|
|
shared.Back{}).
|
|
State(shared.StateOnboardingCreatePasskey,
|
|
credential_onboarding.WebauthnGenerateCreationOptions{},
|
|
credential_onboarding.SkipPasskey{},
|
|
shared.Back{}).
|
|
State(shared.StateOnboardingVerifyPasskeyAttestation,
|
|
credential_onboarding.WebauthnVerifyAttestationResponse{},
|
|
shared.Back{}).
|
|
State(shared.StatePasswordCreation,
|
|
credential_onboarding.RegisterPassword{},
|
|
credential_onboarding.SkipPassword{},
|
|
shared.Back{}).
|
|
MustBuild()
|
|
|
|
var UserDetailsSubFlow = flowpilot.NewSubFlow(shared.FlowUserDetails).
|
|
State(shared.StateOnboardingUsername,
|
|
user_details.UsernameSet{},
|
|
user_details.SkipUsername{}).
|
|
State(shared.StateOnboardingEmail,
|
|
user_details.EmailAddressSet{},
|
|
user_details.SkipEmail{}).
|
|
MustBuild()
|
|
|
|
func NewLoginFlow(debug bool) flowpilot.Flow {
|
|
return flowpilot.NewFlow(shared.FlowLogin).
|
|
State(shared.StateSuccess).
|
|
InitialState(shared.StatePreflight, shared.StateLoginInit).
|
|
ErrorState(shared.StateError).
|
|
BeforeState(shared.StateLoginInit,
|
|
login.WebauthnGenerateRequestOptionsForConditionalUi{}).
|
|
BeforeState(shared.StateSuccess,
|
|
shared.IssueSession{},
|
|
shared.GetUserData{}).
|
|
AfterState(shared.StateOnboardingVerifyPasskeyAttestation,
|
|
shared.WebauthnCredentialSave{}).
|
|
AfterState(shared.StatePasscodeConfirmation,
|
|
shared.EmailPersistVerifiedStatus{}).
|
|
AfterState(shared.StatePasswordCreation,
|
|
shared.PasswordSave{}).
|
|
AfterState(shared.StateOnboardingEmail, login.CreateEmail{}).
|
|
AfterState(shared.StatePasscodeConfirmation, login.CreateEmail{}).
|
|
AfterFlow(shared.FlowCredentialUsage, login.ScheduleOnboardingStates{}).
|
|
SubFlows(
|
|
CapabilitiesSubFlow,
|
|
CredentialUsageSubFlow,
|
|
CredentialOnboardingSubFlow,
|
|
UserDetailsSubFlow).
|
|
TTL(24 * time.Hour).
|
|
Debug(debug).
|
|
MustBuild()
|
|
}
|
|
|
|
func NewRegistrationFlow(debug bool) flowpilot.Flow {
|
|
return flowpilot.NewFlow(shared.FlowRegistration).
|
|
State(shared.StateRegistrationInit,
|
|
registration.RegisterLoginIdentifier{},
|
|
shared.ThirdPartyOAuth{}).
|
|
State(shared.StateThirdParty,
|
|
shared.ExchangeToken{}).
|
|
State(shared.StateSuccess).
|
|
InitialState(shared.StatePreflight,
|
|
shared.StateRegistrationInit).
|
|
ErrorState(shared.StateError).
|
|
BeforeState(shared.StateSuccess,
|
|
shared.IssueSession{},
|
|
shared.GetUserData{},
|
|
registration.CreateUser{}).
|
|
SubFlows(
|
|
CapabilitiesSubFlow,
|
|
CredentialUsageSubFlow,
|
|
CredentialOnboardingSubFlow,
|
|
UserDetailsSubFlow).
|
|
TTL(24 * time.Hour).
|
|
Debug(debug).
|
|
MustBuild()
|
|
}
|
|
|
|
func NewProfileFlow(debug bool) flowpilot.Flow {
|
|
return flowpilot.NewFlow(shared.FlowProfile).
|
|
State(shared.StateProfileInit,
|
|
profile.AccountDelete{},
|
|
profile.EmailCreate{},
|
|
profile.EmailDelete{},
|
|
profile.EmailSetPrimary{},
|
|
profile.EmailVerify{},
|
|
profile.PasswordCreate{},
|
|
profile.PasswordUpdate{},
|
|
profile.PasswordDelete{},
|
|
profile.UsernameCreate{},
|
|
profile.UsernameUpdate{},
|
|
profile.UsernameDelete{},
|
|
profile.WebauthnCredentialRename{},
|
|
profile.WebauthnCredentialCreate{},
|
|
profile.WebauthnCredentialDelete{},
|
|
).
|
|
State(shared.StateProfileWebauthnCredentialVerification,
|
|
profile.WebauthnVerifyAttestationResponse{},
|
|
shared.Back{}).
|
|
State(shared.StateProfileAccountDeleted).
|
|
InitialState(shared.StatePreflight, shared.StateProfileInit).
|
|
ErrorState(shared.StateError).
|
|
BeforeEachAction(profile.RefreshSessionUser{}).
|
|
BeforeState(shared.StateProfileInit, profile.GetProfileData{}).
|
|
AfterState(shared.StateProfileWebauthnCredentialVerification, shared.WebauthnCredentialSave{}).
|
|
AfterState(shared.StatePasscodeConfirmation, shared.EmailPersistVerifiedStatus{}).
|
|
SubFlows(
|
|
CapabilitiesSubFlow,
|
|
CredentialUsageSubFlow).
|
|
TTL(24 * time.Hour).
|
|
Debug(debug).
|
|
MustBuild()
|
|
}
|