bot/apps/builder/src/pages/api/auth/[...nextauth].ts

import NextAuth, { Account } from 'next-auth'
import EmailProvider from 'next-auth/providers/email'
import GitHubProvider from 'next-auth/providers/github'
import GitlabProvider from 'next-auth/providers/gitlab'
import GoogleProvider from 'next-auth/providers/google'
import FacebookProvider from 'next-auth/providers/facebook'
import AzureADProvider from 'next-auth/providers/azure-ad'
import prisma from '@/lib/prisma'
import { Provider } from 'next-auth/providers'
import { NextApiRequest, NextApiResponse } from 'next'
import { CustomAdapter } from './adapter'
import { User } from '@typebot.io/prisma'
import { env, getAtPath, isDefined, isNotEmpty } from '@typebot.io/lib'
import { sendVerificationRequest } from './sendVerificationRequest'
import { mockedUser } from '@/features/auth/mockedUser'
import { getNewUserInvitations } from '@/features/auth/helpers/getNewUserInvitations'

const providers: Provider[] = []

if (
  isNotEmpty(process.env.GITHUB_CLIENT_ID) &&
  isNotEmpty(process.env.GITHUB_CLIENT_SECRET)
)
  providers.push(
    GitHubProvider({
      clientId: process.env.GITHUB_CLIENT_ID,
      clientSecret: process.env.GITHUB_CLIENT_SECRET,
    })
  )

if (isNotEmpty(env('SMTP_FROM')) && process.env.SMTP_AUTH_DISABLED !== 'true')
  providers.push(
    EmailProvider({
      server: {
        host: process.env.SMTP_HOST,
        port: process.env.SMTP_PORT ? Number(process.env.SMTP_PORT) : 25,
        secure: process.env.SMTP_SECURE
          ? process.env.SMTP_SECURE === 'true'
          : false,
        auth: {
          user: process.env.SMTP_USERNAME,
          pass: process.env.SMTP_PASSWORD,
        },
      },
      from: env('SMTP_FROM'),
      sendVerificationRequest,
    })
  )

if (
  isNotEmpty(process.env.GOOGLE_CLIENT_ID) &&
  isNotEmpty(process.env.GOOGLE_CLIENT_SECRET)
)
  providers.push(
    GoogleProvider({
      clientId: process.env.GOOGLE_CLIENT_ID,
      clientSecret: process.env.GOOGLE_CLIENT_SECRET,
    })
  )

if (
  isNotEmpty(process.env.FACEBOOK_CLIENT_ID) &&
  isNotEmpty(process.env.FACEBOOK_CLIENT_SECRET)
)
  providers.push(
    FacebookProvider({
      clientId: process.env.FACEBOOK_CLIENT_ID,
      clientSecret: process.env.FACEBOOK_CLIENT_SECRET,
    })
  )

if (
  isNotEmpty(process.env.GITLAB_CLIENT_ID) &&
  isNotEmpty(process.env.GITLAB_CLIENT_SECRET)
) {
  const BASE_URL = process.env.GITLAB_BASE_URL || 'https://gitlab.com'
  providers.push(
    GitlabProvider({
      clientId: process.env.GITLAB_CLIENT_ID,
      clientSecret: process.env.GITLAB_CLIENT_SECRET,
      authorization: `${BASE_URL}/oauth/authorize?scope=read_api`,
      token: `${BASE_URL}/oauth/token`,
      userinfo: `${BASE_URL}/api/v4/user`,
      name: process.env.GITLAB_NAME || 'GitLab',
    })
  )
}

if (
  isNotEmpty(process.env.AZURE_AD_CLIENT_ID) &&
  isNotEmpty(process.env.AZURE_AD_CLIENT_SECRET) &&
  isNotEmpty(process.env.AZURE_AD_TENANT_ID)
) {
  providers.push(
    AzureADProvider({
      clientId: process.env.AZURE_AD_CLIENT_ID,
      clientSecret: process.env.AZURE_AD_CLIENT_SECRET,
      tenantId: process.env.AZURE_AD_TENANT_ID,
    })
  )
}

if (isNotEmpty(process.env.CUSTOM_OAUTH_WELL_KNOWN_URL)) {
  providers.push({
    id: 'custom-oauth',
    name: process.env.CUSTOM_OAUTH_NAME ?? 'Custom OAuth',
    type: 'oauth',
    clientId: process.env.CUSTOM_OAUTH_CLIENT_ID,
    clientSecret: process.env.CUSTOM_OAUTH_CLIENT_SECRET,
    wellKnown: process.env.CUSTOM_OAUTH_WELL_KNOWN_URL,
    profile(profile) {
      return {
        id: getAtPath(profile, process.env.CUSTOM_OAUTH_USER_ID_PATH ?? 'id'),
        name: getAtPath(
          profile,
          process.env.CUSTOM_OAUTH_USER_NAME_PATH ?? 'name'
        ),
        email: getAtPath(
          profile,
          process.env.CUSTOM_OAUTH_USER_EMAIL_PATH ?? 'email'
        ),
        image: getAtPath(
          profile,
          process.env.CUSTOM_OAUTH_USER_IMAGE_PATH ?? 'image'
        ),
      } as User
    },
  })
}

const handler = (req: NextApiRequest, res: NextApiResponse) => {
  if (req.url === '/api/auth/session' && env('E2E_TEST') === 'true')
    return res.send({ user: mockedUser })
  if (req.method === 'HEAD') return res.status(200)
  return NextAuth(req, res, {
    adapter: CustomAdapter(prisma),
    secret: process.env.ENCRYPTION_SECRET,
    providers,
    session: {
      strategy: 'database',
    },
    pages: {
      signIn: '/signin',
    },
    callbacks: {
      session: async ({ session, user }) => {
        const userFromDb = user as User
        await updateLastActivityDate(userFromDb)
        return {
          ...session,
          user: userFromDb,
        }
      },
      signIn: async ({ account, user }) => {
        if (!account) return false
        const isNewUser = !('createdAt' in user && isDefined(user.createdAt))
        if (process.env.DISABLE_SIGNUP === 'true' && isNewUser && user.email) {
          const { invitations, workspaceInvitations } =
            await getNewUserInvitations(prisma, user.email)
          if (invitations.length === 0 && workspaceInvitations.length === 0)
            return false
        }
        const requiredGroups = getRequiredGroups(account.provider)
        if (requiredGroups.length > 0) {
          const userGroups = await getUserGroups(account)
          return checkHasGroups(userGroups, requiredGroups)
        }
        return true
      },
    },
  })
}

const updateLastActivityDate = async (user: User) => {
  const datesAreOnSameDay = (first: Date, second: Date) =>
    first.getFullYear() === second.getFullYear() &&
    first.getMonth() === second.getMonth() &&
    first.getDate() === second.getDate()

  if (!datesAreOnSameDay(user.lastActivityAt, new Date()))
    await prisma.user.update({
      where: { id: user.id },
      data: { lastActivityAt: new Date() },
    })
}

const getUserGroups = async (account: Account): Promise<string[]> => {
  switch (account.provider) {
    case 'gitlab': {
      const getGitlabGroups = async (
        accessToken: string,
        page = 1
      ): Promise<{ full_path: string }[]> => {
        const res = await fetch(
          `${
            process.env.GITLAB_BASE_URL || 'https://gitlab.com'
          }/api/v4/groups?per_page=100&page=${page}`,
          { headers: { Authorization: `Bearer ${accessToken}` } }
        )
        const groups: { full_path: string }[] = await res.json()
        const nextPage = parseInt(res.headers.get('X-Next-Page') || '')
        if (nextPage)
          groups.push(...(await getGitlabGroups(accessToken, nextPage)))
        return groups
      }
      const groups = await getGitlabGroups(account.access_token as string)
      return groups.map((group) => group.full_path)
    }
    default:
      return []
  }
}

const getRequiredGroups = (provider: string): string[] => {
  switch (provider) {
    case 'gitlab':
      return process.env.GITLAB_REQUIRED_GROUPS?.split(',') || []
    default:
      return []
  }
}

const checkHasGroups = (userGroups: string[], requiredGroups: string[]) =>
  userGroups?.some((userGroup) => requiredGroups?.includes(userGroup))

export default handler
feat(auth): 🔒 add checking for required group 2022-04-26 09:51:11 +02:00			`import NextAuth, { Account } from 'next-auth'`
Add authentication 2021-11-29 15:19:07 +01:00			`import EmailProvider from 'next-auth/providers/email'`
			`import GitHubProvider from 'next-auth/providers/github'`
feat(auth): 🔒 add gitlab provider 2022-04-26 09:50:02 +02:00			`import GitlabProvider from 'next-auth/providers/gitlab'`
Add authentication 2021-11-29 15:19:07 +01:00			`import GoogleProvider from 'next-auth/providers/google'`
			`import FacebookProvider from 'next-auth/providers/facebook'`
fix(auth): 🔧 Add ignoreTLS option for SMTP creds 2022-06-13 11:50:05 +02:00			`import AzureADProvider from 'next-auth/providers/azure-ad'`
:recycle: (builder) Change to features-centric folder structure 2022-11-15 09:35:48 +01:00			`import prisma from '@/lib/prisma'`
Add Dashboard 2021-12-06 15:48:50 +01:00			`import { Provider } from 'next-auth/providers'`
Add user account page 2021-12-27 15:59:32 +01:00			`import { NextApiRequest, NextApiResponse } from 'next'`
feat: ✨ Add collaboration 2022-02-24 11:13:19 +01:00			`import { CustomAdapter } from './adapter'`
:recycle: Re-organize workspace folders 2023-03-15 08:35:16 +01:00			`import { User } from '@typebot.io/prisma'`
			`import { env, getAtPath, isDefined, isNotEmpty } from '@typebot.io/lib'`
:children_crossing: Improve magic link sign in experience New email and sign in feedback 2023-03-13 11:20:28 +01:00			`import { sendVerificationRequest } from './sendVerificationRequest'`
:recycle: (builder) Remove barrel export and flatten folder arch 2023-03-15 11:51:30 +01:00			`import { mockedUser } from '@/features/auth/mockedUser'`
			`import { getNewUserInvitations } from '@/features/auth/helpers/getNewUserInvitations'`
Add authentication 2021-11-29 15:19:07 +01:00
docs: 📝 Update env var and write Configuration doc 2022-03-13 08:56:10 +01:00			`const providers: Provider[] = []`

build: add pnpm 2022-08-08 08:21:36 +02:00			`if (`
			`isNotEmpty(process.env.GITHUB_CLIENT_ID) &&`
			`isNotEmpty(process.env.GITHUB_CLIENT_SECRET)`
			`)`
docs: 📝 Improve configuration doc 2022-04-12 14:58:55 -05:00			`providers.push(`
			`GitHubProvider({`
build(docker): 🧱 Improve runtime environment 2022-05-30 16:40:13 +02:00			`clientId: process.env.GITHUB_CLIENT_ID,`
docs: 📝 Improve configuration doc 2022-04-12 14:58:55 -05:00			`clientSecret: process.env.GITHUB_CLIENT_SECRET,`
			`})`
			`)`
Add Dashboard 2021-12-06 15:48:50 +01:00
fix(docker): 🐛 Runtime public environment 2022-06-22 07:36:11 +02:00			`if (isNotEmpty(env('SMTP_FROM')) && process.env.SMTP_AUTH_DISABLED !== 'true')`
Add Dashboard 2021-12-06 15:48:50 +01:00			`providers.push(`
docs: 📝 Update env var and write Configuration doc 2022-03-13 08:56:10 +01:00			`EmailProvider({`
			`server: {`
			`host: process.env.SMTP_HOST,`
			`port: process.env.SMTP_PORT ? Number(process.env.SMTP_PORT) : 25,`
:technologist: (smtp) Use secure prop instead of ignoreTLS BREAKING CHANGE: The SMTP_IGNORE_TLS environment has been removed in favore of SMTP_SECURE. If SMTP_SECURE is true, the connection will use TLS when connecting to server. If false (the default) then TLS is used if server supports the STARTTLS extension. In most cases set this value to true if you are connecting to port 465. For port 587 or 25 keep it false 2022-09-01 07:40:35 +02:00			`secure: process.env.SMTP_SECURE`
			`? process.env.SMTP_SECURE === 'true'`
			`: false,`
docs: 📝 Update env var and write Configuration doc 2022-03-13 08:56:10 +01:00			`auth: {`
			`user: process.env.SMTP_USERNAME,`
			`pass: process.env.SMTP_PASSWORD,`
			`},`
			`},`
fix(docker): 🐛 Runtime public environment 2022-06-22 07:36:11 +02:00			`from: env('SMTP_FROM'),`
:children_crossing: Improve magic link sign in experience New email and sign in feedback 2023-03-13 11:20:28 +01:00			`sendVerificationRequest,`
Add Dashboard 2021-12-06 15:48:50 +01:00			`})`
			`)`

docs: 📝 Update env var and write Configuration doc 2022-03-13 08:56:10 +01:00			`if (`
build(docker): 🧱 Improve runtime environment 2022-05-30 16:40:13 +02:00			`isNotEmpty(process.env.GOOGLE_CLIENT_ID) &&`
build: 👷 New compose file and entrypoints 2022-05-25 08:13:35 -07:00			`isNotEmpty(process.env.GOOGLE_CLIENT_SECRET)`
docs: 📝 Update env var and write Configuration doc 2022-03-13 08:56:10 +01:00			`)`
Add Dashboard 2021-12-06 15:48:50 +01:00			`providers.push(`
Add authentication 2021-11-29 15:19:07 +01:00			`GoogleProvider({`
build(docker): 🧱 Improve runtime environment 2022-05-30 16:40:13 +02:00			`clientId: process.env.GOOGLE_CLIENT_ID,`
Add Dashboard 2021-12-06 15:48:50 +01:00			`clientSecret: process.env.GOOGLE_CLIENT_SECRET,`
			`})`
			`)`

docs: 📝 Update env var and write Configuration doc 2022-03-13 08:56:10 +01:00			`if (`
build(docker): 🧱 Improve runtime environment 2022-05-30 16:40:13 +02:00			`isNotEmpty(process.env.FACEBOOK_CLIENT_ID) &&`
build: 👷 New compose file and entrypoints 2022-05-25 08:13:35 -07:00			`isNotEmpty(process.env.FACEBOOK_CLIENT_SECRET)`
docs: 📝 Update env var and write Configuration doc 2022-03-13 08:56:10 +01:00			`)`
Add Dashboard 2021-12-06 15:48:50 +01:00			`providers.push(`
Add authentication 2021-11-29 15:19:07 +01:00			`FacebookProvider({`
build(docker): 🧱 Improve runtime environment 2022-05-30 16:40:13 +02:00			`clientId: process.env.FACEBOOK_CLIENT_ID,`
Add Dashboard 2021-12-06 15:48:50 +01:00			`clientSecret: process.env.FACEBOOK_CLIENT_SECRET,`
			`})`
			`)`

feat(auth): 🔒 add gitlab provider 2022-04-26 09:50:02 +02:00			`if (`
build(docker): 🧱 Improve runtime environment 2022-05-30 16:40:13 +02:00			`isNotEmpty(process.env.GITLAB_CLIENT_ID) &&`
build: 👷 New compose file and entrypoints 2022-05-25 08:13:35 -07:00			`isNotEmpty(process.env.GITLAB_CLIENT_SECRET)`
feat(auth): 🔒 add gitlab provider 2022-04-26 09:50:02 +02:00			`) {`
fix: 🎨 Formatting 2022-04-30 07:10:02 -07:00			`const BASE_URL = process.env.GITLAB_BASE_URL \|\| 'https://gitlab.com'`
			`providers.push(`
			`GitlabProvider({`
build(docker): 🧱 Improve runtime environment 2022-05-30 16:40:13 +02:00			`clientId: process.env.GITLAB_CLIENT_ID,`
fix: 🎨 Formatting 2022-04-30 07:10:02 -07:00			`clientSecret: process.env.GITLAB_CLIENT_SECRET,`
			authorization: `${BASE_URL}/oauth/authorize?scope=read_api`,
			token: `${BASE_URL}/oauth/token`,
			userinfo: `${BASE_URL}/api/v4/user`,
build(docker): 🧱 Improve runtime environment 2022-05-30 16:40:13 +02:00			`name: process.env.GITLAB_NAME \|\| 'GitLab',`
fix: 🎨 Formatting 2022-04-30 07:10:02 -07:00			`})`
			`)`
feat(auth): 🔒 add gitlab provider 2022-04-26 09:50:02 +02:00			`}`

add azure-ad login option 2022-06-06 15:34:47 +02:00			`if (`
			`isNotEmpty(process.env.AZURE_AD_CLIENT_ID) &&`
			`isNotEmpty(process.env.AZURE_AD_CLIENT_SECRET) &&`
			`isNotEmpty(process.env.AZURE_AD_TENANT_ID)`
			`) {`
			`providers.push(`
			`AzureADProvider({`
			`clientId: process.env.AZURE_AD_CLIENT_ID,`
			`clientSecret: process.env.AZURE_AD_CLIENT_SECRET,`
			`tenantId: process.env.AZURE_AD_TENANT_ID,`
fix(auth): 🔧 Add ignoreTLS option for SMTP creds 2022-06-13 11:50:05 +02:00			`})`
add azure-ad login option 2022-06-06 15:34:47 +02:00			`)`
			`}`

:technologist: (auth) Improve Custom OAuth set up Now only ask for a well-known URL Closes #229 2023-01-10 08:24:44 +01:00			`if (isNotEmpty(process.env.CUSTOM_OAUTH_WELL_KNOWN_URL)) {`
:sparkles: (auth) Add custom OAuth provider support Closes #42 2023-01-02 08:29:46 +01:00			`providers.push({`
			`id: 'custom-oauth',`
			`name: process.env.CUSTOM_OAUTH_NAME ?? 'Custom OAuth',`
			`type: 'oauth',`
:bug: (auth) Add custom oauth client id and secret params Closes #216 2023-01-06 14:17:29 +01:00			`clientId: process.env.CUSTOM_OAUTH_CLIENT_ID,`
			`clientSecret: process.env.CUSTOM_OAUTH_CLIENT_SECRET,`
:technologist: (auth) Improve Custom OAuth set up Now only ask for a well-known URL Closes #229 2023-01-10 08:24:44 +01:00			`wellKnown: process.env.CUSTOM_OAUTH_WELL_KNOWN_URL,`
:sparkles: (auth) Add custom OAuth provider support Closes #42 2023-01-02 08:29:46 +01:00			`profile(profile) {`
			`return {`
			`id: getAtPath(profile, process.env.CUSTOM_OAUTH_USER_ID_PATH ?? 'id'),`
			`name: getAtPath(`
			`profile,`
			`process.env.CUSTOM_OAUTH_USER_NAME_PATH ?? 'name'`
			`),`
			`email: getAtPath(`
			`profile,`
			`process.env.CUSTOM_OAUTH_USER_EMAIL_PATH ?? 'email'`
			`),`
			`image: getAtPath(`
			`profile,`
			`process.env.CUSTOM_OAUTH_USER_IMAGE_PATH ?? 'image'`
			`),`
			`} as User`
			`},`
			`})`
			`}`

chore(e2e): 👷 Fix e2e pipeline 2022-01-28 17:57:14 +01:00			`const handler = (req: NextApiRequest, res: NextApiResponse) => {`
:arrow_up: Upgrade dependencies 2023-04-03 09:00:39 +02:00			`if (req.url === '/api/auth/session' && env('E2E_TEST') === 'true')`
			`return res.send({ user: mockedUser })`
			`if (req.method === 'HEAD') return res.status(200)`
			`return NextAuth(req, res, {`
feat: ✨ Add collaboration 2022-02-24 11:13:19 +01:00			`adapter: CustomAdapter(prisma),`
fix(results): 🐛 Loading rows 2022-02-11 15:30:02 +01:00			`secret: process.env.ENCRYPTION_SECRET,`
chore(e2e): 👷 Fix e2e pipeline 2022-01-28 17:57:14 +01:00			`providers,`
			`session: {`
			`strategy: 'database',`
Add Dashboard 2021-12-06 15:48:50 +01:00			`},`
:recycle: (auth) Make sure new users have an email Also fix after-auth redirections Closes #323 2023-02-18 09:00:04 +01:00			`pages: {`
			`signIn: '/signin',`
			`},`
chore(e2e): 👷 Fix e2e pipeline 2022-01-28 17:57:14 +01:00			`callbacks: {`
feat(db): 🗃️ Add createdAt and updatedAt 2022-02-24 14:52:35 +01:00			`session: async ({ session, user }) => {`
			`const userFromDb = user as User`
			`await updateLastActivityDate(userFromDb)`
			`return {`
			`...session,`
fix(hotfix): 2022-02-24 15:36:03 +01:00			`user: userFromDb,`
feat(db): 🗃️ Add createdAt and updatedAt 2022-02-24 14:52:35 +01:00			`}`
			`},`
:children_crossing: (signin) Better disabled signups behavior If DISABLE_SIGNUP is set to "true" will directly see a clear error message Closes #111 2022-11-03 08:13:22 +01:00			`signIn: async ({ account, user }) => {`
:bug: (collaboration) Fix a database rule preventing collaborators to edit a bot Also check if new user has invitations when signup is disabled Closes #265 2023-01-20 09:30:25 +01:00			`if (!account) return false`
			`const isNewUser = !('createdAt' in user && isDefined(user.createdAt))`
			`if (process.env.DISABLE_SIGNUP === 'true' && isNewUser && user.email) {`
			`const { invitations, workspaceInvitations } =`
			`await getNewUserInvitations(prisma, user.email)`
			`if (invitations.length === 0 && workspaceInvitations.length === 0)`
			`return false`
			`}`
feat(auth): 🔒 add checking for required group 2022-04-26 09:51:11 +02:00			`const requiredGroups = getRequiredGroups(account.provider)`
			`if (requiredGroups.length > 0) {`
			`const userGroups = await getUserGroups(account)`
			`return checkHasGroups(userGroups, requiredGroups)`
			`}`
			`return true`
			`},`
Add Dashboard 2021-12-06 15:48:50 +01:00			`},`
chore(e2e): 👷 Fix e2e pipeline 2022-01-28 17:57:14 +01:00			`})`
Add user account page 2021-12-27 15:59:32 +01:00			`}`
chore(e2e): 👷 Fix e2e pipeline 2022-01-28 17:57:14 +01:00
feat(db): 🗃️ Add createdAt and updatedAt 2022-02-24 14:52:35 +01:00			`const updateLastActivityDate = async (user: User) => {`
			`const datesAreOnSameDay = (first: Date, second: Date) =>`
			`first.getFullYear() === second.getFullYear() &&`
			`first.getMonth() === second.getMonth() &&`
			`first.getDate() === second.getDate()`

			`if (!datesAreOnSameDay(user.lastActivityAt, new Date()))`
			`await prisma.user.update({`
			`where: { id: user.id },`
			`data: { lastActivityAt: new Date() },`
			`})`
			`}`

fix: 🎨 Formatting 2022-04-30 07:10:02 -07:00			`const getUserGroups = async (account: Account): Promise<string[]> => {`
feat(auth): 🔒 add checking for required group 2022-04-26 09:51:11 +02:00			`switch (account.provider) {`
			`case 'gitlab': {`
fix: 🎨 Code format 2022-05-16 08:02:02 -07:00			`const getGitlabGroups = async (`
			`accessToken: string,`
			`page = 1`
			`): Promise<{ full_path: string }[]> => {`
feat(auth): 🔒 add gitlab pagination 2022-05-16 15:49:24 +02:00			`const res = await fetch(`
fix: 🎨 Code format 2022-05-16 08:02:02 -07:00			`${
			`process.env.GITLAB_BASE_URL \|\| 'https://gitlab.com'`
			}/api/v4/groups?per_page=100&page=${page}`,
feat(auth): 🔒 add gitlab pagination 2022-05-16 15:49:24 +02:00			{ headers: { Authorization: `Bearer ${accessToken}` } }
			`)`
fix: 🎨 Code format 2022-05-16 08:02:02 -07:00			`const groups: { full_path: string }[] = await res.json()`
feat(auth): 🔒 add gitlab pagination 2022-05-16 15:49:24 +02:00			`const nextPage = parseInt(res.headers.get('X-Next-Page') \|\| '')`
fix: 🎨 Code format 2022-05-16 08:02:02 -07:00			`if (nextPage)`
			`groups.push(...(await getGitlabGroups(accessToken, nextPage)))`
feat(auth): 🔒 add gitlab pagination 2022-05-16 15:49:24 +02:00			`return groups`
			`}`
fix: 🎨 Code format 2022-05-16 08:02:02 -07:00			`const groups = await getGitlabGroups(account.access_token as string)`
			`return groups.map((group) => group.full_path)`
feat(auth): 🔒 add checking for required group 2022-04-26 09:51:11 +02:00			`}`
fix: 🎨 Formatting 2022-04-30 07:10:02 -07:00			`default:`
			`return []`
feat(auth): 🔒 add checking for required group 2022-04-26 09:51:11 +02:00			`}`
			`}`

fix: 🎨 Formatting 2022-04-30 07:10:02 -07:00			`const getRequiredGroups = (provider: string): string[] => {`
feat(auth): 🔒 add checking for required group 2022-04-26 09:51:11 +02:00			`switch (provider) {`
fix: 🎨 Formatting 2022-04-30 07:10:02 -07:00			`case 'gitlab':`
			`return process.env.GITLAB_REQUIRED_GROUPS?.split(',') \|\| []`
			`default:`
			`return []`
feat(auth): 🔒 add checking for required group 2022-04-26 09:51:11 +02:00			`}`
			`}`

fix: 🎨 Formatting 2022-04-30 07:10:02 -07:00			`const checkHasGroups = (userGroups: string[], requiredGroups: string[]) =>`
			`userGroups?.some((userGroup) => requiredGroups?.includes(userGroup))`
feat(auth): 🔒 add checking for required group 2022-04-26 09:51:11 +02:00
:green_heart: Fix sentry not receiving events 2022-12-16 08:39:14 +01:00			`export default handler`