4743 use auth google apis callback url instead of messaging provider gmail callback url (#4838)

Closes #4743
2024-04-08 14:56:12 +02:00
parent ab60b8be65
commit 018b9efc2c
7 changed files with 3 additions and 73 deletions
--- a/packages/twenty-docs/docs/start/self-hosting/self-hosting.mdx
+++ b/packages/twenty-docs/docs/start/self-hosting/self-hosting.mdx
@ -69,8 +69,7 @@ import TabItem from '@theme/TabItem';
 <OptionTable options={[
    ['MESSAGING_PROVIDER_GMAIL_ENABLED', 'false', 'Enable Gmail API connection'],
    ['CALENDAR_PROVIDER_GMAIL_ENABLED', 'false', 'Enable Google Calendar API connection'],
-    ['MESSAGING_PROVIDER_GMAIL_CALLBACK_URL', '', 'Gmail auth callback'],
-    ['AUTH_GOOGLE_APIS_CALLBACK_URL', '', 'Google API auth callback'],
+    ['AUTH_GOOGLE_APIS_CALLBACK_URL', '', 'Google APIs auth callback'],
    ['AUTH_GOOGLE_ENABLED', 'false', 'Enable Goole SSO login'],
    ['AUTH_GOOGLE_CLIENT_ID', '', 'Google client ID'],
    ['AUTH_GOOGLE_CLIENT_SECRET', '', 'Google client secret'],
--- a/packages/twenty-front/src/modules/settings/accounts/hooks/useTriggerGoogleApisOAuth.ts
+++ b/packages/twenty-front/src/modules/settings/accounts/hooks/useTriggerGoogleApisOAuth.ts
@ -14,7 +14,7 @@ export const useTriggerGoogleApisOAuth = () => {
    const token =
      transientToken.data?.generateTransientToken.transientToken.token;

-    window.location.href = `${authServerUrl}/auth/google-gmail?transientToken=${token}`;
+    window.location.href = `${authServerUrl}/auth/google-apis?transientToken=${token}`;
  }, [generateTransientToken]);

  return { triggerGoogleApisOAuth };
--- a/packages/twenty-server/.env.example
+++ b/packages/twenty-server/.env.example
@ -30,7 +30,6 @@ SIGN_IN_PREFILLED=true
 # AUTH_GOOGLE_CLIENT_ID=replace_me_with_google_client_id
 # AUTH_GOOGLE_CLIENT_SECRET=replace_me_with_google_client_secret
 # AUTH_GOOGLE_CALLBACK_URL=http://localhost:3000/auth/google/redirect
-# MESSAGING_PROVIDER_GMAIL_CALLBACK_URL=http://localhost:3000/auth/google-gmail/get-access-token
 # AUTH_GOOGLE_APIS_CALLBACK_URL=http://localhost:3000/auth/google-apis/get-access-token
 # STORAGE_TYPE=local
 # STORAGE_LOCAL_PATH=.local-storage
--- a/packages/twenty-server/src/engine/core-modules/auth/auth.module.ts
+++ b/packages/twenty-server/src/engine/core-modules/auth/auth.module.ts
@ -19,7 +19,6 @@ import { TokenService } from 'src/engine/core-modules/auth/services/token.servic
 import { GoogleAPIsService } from 'src/engine/core-modules/auth/services/google-apis.service';
 import { UserWorkspaceModule } from 'src/engine/core-modules/user-workspace/user-workspace.module';
 import { SignUpService } from 'src/engine/core-modules/auth/services/sign-up.service';
-import { GoogleGmailAuthController } from 'src/engine/core-modules/auth/controllers/google-gmail-auth.controller';
 import { FeatureFlagEntity } from 'src/engine/core-modules/feature-flag/feature-flag.entity';
 import { FileUploadModule } from 'src/engine/core-modules/file/file-upload/file-upload.module';
 import { AppTokenService } from 'src/engine/core-modules/app-token/services/app-token.service';
@ -58,7 +57,6 @@ const jwtModule = JwtModule.registerAsync({
  controllers: [
    GoogleAuthController,
    GoogleAPIsAuthController,
-    GoogleGmailAuthController,
    VerifyAuthController,
  ],
  providers: [
--- a/packages/twenty-server/src/engine/core-modules/auth/controllers/google-gmail-auth.controller.ts
+++ b/packages/twenty-server/src/engine/core-modules/auth/controllers/google-gmail-auth.controller.ts
@ -1,62 +0,0 @@
-import { Controller, Get, Req, Res, UseGuards } from '@nestjs/common';
-
-import { Response } from 'express';
-
-import { GoogleAPIsOauthGuard } from 'src/engine/core-modules/auth/guards/google-apis-oauth.guard';
-import { GoogleAPIsProviderEnabledGuard } from 'src/engine/core-modules/auth/guards/google-apis-provider-enabled.guard';
-import { GoogleAPIsService } from 'src/engine/core-modules/auth/services/google-apis.service';
-import { TokenService } from 'src/engine/core-modules/auth/services/token.service';
-import { GoogleAPIsRequest } from 'src/engine/core-modules/auth/strategies/google-apis.auth.strategy';
-import { EnvironmentService } from 'src/engine/integrations/environment/environment.service';
-
-@Controller('auth/google-gmail')
-export class GoogleGmailAuthController {
-  constructor(
-    private readonly googleAPIsService: GoogleAPIsService,
-    private readonly tokenService: TokenService,
-    private readonly environmentService: EnvironmentService,
-  ) {}
-
-  @Get()
-  @UseGuards(GoogleAPIsProviderEnabledGuard, GoogleAPIsOauthGuard)
-  async googleAuth() {
-    // As this method is protected by Google Auth guard, it will trigger Google SSO flow
-    return;
-  }
-
-  @Get('get-access-token')
-  @UseGuards(GoogleAPIsProviderEnabledGuard, GoogleAPIsOauthGuard)
-  async googleAuthGetAccessToken(
-    @Req() req: GoogleAPIsRequest,
-    @Res() res: Response,
-  ) {
-    const { user } = req;
-
-    const { email, accessToken, refreshToken, transientToken } = user;
-
-    const { workspaceMemberId, workspaceId } =
-      await this.tokenService.verifyTransientToken(transientToken);
-
-    const demoWorkspaceIds = this.environmentService.get('DEMO_WORKSPACE_IDS');
-
-    if (demoWorkspaceIds.includes(workspaceId)) {
-      throw new Error('Cannot connect Gmail account to demo workspace');
-    }
-
-    if (!workspaceId) {
-      throw new Error('Workspace not found');
-    }
-
-    await this.googleAPIsService.saveOrUpdateConnectedAccount({
-      handle: email,
-      workspaceMemberId: workspaceMemberId,
-      workspaceId: workspaceId,
-      accessToken,
-      refreshToken,
-    });
-
-    return res.redirect(
-      `${this.environmentService.get('FRONT_BASE_URL')}/settings/accounts`,
-    );
-  }
-}
--- a/packages/twenty-server/src/engine/core-modules/auth/strategies/google-apis.auth.strategy.ts
+++ b/packages/twenty-server/src/engine/core-modules/auth/strategies/google-apis.auth.strategy.ts
@ -41,9 +41,7 @@ export class GoogleAPIsStrategy extends PassportStrategy(
    super({
      clientID: environmentService.get('AUTH_GOOGLE_CLIENT_ID'),
      clientSecret: environmentService.get('AUTH_GOOGLE_CLIENT_SECRET'),
-      callbackURL: environmentService.get('CALENDAR_PROVIDER_GOOGLE_ENABLED')
-        ? environmentService.get('AUTH_GOOGLE_APIS_CALLBACK_URL')
-        : environmentService.get('MESSAGING_PROVIDER_GMAIL_CALLBACK_URL'),
+      callbackURL: environmentService.get('AUTH_GOOGLE_APIS_CALLBACK_URL'),
      scope,
      passReqToCallback: true,
    });
--- a/packages/twenty-server/src/engine/integrations/environment/environment-variables.ts
+++ b/packages/twenty-server/src/engine/integrations/environment/environment-variables.ts
@ -272,8 +272,6 @@ export class EnvironmentVariables {
  @CastToBoolean()
  MESSAGING_PROVIDER_GMAIL_ENABLED: boolean = false;

-  MESSAGING_PROVIDER_GMAIL_CALLBACK_URL: string;
-
  MESSAGE_QUEUE_TYPE: string = MessageQueueDriverType.Sync;

  EMAIL_FROM_ADDRESS: string = 'noreply@yourdomain.com';