webhook: Switch to authlib for login management (!163) · Merge requests · infrastructure / qa-report-app

Detlev Casanova requested to merge wip/detlev/remove-gitlab-leftovers into master Oct 17, 2022

authlib provides a better flask integration.

It also has better support for validating that a user is still authorized for each request.

The mechanism for validating JWT token is not working properly with gitlab. To validate the user, each request that require the logged in user will fetch the user info from the openid server.

Because time is of the essence, I did not improve the login error management, but a start of work can be found there: https://gitlab.apertis.org/infrastructure/qa-report-app/-/commits/wip/detlev/manage-login-errors-better

https://phabricator.apertis.org/T9272

Edited Oct 19, 2022 by Detlev Casanova

webhook: Switch to authlib for login management

Merge request reports