feat(Login): Migrate login page to frontend

[msyavuz]

SUMMARY

This PR tries to move the Login fab view to the frontend spa.

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

AuthDB Login:

Before:

After:

TESTING INSTRUCTIONS

Follow the instructions on setting up auth methods in flask-appbuilder to see different auth methods working. The configuration should be something like this for different auth methods:

AUTH_TYPE = AUTH_OAUTH
OAUTH_PROVIDERS = [
    {
        "name": "google",
        "icon": "fa-google",
        "token_key": "access_token",
        "remote_app": {
            "client_id": GOOGLE_KEY,
            "client_secret": GOOGLE_SECRET,
            "api_base_url": "https://www.googleapis.com/oauth2/v2/",
            "client_kwargs": {"scope": "email profile"},
            "request_token_url": None,
            "access_token_url": "https://accounts.google.com/o/oauth2/token",
            "authorize_url": "https://accounts.google.com/o/oauth2/auth",
            "project_id": "symbolic-path-413013",
            "auth_uri": "https://accounts.google.com/o/oauth2/auth",
            "token_uri": "https://oauth2.googleapis.com/token",
            "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
            "redirect_uris": ["http://localhost:8088/oauth-authorized/google"],
            "javascript_origins": ["http://localhost:8088"],
            "jwks_uri": "https://www.googleapis.com/oauth2/v3/certs",
        },
    },
]

AUTH_TYPE = AUTH_OID
OPENID_PROVIDERS = [
    {"name": "Yahoo", "url": "https://me.yahoo.com"},
    {"name": "AOL", "url": "http://openid.aol.com/<username>"},
    {"name": "Flickr", "url": "http://www.flickr.com/<username>"},
    {"name": "MyOpenID", "url": "https://www.myopenid.com"},
]

AUTH_TYPE = AUTH_LDAP
AUTH_LDAP_SERVER = "ldap://ldap.example.org"
AUTH_LDAP_USE_TLS = False

# registration configs
AUTH_USER_REGISTRATION = True  # allow users who are not already in the FAB DB
AUTH_USER_REGISTRATION_ROLE = (
    "Public"  # this role will be given in addition to any AUTH_ROLES_MAPPING
)
AUTH_LDAP_FIRSTNAME_FIELD = "givenName"
AUTH_LDAP_LASTNAME_FIELD = "sn"
AUTH_LDAP_EMAIL_FIELD = (
    "mail"  # if null in LDAP, email is set to: "{username}@email.notfound"
)

# search configs
AUTH_LDAP_SEARCH = "ou=users,dc=example,dc=org"  # the LDAP search base
AUTH_LDAP_UID_FIELD = "uid"  # the username field
AUTH_LDAP_BIND_USER = (
    "uid=admin,dc=example,dc=org"  # the special bind username for search
)
AUTH_LDAP_BIND_PASSWORD = "admin_password"  # the special bind password for search

ADDITIONAL INFORMATION

• Has associated issue:
• Required feature flags:
• Changes UI
• Includes DB Migration (follow approval process in SIP-59)
  • Migration is atomic, supports rollback & is backwards-compatible
  • Confirm DB migration upgrade and downgrade tested
  • Runtime estimates and downtime expectations provided
• Introduces new feature or API
• Removes existing feature or API

[korbit-ai]

Based on your review schedule, I'll hold off on reviewing this PR until it's marked as ready for review. If you'd like me to take a look now, comment /korbit-review.

Your admin can change your review schedule in the Korbit Console

[rusackas]

Yay!!!! Is this the magic moment we've all been waiting for that kills the little gray close buttons that show up before the React frontend is built/loaded?

[EnxDev]

Thanks!

[EnxDev]

Should it be one of these: 'xs', 's', 'm', 'l', 'xl', 'xxl'?

[msyavuz]

Yay!!!! Is this the magic moment we've all been waiting for that kills the little gray close buttons that show up before the React frontend is built/loaded?

Well, i think those will show up anyways until the frontend is loaded. Sorry!

[korbit-ai]

Review by Korbit AI

Korbit automatically attempts to detect when you fix issues in new commits.

Category	Issue	Status
	Unused OAuth Provider Parameter ▹ view	🧠 Incorrect
	Unmemoized Bootstrap Data Fetch ▹ view	🧠 Incorrect
	Form Submission Logic Not Separated ▹ view	🧠 Not in standard
	Incorrect Component for Logout Route ▹ view
	Unhandled URL Generation Error in Redirect ▹ view	🧠 Incorrect
	Missing Interface Documentation ▹ view	🧠 Not in standard
	Potential Circular Import Risk ▹ view	✅ Fix detected
	Unexplained Layout Constants ▹ view	🧠 Not in standard
	Unclear API Parameter ▹ view	🧠 Incorrect
	Unmemoized Form Handler ▹ view	🧠 Incorrect

Files scanned

​

File Path	Reviewed
superset/connectors/sqla/init.py	✅
superset-frontend/cypress-base/cypress/utils/urls.ts	✅
superset/views/alerts.py	✅
superset/views/auth.py	✅
superset-frontend/src/components/Icons/AntdEnhanced.tsx	✅
superset-frontend/src/views/routes.tsx	✅
superset-frontend/src/pages/Register/index.tsx	✅
superset-frontend/src/pages/Login/index.tsx	✅
superset-frontend/cypress-base/cypress/support/e2e.ts	✅
superset/views/base.py	✅
superset/views/utils.py	✅
superset/initialization/init.py	✅
superset/security/manager.py	✅

Explore our documentation to understand the languages and file types we support and the files we ignore.

Check out our docs on how you can make Korbit work best for you and your team.

Loving Korbit!? Share us on LinkedIn Reddit and X

[korbit-ai]

Incorrect Component for Logout Route

Tell me more

What is the issue?

The logout route is incorrectly using the Login component, which doesn't handle the logout functionality.

Why this matters

Users attempting to logout will be shown the login page without their session being terminated, leading to an inconsistent authentication state.

Suggested change ∙ Feature Preview

Create and use a dedicated Logout component that handles session termination before redirecting to the login page. Example:

const Logout = lazy(
  () => import(/* webpackChunkName: "Logout" */ 'src/pages/Logout'),
);

// In routes array
{
    path: '/logout/',
    Component: Logout,
}

Provide feedback to improve future suggestions

💬 Looking for more details? Reply to this comment to chat with Korbit.

[geido]

Can we make a small util for this?

[msyavuz]

Done!

[geido]

Can new providers be introduced? What happens if the icon isn't available?

[msyavuz]

Since we can get the icon from user config as 'fa-google' etc, I can create an icon map that has all available providers, and maybe we can have fallback to <i> tag for new providers?

[geido]

It seems that there is a pattern in naming convention for social icons on Ant Design. We can make a util function that gets the provider name, capitalizes it and adds either Outlined or Filled (to check with Kasia) and if it does not exist can fallback to a button or a fallback icon.

[msyavuz]

Done!

[geido]

You have a LoginContainer that is the same as this. I prefer inline, so maybe we can get rid of LoginContainer?

[msyavuz]

Done!

[mistercrunch]

YES! should the login box be vertical-algin: center;?

[mistercrunch]

While at it, wondering if we can reduce the width of the login card, and maybe remove the icon at the top-right, the word "Log in" speaks for itself, no need for an icon here. @kasiazjc may have some input here too.

[alexandrusoare]

I would avoid using percentages as I don't think it would look great on wide screens, let me know what you think

[alexandrusoare]

Suggested change

	>
	>rules={[
	{ required: true, message: t('Email is required') },
	{
	type: 'email',
	message: t('Please enter a valid email address'),
	},
	]}

[alexandrusoare]

So that it can check if t s valid format for the email adress as well

[alexandrusoare]

Why do you need to use the current_app.app_builder.sm instead of security_manager

[msyavuz]

You are correct, these were measures i took to avoid circular imports but they are not necessary anymore

[alexandrusoare]

Great work @msyavuz ! The page is looking good, I just have a few nits here and there.

• When you hover over the login and register buttons there's a slight difference, the register text gets underlined, maybe we can get rid of that:

• I think we should either reduce a bit the height of the login card or to give a little bit more padding/margin to buttons on the top so that we can have some better proportions, let me know what you think:

• Maybe center the inputs and labels or at least place them on the left

[dpgaspar]

Tested AUTH_DB and AUTH_OAUTH,
using OAUTH and AUTH_USER_REGISTRATION = True login breaks, it seems RECAPTCHA_PUBLIC_KEY is now required, although this is a good measure it was not a required config before.
This does not seem specifically related with this PR, but a possible issue

[dpgaspar]

nit: is it possible to move this import to the module level?

[msyavuz]

using OAUTH and AUTH_USER_REGISTRATION = True login breaks, it seems RECAPTCHA_PUBLIC_KEY is now required, although this is a good measure it was not a required config before.

@dpgaspar I think it was required when registration is enabled but it was implicit, Recaptcha would be broken and you couldn't register. I am not sure what was the intended flow with fab as https://flask-appbuilder.readthedocs.io/en/latest/user_registration.html doesn't mention oauth.

[msyavuz]

When you hover over the login and register buttons there's a slight difference, the register text gets underlined, maybe we can get rid of that:

That button is technically a link so not sure about removing the underline

I think we should either reduce a bit the height of the login card or to give a little bit more padding/margin to buttons on the top so that we can have some better proportions, let me know what you think:

I think looks pretty similar to the fab view we had now, we would again need a design input for this if we want to change more stuff.

Maybe center the inputs and labels or at least place them on the left

Thought about maybe having less padding on the left but decided to go with less custom styles

[msyavuz]

YES! should the login box be vertical-algin: center;?

While at it, wondering if we can reduce the width of the login card, and maybe remove the icon at the top-right, the word "Log in" speaks for itself, no need for an icon here. @kasiazjc may have some input here too.

I think input of @kasiazjc is relevant here. I tried to replicate what it was before but if want to change these stuff we can do that as well.