Skip to main content
Have a Wasp app in production? 🐝 We'll send you some swag! πŸ‘•
This is documentation for Wasp 0.11.8, which is no longer actively maintained.
For up-to-date documentation, see the latest version (0.20.0).
Version: 0.11.8

GitHub

Wasp supports Github Authentication out of the box. GitHub is a great external auth choice when you're building apps for developers, as most of them already have a GitHub account.

Letting your users log in using their GitHub accounts turns the signup process into a breeze.

Let's walk through enabling Github Authentication, explain some of the default settings, and show how to override them.

Setting up Github Auth​

Enabling GitHub Authentication comes down to a series of steps:

  1. Enabling GitHub authentication in the Wasp file.
  2. Adding the necessary Entities.
  3. Creating a GitHub OAuth app.
  4. Adding the neccessary Routes and Pages
  5. Using Auth UI components in our Pages.

Here's a skeleton of how our main.wasp should look like after we're done:

main.wasp
// Configuring the social authentication
appmyApp{
auth: { ... }
}

// Defining entities
entityUser{ ... }
entitySocialLogin{ ... }

// Defining routes and pages
routeLoginRoute{ ... }
pageLoginPage{ ... }

1. Adding Github Auth to Your Wasp File​

Let's start by properly configuring the Auth object:

  • JavaScript
  • TypeScript
main.wasp
appmyApp{
wasp: {
version: "^0.11.0"
},
title: "My App",
auth: {
// 1. Specify the User entity (we'll define it next)
userEntity: User,
// 2. Specify the SocialLogin entity (we'll define it next)
externalAuthEntity: SocialLogin,
methods: {
// 3. Enable Github Auth
gitHub: {}
},
onAuthFailedRedirectTo: "/login"
},
}

2. Add the Entities​

Let's now define the entities acting as app.auth.userEntity and app.auth.externalAuthEntity:

  • JavaScript
  • TypeScript
main.wasp
// ...
// 4. Define the User entity
entityUser{=psl
 id Int@id@default(autoincrement())
// ...
 externalAuthAssociations SocialLogin[]
psl=}

// 5. Define the SocialLogin entity
entitySocialLogin{=psl
 id Int@id@default(autoincrement())
 provider String
 providerId String
 user User@relation(fields:[userId],references:[id],onDelete: Cascade)
 userId Int
 createdAt DateTime@default(now())
@@unique([provider, providerId, userId])
psl=}

externalAuthEntity and userEntity are explained in the social auth overview.

3. Creating a GitHub OAuth App​

To use GitHub as an authentication method, you'll first need to create a GitHub OAuth App and provide Wasp with your client key and secret. Here's how you do it:

  1. Log into your GitHub account and navigate to: https://github.com/settings/developers.
  2. Select New OAuth App.
  3. Supply required information.
GitHub Applications Screenshot
  • For Authorization callback URL:
    • For development, put: http://localhost:3000/auth/login/github.
    • Once you know on which URL your app will be deployed, you can create a new app with that URL instead e.g. https://someotherhost.com/auth/login/github.
  1. Hit Register application.
  2. Hit Generate a new client secret on the next page.
  3. Copy your Client ID and Client secret as you'll need them in the next step.

4. Adding Environment Variables​

Add these environment variables to the .env.server file at the root of your project (take their values from the previous step):

.env.server
GITHUB_CLIENT_ID=your-github-client-id
GITHUB_CLIENT_SECRET=your-github-client-secret

5. Adding the Necessary Routes and Pages​

Let's define the necessary authentication Routes and Pages.

Add the following code to your main.wasp file:

  • JavaScript
  • TypeScript
main.wasp
// ...

// 6. Define the routes
routeLoginRoute{path: "/login",to: LoginPage}
pageLoginPage{
component: import{Login}from"@client/pages/auth.jsx"
}

We'll define the React components for these pages in the client/pages/auth.tsx file below.

6. Creating the Client Pages​

info

We are using Tailwind CSS to style the pages. Read more about how to add it here.

Let's create a auth.tsx file in the client/pages folder and add the following to it:

  • JavaScript
  • TypeScript
client/pages/auth.jsx
import{LoginForm}from'@wasp/auth/forms/Login'

exportfunctionLogin(){
return(
<Layout>
<LoginForm/>
</Layout>
)
}

// A layout component to center the content
exportfunctionLayout({ children }){
return(
<divclassName="w-full h-full bg-white">
<divclassName="min-w-full min-h-[75vh] flex items-center justify-center">
<divclassName="w-full h-full max-w-sm p-5 bg-white">
<div>{children}</div>
</div>
</div>
</div>
)
}

We imported the generated Auth UI component and used them in our pages. Read more about the Auth UI components here.

Conclusion​

Yay, we've successfully set up Github Auth! πŸŽ‰

[画像:Github Auth]

Running wasp db migrate-dev and wasp start should now give you a working app with authentication. To see how to protect specific pages (i.e., hide them from non-authenticated users), read the docs on using auth.

Default Behaviour​

Add gitHub: {} to the auth.methods dictionary to use it with default settings.

  • JavaScript
  • TypeScript
main.wasp
appmyApp{
wasp: {
version: "^0.11.0"
},
title: "My App",
auth: {
userEntity: User,
externalAuthEntity: SocialLogin,
methods: {
gitHub: {}
},
onAuthFailedRedirectTo: "/login"
},
}

When a user signs in for the first time, Wasp creates a new user account and links it to the chosen auth provider account for future logins.

Also, if the userEntity has:

  • A username field: Wasp sets it to a random username (e.g. nice-blue-horse-14357).
  • A password field: Wasp sets it to a random string.

This is a historical coupling between auth methods we plan to remove in the future.

Overrides​

Wasp lets you override the default behavior. You can create custom setups, such as allowing users to define a custom username rather instead of getting a randomly generated one.

There are two mechanisms (functions) used for overriding the default behavior:

  • getUserFieldsFn
  • configFn

Let's explore them in more detail.

Using the User's Provider Account Details​

When a user logs in using a social login provider, the backend receives some data about the user. Wasp lets you access this data inside the getUserFieldsFn function.

For example, the User entity can include a displayName field which you can set based on the details received from the provider.

Wasp also lets you customize the configuration of the providers' settings using the configFn function.

Let's use this example to show both functions in action:

  • JavaScript
  • TypeScript
main.wasp
appmyApp{
wasp: {
version: "^0.11.0"
},
title: "My App",
auth: {
userEntity: User,
externalAuthEntity: SocialLogin,
methods: {
gitHub: {
configFn: import{ getConfig }from"@server/auth/github.js",
getUserFieldsFn: import{ getUserFields }from"@server/auth/github.js"
}
},
onAuthFailedRedirectTo: "/login"
},
}

entityUser{=psl
 id Int@id@default(autoincrement())
 username String@unique
 displayName String
 externalAuthAssociations SocialLogin[]
psl=}

// ...
src/server/auth/github.js
import{ generateAvailableDictionaryUsername }from"@wasp/core/auth.js";

exportconstgetUserFields=async(_context, args)=>{
const username =awaitgenerateAvailableDictionaryUsername();
const displayName = args.profile.displayName;
return{ username, displayName };
};

exportfunctiongetConfig(){
return{
 clientID // look up from env or elsewhere
 clientSecret // look up from env or elsewhere
scope:[],
};
}

Using Auth​

To read more about how to set up the logout button and get access to the logged-in user in both client and server code, read the docs on using auth.

API Reference​

Provider-specific behavior comes down to implementing two functions.

  • configFn
  • getUserFieldsFn

The reference shows how to define both.

For behavior common to all providers, check the general API Reference.

  • JavaScript
  • TypeScript
main.wasp
appmyApp{
wasp: {
version: "^0.11.0"
},
title: "My App",
auth: {
userEntity: User,
externalAuthEntity: SocialLogin,
methods: {
gitHub: {
configFn: import{ getConfig }from"@server/auth/github.js",
getUserFieldsFn: import{ getUserFields }from"@server/auth/github.js"
}
},
onAuthFailedRedirectTo: "/login"
},
}

The gitHub dict has the following properties:

  • configFn: ServerImport​

    This function should return an object with the Client ID, Client Secret, and scope for the OAuth provider.

    • JavaScript
    • TypeScript
    src/server/auth/github.js
    exportfunctiongetConfig(){
    return{
     clientID,// look up from env or elsewhere
     clientSecret,// look up from env or elsewhere
    scope:[],
    }
    }

  • getUserFieldsFn: ServerImport​

    This function should return the user fields to use when creating a new user.

    The context contains the User entity, and the args object contains GitHub profile information. You can do whatever you want with this information (e.g., generate a username).

    Here is how you could generate a username based on the Github display name:

    • JavaScript
    • TypeScript
    src/server/auth/github.js
    import{ generateAvailableUsername }from'@wasp/core/auth.js'

    exportconstgetUserFields=async(_context, args)=>{
    const username =awaitgenerateAvailableUsername(
     args.profile.displayName.split(' '),
    {separator:'.'}
    )
    return{ username }
    }

    Wasp exposes two functions that can help you generate usernames. Import them from @wasp/core/auth.js:

    • generateAvailableUsername takes an array of strings and an optional separator and generates a string ending with a random number that is not yet in the database. For example, the above could produce something like "Jim.Smith.3984" for a Github user Jim Smith.
    • generateAvailableDictionaryUsername generates a random dictionary phrase that is not yet in the database. For example, nice-blue-horse-27160.

AltStyle γ«γ‚ˆγ£γ¦ε€‰ζ›γ•γ‚ŒγŸγƒšγƒΌγ‚Έ (->γ‚ͺγƒͺγ‚ΈγƒŠγƒ«) /