barrettruth/delta
1
0
Fork 0
Code Issues 14 Pull requests Releases 1 Packages Activity Actions

feat(auth): add OAuth login for GitHub, Google, GitLab #30

Merged
barrettruth merged 1 commit from feat/oauth-login into main 2026-03-23 03:52:11 +00:00
Conversation 0 Commits 1 Files changed 17 +1423 -74
barrettruth commented 2026-03-23 03:50:53 +00:00
Copy link

Problem

Auth is username/password only. Friends who want to use delta need manually-created credentials. Closes #28.

Solution

Add OAuth 2.0 authorization code flow for GitHub, Google, and GitLab — no external libraries. Each provider is configured via OAUTH_{PROVIDER}_CLIENT_ID and OAUTH_{PROVIDER}_CLIENT_SECRET env vars; unconfigured providers are hidden from the login page.

New accounts table links provider identities to users. passwordHash is now nullable so OAuth-only users can exist. CSRF protection via random state cookie. Username deduplication on first OAuth login. Settings page lets users link/unlink providers (with guard against removing the last auth method). 11 new tests (209 total).

## Problem Auth is username/password only. Friends who want to use delta need manually-created credentials. Closes #28. ## Solution Add OAuth 2.0 authorization code flow for GitHub, Google, and GitLab — no external libraries. Each provider is configured via `OAUTH_{PROVIDER}_CLIENT_ID` and `OAUTH_{PROVIDER}_CLIENT_SECRET` env vars; unconfigured providers are hidden from the login page. New `accounts` table links provider identities to users. `passwordHash` is now nullable so OAuth-only users can exist. CSRF protection via random state cookie. Username deduplication on first OAuth login. Settings page lets users link/unlink providers (with guard against removing the last auth method). 11 new tests (209 total).
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
bug
Something isn't working

  
documentation
Improvements or additions to documentation

  
duplicate
This issue or pull request already exists

  
enhancement
New feature or request

  
good first issue
Good for newcomers

  
help wanted
Extra attention is needed

  
invalid
This doesn't seem right

  
question
Further information is requested

  
track:api
API layer track

  
track:auto
Automation track

  
track:core
Core engine track

  
track:deploy
Deployment track

  
track:infra
Infrastructure track

  
track:ui
Web UI track

  
v0.1.0
First release milestone

  
v0.1.1
post-initial release

  
wontfix
This will not be worked on

No labels
bug
documentation
duplicate
enhancement
good first issue
help wanted
invalid
question
track:api
track:auto
track:core
track:deploy
track:infra
track:ui
v0.1.0
v0.1.1
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
barrettruth/delta!30
No description provided.