mirror of
https://github.com/wasp-lang/wasp.git
synced 2024-12-28 11:34:41 +03:00
546 lines
14 KiB
Markdown
546 lines
14 KiB
Markdown
---
|
|
title: 7. Adding Authentication
|
|
---
|
|
|
|
import useBaseUrl from '@docusaurus/useBaseUrl';
|
|
import { ShowForTs, ShowForJs } from '@site/src/components/TsJsHelpers';
|
|
|
|
Most modern apps need a way to create and authenticate users. Wasp makes this as easy as possible with its first-class auth support.
|
|
|
|
To add users to your app, you must:
|
|
|
|
- [ ] Create a `User` Entity.
|
|
- [ ] Tell Wasp to use the _Username and Password_ authentication.
|
|
- [ ] Add login and signup pages.
|
|
- [ ] Update the main page to require authentication.
|
|
- [ ] Add a relation between `User` and `Task` entities.
|
|
- [ ] Modify your Queries and Actions so users can only see and modify their tasks.
|
|
- [ ] Add a logout button.
|
|
|
|
## Creating a User Entity
|
|
|
|
Since Wasp manages authentication, it will create [the auth related entities](../auth/entities) for you in the background. Nothing to do here!
|
|
|
|
You must only add the `User` Entity to keep track of who owns which tasks:
|
|
|
|
```prisma title="schema.prisma"
|
|
// ...
|
|
|
|
model User {
|
|
id Int @id @default(autoincrement())
|
|
}
|
|
```
|
|
|
|
## Adding Auth to the Project
|
|
|
|
Next, tell Wasp to use full-stack [authentication](../auth/overview):
|
|
|
|
```wasp title="main.wasp"
|
|
app TodoApp {
|
|
wasp: {
|
|
version: "^0.15.0"
|
|
},
|
|
// highlight-start
|
|
title: "TodoApp",
|
|
auth: {
|
|
// Tells Wasp which entity to use for storing users.
|
|
userEntity: User,
|
|
methods: {
|
|
// Enable username and password auth.
|
|
usernameAndPassword: {}
|
|
},
|
|
// We'll see how this is used in a bit.
|
|
onAuthFailedRedirectTo: "/login"
|
|
}
|
|
// highlight-end
|
|
}
|
|
|
|
// ...
|
|
```
|
|
|
|
Don't forget to update the database schema by running:
|
|
|
|
```sh
|
|
wasp db migrate-dev
|
|
```
|
|
|
|
By doing this, Wasp will create:
|
|
|
|
- [Auth UI](../auth/ui) with login and signup forms.
|
|
- A `logout()` action.
|
|
- A React hook `useAuth()`.
|
|
- `context.user` for use in Queries and Actions.
|
|
|
|
:::info
|
|
Wasp also supports authentication using [Google](../auth/social-auth/google), [GitHub](../auth/social-auth/github), and [email](../auth/email), with more on the way!
|
|
:::
|
|
|
|
## Adding Login and Signup Pages
|
|
|
|
Wasp creates the login and signup forms for us, but we still need to define the pages to display those forms on. We'll start by declaring the pages in the Wasp file:
|
|
|
|
<Tabs groupId="js-ts">
|
|
<TabItem value="js" label="JavaScript">
|
|
|
|
```wasp title="main.wasp"
|
|
// ...
|
|
|
|
route SignupRoute { path: "/signup", to: SignupPage }
|
|
page SignupPage {
|
|
component: import { SignupPage } from "@src/SignupPage"
|
|
}
|
|
|
|
route LoginRoute { path: "/login", to: LoginPage }
|
|
page LoginPage {
|
|
component: import { LoginPage } from "@src/LoginPage"
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
<TabItem value="ts" label="TypeScript">
|
|
|
|
```wasp title="main.wasp"
|
|
// ...
|
|
|
|
route SignupRoute { path: "/signup", to: SignupPage }
|
|
page SignupPage {
|
|
component: import { SignupPage } from "@src/SignupPage"
|
|
}
|
|
|
|
route LoginRoute { path: "/login", to: LoginPage }
|
|
page LoginPage {
|
|
component: import { LoginPage } from "@src/LoginPage"
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
</Tabs>
|
|
|
|
Great, Wasp now knows these pages exist!
|
|
|
|
Here's the React code for the pages you've just imported:
|
|
|
|
<Tabs groupId="js-ts">
|
|
<TabItem value="js" label="JavaScript">
|
|
|
|
```jsx title="src/LoginPage.jsx"
|
|
import { Link } from 'react-router-dom'
|
|
import { LoginForm } from 'wasp/client/auth'
|
|
|
|
export const LoginPage = () => {
|
|
return (
|
|
<div style={{ maxWidth: '400px', margin: '0 auto' }}>
|
|
<LoginForm />
|
|
<br />
|
|
<span>
|
|
I don't have an account yet (<Link to="/signup">go to signup</Link>).
|
|
</span>
|
|
</div>
|
|
)
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
<TabItem value="ts" label="TypeScript">
|
|
|
|
```tsx title="src/LoginPage.tsx"
|
|
import { Link } from 'react-router-dom'
|
|
import { LoginForm } from 'wasp/client/auth'
|
|
|
|
export const LoginPage = () => {
|
|
return (
|
|
<div style={{ maxWidth: '400px', margin: '0 auto' }}>
|
|
<LoginForm />
|
|
<br />
|
|
<span>
|
|
I don't have an account yet (<Link to="/signup">go to signup</Link>).
|
|
</span>
|
|
</div>
|
|
)
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
</Tabs>
|
|
|
|
The signup page is very similar to the login page:
|
|
|
|
<Tabs groupId="js-ts">
|
|
<TabItem value="js" label="JavaScript">
|
|
|
|
```jsx title="src/SignupPage.jsx"
|
|
import { Link } from 'react-router-dom'
|
|
import { SignupForm } from 'wasp/client/auth'
|
|
|
|
export const SignupPage = () => {
|
|
return (
|
|
<div style={{ maxWidth: '400px', margin: '0 auto' }}>
|
|
<SignupForm />
|
|
<br />
|
|
<span>
|
|
I already have an account (<Link to="/login">go to login</Link>).
|
|
</span>
|
|
</div>
|
|
)
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
<TabItem value="ts" label="TypeScript">
|
|
|
|
```tsx title="src/SignupPage.tsx"
|
|
import { Link } from 'react-router-dom'
|
|
import { SignupForm } from 'wasp/client/auth'
|
|
|
|
export const SignupPage = () => {
|
|
return (
|
|
<div style={{ maxWidth: '400px', margin: '0 auto' }}>
|
|
<SignupForm />
|
|
<br />
|
|
<span>
|
|
I already have an account (<Link to="/login">go to login</Link>).
|
|
</span>
|
|
</div>
|
|
)
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
</Tabs>
|
|
|
|
<ShowForTs>
|
|
|
|
:::tip Type-safe links
|
|
Since you are using Typescript, you can benefit from using Wasp's type-safe `Link` component and the `routes` object. Check out the [type-safe links docs](../advanced/links) for more details.
|
|
:::
|
|
</ShowForTs>
|
|
|
|
## Update the Main Page to Require Auth
|
|
|
|
We don't want users who are not logged in to access the main page, because they won't be able to create any tasks. So let's make the page private by requiring the user to be logged in:
|
|
|
|
```wasp title="main.wasp"
|
|
// ...
|
|
|
|
page MainPage {
|
|
// highlight-next-line
|
|
authRequired: true,
|
|
component: import { MainPage } from "@src/MainPage"
|
|
}
|
|
```
|
|
|
|
Now that auth is required for this page, unauthenticated users will be redirected to `/login`, as we specified with `app.auth.onAuthFailedRedirectTo`.
|
|
|
|
Additionally, when `authRequired` is `true`, the page's React component will be provided a `user` object as prop.
|
|
|
|
<Tabs groupId="js-ts">
|
|
<TabItem value="js" label="JavaScript">
|
|
|
|
```jsx title="src/MainPage.jsx"
|
|
// highlight-next-line
|
|
export const MainPage = ({ user }) => {
|
|
// Do something with the user
|
|
// ...
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
<TabItem value="ts" label="TypeScript">
|
|
|
|
```tsx title="src/MainPage.tsx"
|
|
import { AuthUser } from 'wasp/auth'
|
|
|
|
// highlight-next-line
|
|
export const MainPage = ({ user }: { user: AuthUser }) => {
|
|
// Do something with the user
|
|
// ...
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
</Tabs>
|
|
|
|
Ok, time to test this out. Navigate to the main page (`/`) of the app. You'll get redirected to `/login`, where you'll be asked to authenticate.
|
|
|
|
Since we just added users, you don't have an account yet. Go to the signup page and create one. You'll be sent back to the main page where you will now be able to see the TODO list!
|
|
|
|
Let's check out what the database looks like. Start the Prisma Studio:
|
|
|
|
```shell
|
|
wasp db studio
|
|
```
|
|
|
|
<img alt="Database demonstration - password hashing"
|
|
src={useBaseUrl('img/wasp_user_in_db.gif')}
|
|
style={{ border: "1px solid black" }}
|
|
/>
|
|
|
|
You'll notice that we now have a `User` entity in the database alongside the `Task` entity.
|
|
|
|
However, you will notice that if you try logging in as different users and creating some tasks, all users share the same tasks. That's because you haven't yet updated the queries and actions to have per-user tasks. Let's do that next.
|
|
|
|
<small>
|
|
|
|
You might notice some extra Prisma models like `Auth`, `AuthIdentity` and `Session` that Wasp created for you. You don't need to care about these right now, but if you are curious, you can read more about them [here](../auth/entities).
|
|
|
|
</small>
|
|
|
|
## Defining a User-Task Relation
|
|
|
|
First, let's define a one-to-many relation between users and tasks (check the [Prisma docs on relations](https://www.prisma.io/docs/reference/tools-and-interfaces/prisma-schema/relations)):
|
|
|
|
```prisma title="schema.prisma"
|
|
// ...
|
|
|
|
model User {
|
|
id Int @id @default(autoincrement())
|
|
// highlight-next-line
|
|
tasks Task[]
|
|
}
|
|
|
|
model Task {
|
|
id Int @id @default(autoincrement())
|
|
description String
|
|
isDone Boolean @default(false)
|
|
// highlight-next-line
|
|
user User? @relation(fields: [userId], references: [id])
|
|
// highlight-next-line
|
|
userId Int?
|
|
}
|
|
```
|
|
|
|
As always, you must migrate the database after changing the Entities:
|
|
|
|
```sh
|
|
wasp db migrate-dev
|
|
```
|
|
|
|
:::note
|
|
We made `user` and `userId` in `Task` optional (via `?`) because that allows us to keep the existing tasks, which don't have a user assigned, in the database.
|
|
|
|
This isn't recommended because it allows an unwanted state in the database (what is the purpose of the task not belonging to anybody?) and normally we would not make these fields optional.
|
|
|
|
Instead, we would do a data migration to take care of those tasks, even if it means just deleting them all. However, for this tutorial, for the sake of simplicity, we will stick with this.
|
|
:::
|
|
|
|
## Updating Operations to Check Authentication
|
|
|
|
Next, let's update the queries and actions to forbid access to non-authenticated users and to operate only on the currently logged-in user's tasks:
|
|
|
|
<Tabs groupId="js-ts">
|
|
<TabItem value="js" label="JavaScript">
|
|
|
|
```js title="src/queries.js"
|
|
// highlight-next-line
|
|
import { HttpError } from 'wasp/server'
|
|
|
|
export const getTasks = async (args, context) => {
|
|
// highlight-start
|
|
if (!context.user) {
|
|
throw new HttpError(401)
|
|
}
|
|
// highlight-end
|
|
return context.entities.Task.findMany({
|
|
// highlight-next-line
|
|
where: { user: { id: context.user.id } },
|
|
orderBy: { id: 'asc' },
|
|
})
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
<TabItem value="ts" label="TypeScript">
|
|
|
|
```ts title="src/queries.ts"
|
|
import { Task } from 'wasp/entities'
|
|
// highlight-next-line
|
|
import { HttpError } from 'wasp/server'
|
|
import { GetTasks } from 'wasp/server/operations'
|
|
|
|
export const getTasks: GetTasks<void, Task[]> = async (args, context) => {
|
|
// highlight-start
|
|
if (!context.user) {
|
|
throw new HttpError(401)
|
|
}
|
|
// highlight-end
|
|
return context.entities.Task.findMany({
|
|
// highlight-next-line
|
|
where: { user: { id: context.user.id } },
|
|
orderBy: { id: 'asc' },
|
|
})
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
</Tabs>
|
|
|
|
<Tabs groupId="js-ts">
|
|
<TabItem value="js" label="JavaScript">
|
|
|
|
```js {1,4-6,10,16-18} title="src/actions.js"
|
|
import { HttpError } from 'wasp/server'
|
|
|
|
export const createTask = async (args, context) => {
|
|
if (!context.user) {
|
|
throw new HttpError(401)
|
|
}
|
|
return context.entities.Task.create({
|
|
data: {
|
|
description: args.description,
|
|
user: { connect: { id: context.user.id } },
|
|
},
|
|
})
|
|
}
|
|
|
|
export const updateTask = async (args, context) => {
|
|
if (!context.user) {
|
|
throw new HttpError(401)
|
|
}
|
|
return context.entities.Task.updateMany({
|
|
where: { id: args.id, user: { id: context.user.id } },
|
|
data: { isDone: args.isDone },
|
|
})
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
<TabItem value="ts" label="TypeScript">
|
|
|
|
```ts {2,11-13,17,28-30,32} title="src/actions.ts"
|
|
import { Task } from 'wasp/entities'
|
|
import { HttpError } from 'wasp/server'
|
|
import { CreateTask, UpdateTask } from 'wasp/server/operations'
|
|
|
|
type CreateTaskPayload = Pick<Task, 'description'>
|
|
|
|
export const createTask: CreateTask<CreateTaskPayload, Task> = async (
|
|
args,
|
|
context
|
|
) => {
|
|
if (!context.user) {
|
|
throw new HttpError(401)
|
|
}
|
|
return context.entities.Task.create({
|
|
data: {
|
|
description: args.description,
|
|
user: { connect: { id: context.user.id } },
|
|
},
|
|
})
|
|
}
|
|
|
|
type UpdateTaskPayload = Pick<Task, 'id' | 'isDone'>
|
|
|
|
export const updateTask: UpdateTask<
|
|
UpdateTaskPayload,
|
|
{ count: number }
|
|
> = async ({ id, isDone }, context) => {
|
|
if (!context.user) {
|
|
throw new HttpError(401)
|
|
}
|
|
return context.entities.Task.updateMany({
|
|
where: { id, user: { id: context.user.id } },
|
|
data: { isDone },
|
|
})
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
</Tabs>
|
|
|
|
:::note
|
|
Due to how Prisma works, we had to convert `update` to `updateMany` in `updateTask` action to be able to specify the user id in `where`.
|
|
:::
|
|
|
|
With these changes, each user should have a list of tasks that only they can see and edit.
|
|
|
|
Try playing around, adding a few users and some tasks for each of them. Then open the DB studio:
|
|
|
|
```sh
|
|
wasp db studio
|
|
```
|
|
|
|
<img alt="Database demonstration"
|
|
src={useBaseUrl('img/wasp_db_demonstration.gif')}
|
|
style={{ border: "1px solid black" }}
|
|
/>
|
|
|
|
You will see that each user has their tasks, just as we specified in our code!
|
|
|
|
## Logout Button
|
|
|
|
Last, but not least, let's add the logout functionality:
|
|
|
|
<Tabs groupId="js-ts">
|
|
<TabItem value="js" label="JavaScript">
|
|
|
|
```jsx {2,10} title="src/MainPage.jsx"
|
|
// ...
|
|
import { logout } from 'wasp/client/auth'
|
|
//...
|
|
|
|
const MainPage = () => {
|
|
// ...
|
|
return (
|
|
<div>
|
|
// ...
|
|
<button onClick={logout}>Logout</button>
|
|
</div>
|
|
)
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
<TabItem value="ts" label="TypeScript">
|
|
|
|
```tsx {2,10} title="src/MainPage.tsx"
|
|
// ...
|
|
import { logout } from 'wasp/client/auth'
|
|
//...
|
|
|
|
const MainPage = () => {
|
|
// ...
|
|
return (
|
|
<div>
|
|
// ...
|
|
<button onClick={logout}>Logout</button>
|
|
</div>
|
|
)
|
|
}
|
|
```
|
|
|
|
</TabItem>
|
|
</Tabs>
|
|
|
|
This is it, we have a working authentication system, and our Todo app is multi-user!
|
|
|
|
## What's Next?
|
|
|
|
We did it 🎉 You've followed along with this tutorial to create a basic Todo app with Wasp.
|
|
|
|
<ShowForJs>
|
|
|
|
You can find the complete code for the JS version of the tutorial [here](https://github.com/wasp-lang/wasp/tree/release/examples/tutorials/TodoApp).
|
|
|
|
</ShowForJs>
|
|
<ShowForTs>
|
|
|
|
You can find the complete code for the TS version of the tutorial [here](https://github.com/wasp-lang/wasp/tree/release/examples/tutorials/TodoAppTs).
|
|
|
|
</ShowForTs>
|
|
|
|
You should be ready to learn about more complicated features and go more in-depth with the features already covered. Scroll through the sidebar on the left side of the page to see every feature Wasp has to offer. Or, let your imagination run wild and start building your app! ✨
|
|
|
|
Looking for inspiration?
|
|
|
|
- Get a jump start on your next project with [Starter Templates](../project/starter-templates).
|
|
- Check out our [official examples](https://github.com/wasp-lang/wasp/tree/release/examples).
|
|
- Make a real-time app with [Web Sockets](../advanced/web-sockets).
|
|
|
|
:::note
|
|
If you notice that some of the features you'd like to have are missing, or have any other kind of feedback, please write to us on [Discord](https://discord.gg/rzdnErX) or create an issue on [Github](https://github.com/wasp-lang/wasp), so we can learn which features to add/improve next 🙏
|
|
|
|
If you would like to contribute or help to build a feature, let us know! You can find more details on contributing [here](contributing.md).
|
|
:::
|
|
|
|
Oh, and do [**subscribe to our newsletter**](/#signup)! We usually send one per month, and Matija does his best to unleash his creativity to make them engaging and fun to read :D!
|