Skip to content

Merge Staging into Main: August 21, 2024 #723

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
lhr-git merged 14 commits into from
Aug 21, 2024
Merged

Merge Staging into Main: August 21, 2024 #723

Changes from 2 commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
60f725c
Update footer ternary to use publicRuntimeConfig value (#705)
krischarbonneau Jul 15, 2024
cb302dd
Update contact us page to display SIN link (#706)
krischarbonneau Jul 16, 2024
ff3ecb3
Add Root Cert Structure to Dockerfile (#707)
lhr-git Jul 17, 2024
c9228af
Merge branch 'dev' into staging
krischarbonneau Jul 26, 2024
e070ea8
Pin base image version in Dockerfile (#709)
krischarbonneau Jul 29, 2024
87b37a4
Merge branch 'dev' into staging
krischarbonneau Jul 29, 2024
34d5d44
Update next-auth config to validate SIN and UID (#710)
krischarbonneau Aug 8, 2024
e09525c
Merge branch 'dev' into staging
krischarbonneau Aug 8, 2024
a16e897
Swapping from null to a catchall for falsy values (#711)
lhr-git Aug 9, 2024
51b8a29
Swapping from null to a catchall for falsy values (#711) (#712)
lhr-git Aug 9, 2024
be6034c
Snyk updates bundled together (#714)
lhr-git Aug 19, 2024
6960a2d
Merging dev into staging August 19, 2024 (#715)
lhr-git Aug 19, 2024
b4c63de
Merge branch 'dev' into staging
lhr-git Aug 21, 2024
e09d867
Merging main into staging
lhr-git Aug 21, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
9 changes: 9 additions & 0 deletions pages/api/auth/[...nextauth].ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -100,6 +100,15 @@ export const authOptions: NextAuthOptions = {
checks: ['state', 'nonce'],
profile: async (profile) => {
profile = await decryptJwe(profile.userinfo_token, jwk)

//Validate SIN and UID to ensure they are not null and are alphanumeric
const sinRegex = /^[a-zA-Z0-9]+$/
if (profile.sin === null || !sinRegex.test(profile.sin)) {
logger.error('SIN is not valid')
} else if (profile.uid === null || !sinRegex.test(profile.uid)) {
logger.error('UID is not valid')
}

//Make call to msca-ng API to create user if it doesn't exist
axios
.post(
Expand Down