feat: allow skip of success page for native apps (#5627)

add possibility to return to callback directly after login without rendering the successful login page
2025-08-12 01:37:31 +00:00 · 2023-04-11 17:07:32 +02:00
parent b3d8787921
commit 8bf36301ed
32 changed files with 641 additions and 390 deletions
--- a/internal/api/ui/login/login_success_handler.go
+++ b/internal/api/ui/login/login_success_handler.go
@@ -1,6 +1,7 @@
 package login

 import (
+	"context"
 	"net/http"

 	"github.com/zitadel/zitadel/internal/domain"
@@ -44,26 +45,31 @@ func (l *Login) renderSuccessAndCallback(w http.ResponseWriter, r *http.Request,
 		userData: l.getUserData(r, authReq, "LoginSuccess.Title", "", errID, errMessage),
 	}
 	if authReq != nil {
-		//the id will be set via the html (maybe change this with the login refactoring)
-		if _, ok := authReq.Request.(*domain.AuthRequestOIDC); ok {
-			data.RedirectURI = l.oidcAuthCallbackURL(r.Context(), "")
-		} else if _, ok := authReq.Request.(*domain.AuthRequestSAML); ok {
-			data.RedirectURI = l.samlAuthCallbackURL(r.Context(), "")
+		data.RedirectURI, err = l.authRequestCallback(r.Context(), authReq)
+		if err != nil {
+			l.renderInternalError(w, r, authReq, err)
+			return
 		}
 	}
 	l.renderer.RenderTemplate(w, r, l.getTranslator(r.Context(), authReq), l.renderer.Templates[tmplLoginSuccess], data, nil)
 }

 func (l *Login) redirectToCallback(w http.ResponseWriter, r *http.Request, authReq *domain.AuthRequest) {
-	var callback string
-	switch authReq.Request.(type) {
-	case *domain.AuthRequestOIDC:
-		callback = l.oidcAuthCallbackURL(r.Context(), authReq.ID)
-	case *domain.AuthRequestSAML:
-		callback = l.samlAuthCallbackURL(r.Context(), authReq.ID)
-	default:
-		l.renderInternalError(w, r, authReq, caos_errs.ThrowInternal(nil, "LOGIN-rhjQF", "Errors.AuthRequest.RequestTypeNotSupported"))
+	callback, err := l.authRequestCallback(r.Context(), authReq)
+	if err != nil {
+		l.renderInternalError(w, r, authReq, err)
 		return
 	}
 	http.Redirect(w, r, callback, http.StatusFound)
 }
+
+func (l *Login) authRequestCallback(ctx context.Context, authReq *domain.AuthRequest) (string, error) {
+	switch authReq.Request.(type) {
+	case *domain.AuthRequestOIDC:
+		return l.oidcAuthCallbackURL(ctx, authReq.ID), nil
+	case *domain.AuthRequestSAML:
+		return l.samlAuthCallbackURL(ctx, authReq.ID), nil
+	default:
+		return "", caos_errs.ThrowInternal(nil, "LOGIN-rhjQF", "Errors.AuthRequest.RequestTypeNotSupported")
+	}
+}
--- a/internal/api/ui/login/static/resources/scripts/login_success.js
+++ b/internal/api/ui/login/static/resources/scripts/login_success.js
@@ -5,13 +5,6 @@ document.addEventListener('DOMContentLoaded', function () {
 function autoSubmit() {
    let form = document.getElementsByTagName('form')[0];
    if (form) {
-        let button = document.getElementById("redirect-button");
-        if (button) {
-            button.addEventListener("click", function (event) {
-                location.reload();
-                event.preventDefault();
-            });
-        }
        form.submit();
    }
 }
--- a/internal/api/ui/login/static/templates/login_success.html
+++ b/internal/api/ui/login/static/templates/login_success.html
@@ -29,4 +29,4 @@
 </div>
 {{end}}

-{{template "main-bottom" .}}
+{{template "main-bottom" .}}