feat: Discord OAuth и платформонезависимый Web Dashboard (issue #34) #91

Closed

Toutsu wants to merge 0 commits from feature/issue-34-discord-oauth-dashboard into main

pull from: feature/issue-34-discord-oauth-dashboard

merge into: Toutsu:main

Toutsu:main

Toutsu:feature/telegram-game-card-fields

Toutsu:feature/issue-136-wizard-format-location

Toutsu:fix/issue-135-wizard-publish-schedule

Toutsu:fix/issue-133-on-conflict-inference

Toutsu:fix/issue-130-no-limit-complete

Toutsu:fix/issue-129-libgssapi

Toutsu:fix/issue-127-wizard-capacity-club

Toutsu:fix/issue-125-test-cleanup

Toutsu:fix/issue-123-no-limit-wizard

Toutsu:feat/issue-112-wizard-refactor

Toutsu:feat/issue-111-game-creation-wizard

Toutsu:fix/issue-110-showcase-500

Toutsu:feat/issue-110-private-club-showcases

Toutsu:codex/feature-issue-108-portfolio

Toutsu:feat/profile-design-system

Toutsu:codex/fix-public-pages-500

Toutsu:feature/issue-40-master-profiles

Toutsu:feature/issue-39-game-catalog

Toutsu:codex/feature/issue-38-public-club-pages

Toutsu:refactor/issue-37-platform-neutral-handlers

Toutsu:codex/fix-template-topic-release

Toutsu:refactor/issue-36-platform-migration

Toutsu:fix/discord-nullable-telegram-columns

Toutsu:fix/discord-dapper-aot-missing

Toutsu:fix/discord-console-logging-deferred

Toutsu:fix/discord-guildinteractionuser-permissions

Toutsu:fix/discord-count-bigint-cast

Toutsu:fix/discord-slash-commands-guild-context

Toutsu:fix/discord-slash-command-registration

Toutsu:feature/issue-35-identity-linking

Toutsu:fix/discord-oauth-diagnostics

Toutsu:test/issue-33-regression-tests

Toutsu:chore/issue-32-discord-compose-wiring

Toutsu:codex/issue-31-platform-messenger-scheduler

Toutsu:feature/discord-reschedule-voting

Toutsu:codex/feature-issue-29-discord-join-leave

Toutsu:feature/issue-28-discord-newsession-listsessions

Toutsu:feature/issue-27-discord-session-batch-renderer

Toutsu:feature/issue-26-discord-netcord-gateway

Toutsu:codex/refactor-issue-25-platform-neutral-join-leave

Toutsu:feature/dashboard-design-refresh

Toutsu:feature/issue-58-health-checks

Toutsu:feature/issue-23-platform-identity

Toutsu:fix/issue-60-add-license

Toutsu:feature/issue-57-postgresql-backup

Toutsu:feature/trivy-security-scan

Toutsu:codex/feature/issue-21-telegram-topics

Toutsu:feature/issue-20-rsvp-reminders

Toutsu:feature/issue-15-session-audit-log

Toutsu:feature/issue-19-batch-join-link

Toutsu:fix/navmenu-mobile-overlap

Toutsu:feature/new-logo

Toutsu:issue-47-navmenu-icon-fix

Toutsu:issue-15-session-audit-log

Toutsu:issue-14-attendance-stats

Toutsu:issue-22-neutral-rendering

Toutsu:codex/ftest-telegram-landing-smoke

Toutsu:feat/player-list-kick-waitlist

Toutsu:codex/co-gm-delegation

Conversation 0 Commits - Files Changed -

Toutsu commented 2026-05-25 11:49:10 +03:00

Owner

Copy Link

Copy Source

Summary

Реализует Discord OAuth 2.0 login flow для Web Dashboard (issue #34) и рефакторит слой авторизации на платформонезависимую модель. Discord- и Telegram-аккаунты полностью разделены — никакой связи между ними.

Changes

• Добавлен Discord OAuth Authorization Code Flow (identify + guilds scopes)
• Платформонезависимая идентификация через (platform, external_user_id) вместо long telegram_id
• Cookie Authentication с ClaimsPrincipal: Platform, DiscordId/TelegramId, AvatarUrl
• Все Razor Pages переведены на *ForCurrentUserAsync API
• Backward-compatible constructors для WebGameGroup и WebGroupManager
• Тесты: DiscordAuthServiceTests, PlatformIdentityTests, обновлённые AuthorizedSessionServiceTests

Test plan

• dotnet build проходит
• Все 265 тестов проходят (dotnet test)
• Версия синхронизирована → 2.8.0

Workflow

• CI passes
• Code review approved
• Deployed
• Release published

## Summary Реализует Discord OAuth 2.0 login flow для Web Dashboard (issue #34) и рефакторит слой авторизации на платформонезависимую модель. Discord- и Telegram-аккаунты полностью разделены — никакой связи между ними. ## Changes - Добавлен Discord OAuth Authorization Code Flow (`identify` + `guilds` scopes) - Платформонезависимая идентификация через `(platform, external_user_id)` вместо `long telegram_id` - Cookie Authentication с ClaimsPrincipal: `Platform`, `DiscordId`/`TelegramId`, `AvatarUrl` - Все Razor Pages переведены на `*ForCurrentUserAsync` API - Backward-compatible constructors для `WebGameGroup` и `WebGroupManager` - Тесты: `DiscordAuthServiceTests`, `PlatformIdentityTests`, обновлённые `AuthorizedSessionServiceTests` ## Test plan - [x] `dotnet build` проходит - [x] Все 265 тестов проходят (`dotnet test`) - [x] Версия синхронизирована → 2.8.0 ## Workflow - [ ] CI passes - [ ] Code review approved - [ ] Deployed - [ ] Release published

Toutsu added 6 commits 2026-05-25 11:49:10 +03:00

feat(web): add Discord OAuth service and authorization endpoints ... bfed400b4d

- DiscordOAuthOptions for client_id, secret, redirect_uri
- DiscordAuthService exchanges code for token and fetches user profile
- /auth/discord and /auth/discord/callback endpoints
- CreateDiscordPrincipal for cookie auth claims
- Telegram principal now includes Platform claim for forward compatibility

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

feat(web): add platform-agnostic identity extraction from ClaimsPrincipal ... 543fc42a6d

- TryGetPlatformIdentity returns (platform, external_user_id)
- TryGetDiscordId for Discord-specific flows
- Backward-compatible fallback for legacy Telegram auth without Platform claim
- GetAvatarUrl helper for Discord avatars

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

feat(web): refactor SessionStore and AuthorizedSessionService to platform-agnostic identity ... 9d4256353d

- ISessionStore: all methods use (platform, external_user_id)
- SessionService: updated SQL queries and added UpsertDiscordUserAsync
- AuthorizedSessionService: resolves identity from HttpContext, no longer accepts telegram_id params
- SessionAccessDeniedException now accepts string externalUserId
- Added ExternalUserId/ExternalUsername to WebGroupManager and WebParticipant

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

feat(web): add Discord login button, platform indicator, and CSS styles ... 976e204102

- Discord login button on /login with brand colors
- NavMenu shows user avatar (Discord) and platform label
- CSS: login-divider, login-btn-discord, nav-user-info, nav-user-platform
- NavMenu version bumped to v2.8.0

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

test(web): add Discord auth and platform identity tests ... 5fa7e26f72

- DiscordAuthServiceTests: authorize URL, token exchange, profile fetch
- PlatformIdentityTests: Telegram fallback, Discord identity, avatar URL

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

feat(web): finalize Discord OAuth and platform-agnostic auth ... 50f5307aac

- Bump version to 2.8.0 across all versioned files
- Fix AuthorizedSessionServiceTests for platform-agnostic identity
- Update Razor Pages to use *ForCurrentUserAsync APIs
- Add backward-compatible constructors to WebGameGroup/WebGroupManager
- Make DiscordOAuthOptions properties non-required for config binding

Bump version → 2.8.0

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

Toutsu added 1 commit 2026-05-25 12:08:36 +03:00

fix(web): address PR review critical issues for Discord OAuth ... 66dc53f12f

- Add V019 migration: rename session_audit_log.actor_telegram_id → actor_external_user_id
- Add CSRF protection to Discord OAuth flow (state cookie with HttpOnly/Secure/Strict)
- Add Discord OAuth env vars to compose.yaml, deploy.yml, and .env.example
- Fix SQL COALESCE for nullable telegram_id in GetGroupManagersAsync and GetSessionParticipantsAsync

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

Toutsu referenced this issue from a commit 2026-05-25 12:15:19 +03:00

Merge pull request #91: feat: Discord OAuth и платформонезависимый Web Dashboard (issue #34)

Toutsu referenced this pull request 2026-05-25 12:22:35 +03:00

feat: добавить Discord OAuth и доступ Discord owner/co-GM в Web Dashboard #34

Toutsu closed this pull request 2026-05-25 13:31:38 +03:00

Some checks are pending

Hide all checks

PR Checks / test-and-build (pull_request) Successful in 6m6s

Details

Pull request closed

Please reopen this pull request to perform a merge.

Sign in to join this conversation.

Reviewers

No Reviewers

Labels

Clear labels

area:bot

Telegram bot and worker logic

area:data

Database schema, migrations and persistence model

area:discord

Discord bot service and Discord adapter

area:infra

Infrastructure, runtime and deployment

area:miniapp

Telegram Mini App dashboard

area:platform

Platform-neutral abstractions and adapter boundaries

area:shared

Shared domain and rendering contracts

area:web

Blazor web dashboard

in-progress

В работе (issue взят агентом)

next-up

Recommended immediate backlog

pending-approval

Ждёт согласования плана решения

platform:discord

Discord-specific behavior or adapter work

platform:multi

Cross-platform or platform-neutral work

platform:telegram

Telegram-specific behavior or adapter work

priority:p0

Critical priority

priority:p0

Блокирующий приоритет: задача должна быть выполнена до признания решения production-ready

priority:p1

High priority

priority:p2

Medium priority

priority:p3

Lower priority

security

Security-sensitive work

type:bug

Bug fix or corrective work

type:chore

Maintenance and supporting work

type:feature

New product functionality

type:refactor

Structural change without direct feature growth

type:test

Testing and coverage work

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

Toutsu

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: Toutsu/GmRelayBot#91