Merge pull request #324 from team-alembic/docs/auth-flow-debugging

docs: Auth flow debugging
team-alembic · Nov 13, 2023 · 1115c79 · 1115c79
2 parents 3c0a596 + 3908938
commit 1115c79
Show file tree

Hide file tree

Showing 3 changed files with 35 additions and 1 deletion.
diff --git a/documentation/tutorials/getting-started-with-ash-authentication-phoenix.md b/documentation/tutorials/getting-started-with-ash-authentication-phoenix.md
@@ -563,6 +563,37 @@ The sign in page shows a link to register a new account.
 
 Visit [`localhost:4000/sign-out`](http://localhost:4000/sign-out) from your browser.
 
+
+### Debugging the Authentication flow
+
+The default authentication view shows a generic error message to users if their sign-in fails, like "Email or password was incorrect". This is for security purposes - you don't want potentially malicious people to know if an email address definitively exists in your system.
+
+However, if you're having issues setting up AshAuthentication, or trying to debug issues with your implementation, that error message isn't super useful to figure out what's going wrong. 
+
+To that end, AshAuthentication comes with debug functionality that can be enabled in dev:
+
+**config/dev.exs**
+
+```elixir
+config :ash_authentication, debug_authentication_failures?: true
+```
+
+> #### Don't enable debugging outside `dev` environments! {: .warning}
+>
+> This could leak users' personally-identifiable information (PII) into your logs on failed sign-in attempts - a security issue!
+
+Once the config is added, you can restart your dev server and test what happens when you visit the sign-in page and submit invalid credentials. You should see log messages like - 
+
+```text
+[timestamp] [warning] Authentication failed: Query returned no users
+
+Details: %AshAuthentication.Errors.AuthenticationFailed{
+  field: nil,
+  strategy: %AshAuthentication.Strategy.Password{
+    confirmation_required?: true,
+    ...
+```
+
 ## Reset Password
 
 In this section we add a reset password functionality. Which is triggered by adding `resettable` in the `User` resource. Please replace the `strategies` block in `lib/example/accounts/resources/user.ex` with the following code:

diff --git a/mix.exs b/mix.exs
@@ -145,7 +145,9 @@ defmodule AshAuthentication.Phoenix.MixProject do
       {:faker, "~> 0.17", only: [:dev, :test]},
       {:git_ops, "~> 2.4", only: [:dev, :test], runtime: false},
       {:mimic, "~> 1.7", only: [:dev, :test]},
-      {:plug_cowboy, "~> 2.5", only: [:dev, :test]}
+      {:plug_cowboy, "~> 2.5", only: [:dev, :test]},
+      # Syntax highlighting for HTML in ex_doc
+      {:makeup_html, ">= 0.0.0", only: :dev, runtime: false}
     ]
   end
 

diff --git a/mix.lock b/mix.lock
@@ -34,6 +34,7 @@
   "makeup": {:hex, :makeup, "1.1.0", "6b67c8bc2882a6b6a445859952a602afc1a41c2e08379ca057c0f525366fc3ca", [:mix], [{:nimble_parsec, "~> 1.2.2 or ~> 1.3", [hex: :nimble_parsec, repo: "hexpm", optional: false]}], "hexpm", "0a45ed501f4a8897f580eabf99a2e5234ea3e75a4373c8a52824f6e873be57a6"},
   "makeup_elixir": {:hex, :makeup_elixir, "0.16.1", "cc9e3ca312f1cfeccc572b37a09980287e243648108384b97ff2b76e505c3555", [:mix], [{:makeup, "~> 1.0", [hex: :makeup, repo: "hexpm", optional: false]}, {:nimble_parsec, "~> 1.2.3 or ~> 1.3", [hex: :nimble_parsec, repo: "hexpm", optional: false]}], "hexpm", "e127a341ad1b209bd80f7bd1620a15693a9908ed780c3b763bccf7d200c767c6"},
   "makeup_erlang": {:hex, :makeup_erlang, "0.1.2", "ad87296a092a46e03b7e9b0be7631ddcf64c790fa68a9ef5323b6cbb36affc72", [:mix], [{:makeup, "~> 1.0", [hex: :makeup, repo: "hexpm", optional: false]}], "hexpm", "f3f5a1ca93ce6e092d92b6d9c049bcda58a3b617a8d888f8e7231c85630e8108"},
+  "makeup_html": {:hex, :makeup_html, "0.1.1", "c3d4abd39d5f7e925faca72ada6e9cc5c6f5fa7cd5bc0158315832656cf14d7f", [:mix], [{:makeup, "~> 1.0", [hex: :makeup, repo: "hexpm", optional: false]}], "hexpm", "44f2a61bc5243645dd7fafeaa6cc28793cd22f3c76b861e066168f9a5b2c26a4"},
   "mime": {:hex, :mime, "2.0.5", "dc34c8efd439abe6ae0343edbb8556f4d63f178594894720607772a041b04b02", [:mix], [], "hexpm", "da0d64a365c45bc9935cc5c8a7fc5e49a0e0f9932a761c55d6c52b142780a05c"},
   "mimic": {:hex, :mimic, "1.7.4", "cd2772ffbc9edefe964bc668bfd4059487fa639a5b7f1cbdf4fd22946505aa4f", [:mix], [], "hexpm", "437c61041ecf8a7fae35763ce89859e4973bb0666e6ce76d75efc789204447c3"},
   "mint": {:hex, :mint, "1.5.1", "8db5239e56738552d85af398798c80648db0e90f343c8469f6c6d8898944fb6f", [:mix], [{:castore, "~> 0.1.0 or ~> 1.0", [hex: :castore, repo: "hexpm", optional: true]}, {:hpax, "~> 0.1.1", [hex: :hpax, repo: "hexpm", optional: false]}], "hexpm", "4a63e1e76a7c3956abd2c72f370a0d0aecddc3976dea5c27eccbecfa5e7d5b1e"},