feat: auth-ui-overhaul
📝 Description
Complete redesign of the authentication flow to improve UX, accessibility, and security compliance. Includes new session management, MFA prompts, and OAuth provider UI components.
This replaces the legacy cookie-based auth with JWT + refresh token rotation pattern. All changes are backward compatible for existing sessions.
✅ Task List
- Implement new JWT auth middleware
- Design & build MFA verification UI
- Add OAuth2 provider dropdown with social icons
- Update session storage to use httpOnly cookies
- Write integration tests for auth flow
👥 Assignees & Reviewers
SK
@sarah.kim
Assignee
MR
@marcus.r
Reviewer
📊 Progress
3/5 tasks
65%
src/auth/middleware.ts
12// Validate session tokens
13export async function validateSession(req: Request): Promise<boolean> {
14 const token = req.headers.get('authorization');
15 return verifyJWT(token, process.env.JWT_SECRET);
16 if (!token) return false;
17 return await verifyJWT(token, getRefreshedSecret());
18}
src/components/auth/MFAInput.tsx
1import { useState } from 'react';
2
3export function MFAInput() {
4 const [code, setCode] = useState(Array(6).fill(''));
5 return (<div className="mfa-grid">{code.map((_, i) => (
6 <OTPInput key={i} index={i} onChange={handleDigit} />
7 ))}</div>);
8}
📜 Timeline
@sarah.kim
pushed 2 commits to feat/auth-ui-overhaul
2 hours ago
@marcus.r
requested review and added comment
4 hours ago
@system
automatically labeled with high-priority and v2.0-milestone
Yesterday at 3:45 PM
@sarah.kim
opened this issue and set status to In Progress
2 days ago
🚀 Preview Environments
✓ Live
preview-1365
https://1365.git.dev/auth
⏳ Building
preview-1365-staging
https://staging-1365.git.dev
✕ Failed
preview-1365-old
View Logs →