Add support for multiple clients#201
Merged
Merged
Conversation
ketzusaka
force-pushed
the
support-multiple-apps
branch
4 times, most recently
from
d8529d8 to
90b43df
Compare
As part of Project Prism we are expanding the apps and will need them all to be able to add backup methods. This updates the backup service to respect the client name when determining the appropriate bundle identifiers for verification. I've added this header to all of the routes for completeness, but add_factor is the primary one we're interested in right now.
ketzusaka
force-pushed
the
support-multiple-apps
branch
from
90b43df to
375b6b0
Compare
ketzusaka
requested review from
aurel-fr,
murph,
paolodamico and
thomas-waite
as code owners
There was a problem hiding this comment.
Pull request overview
Updates the backup service’s OIDC token verification to support multiple client applications by selecting the expected Google/Apple audience based on an incoming client-name request header, and threads this through route handlers into the auth/verification layer.
Changes:
- Add
client-name/client-versionheader constants and plumbclient-namethrough relevant routes intoAuthHandlerandOidcTokenVerifier. - Select Google/Apple OIDC client IDs dynamically based on
client-name, with unit tests covering the mapping logic. - Update
cargo-denyadvisory ignores and bumprustls-webpkiinCargo.lock(alongside existing0.101.7usage).
Reviewed changes
Copilot reviewed 15 out of 16 changed files in this pull request and generated 2 comments.
Show a summary per file
| File | Description |
|---|---|
| src/types/environment.rs | Adds client-name-based selection for Google/Apple OIDC client IDs and unit tests. |
| src/routes/verify_factor.rs | Extracts client-name/client-version via constants and forwards client-name into auth verification. |
| src/routes/sync_backup.rs | Extracts and forwards client-name into auth verification. |
| src/routes/retrieve_metadata.rs | Extracts and forwards client-name into auth verification. |
| src/routes/retrieve_from_challenge.rs | Extracts client-name/client-version via constants and forwards client-name into auth verification. |
| src/routes/delete_factor.rs | Extracts and forwards client-name into auth verification. |
| src/routes/delete_backup.rs | Extracts and forwards client-name into auth verification. |
| src/routes/create_backup.rs | Extracts and forwards client-name into factor registration validation. |
| src/routes/add_sync_factor.rs | Extracts and forwards client-name into factor registration validation. |
| src/routes/add_factor.rs | Extracts and forwards client-name into new-factor registration validation. |
| src/oidc_token_verifier.rs | Accepts client-name to choose expected audience during OIDC verification; refactors verifier creation. |
| src/lib.rs | Exposes new headers module. |
| src/headers.rs | Defines header-name constants for reuse across routes. |
| src/auth.rs | Threads client_name through auth verification and OIDC validation paths. |
| deny.toml | Adds additional ignored RUSTSEC advisories for rustls-webpki via upstream deps. |
| Cargo.lock | Updates rustls-webpki (0.103.10 → 0.103.13) while retaining 0.101.7 via rustls 0.21.x. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Google backup is okay. Just need android-id in here so apple backup can be implemented on android devices down the road
aurel-fr
reviewed
May 22, 2026
Comment on lines
+274
to
+275
| (Self::Staging, Some("ios-id")) => "org.world.staging.id", | ||
| (Self::Staging, Some("android-id")) => "org.world.id.staging", |
Contributor
There was a problem hiding this comment.
is it expected for the id to before and after staging?
Contributor
Author
There was a problem hiding this comment.
Yeah this was one oddity where each team used a different bundle id format :(
Contributor
|
@codex review |
There was a problem hiding this comment.
Pull request overview
Copilot reviewed 15 out of 16 changed files in this pull request and generated 12 comments.
Comments suppressed due to low confidence (1)
src/routes/delete_factor.rs:67
client_nameis borrowed fromheadersand then passed into an async call (auth_handler.verify(...).await). Borrowing fromHeaderMapacross await commonly fails to compile (self-referential future). Copy the header to an ownedStringfirst and passas_deref()/Option<String>onward.
let client_name = headers.get(&CLIENT_NAME).and_then(|v| v.to_str().ok());
// Step 1: Extract the factor IDs from the request
let factor_id = request.factor_id.clone();
let encryption_key = request.encryption_key.clone();
// Step 1.1 Validate there is no encryption key if deleting a `Sync` factor
if request.scope == FactorScope::Sync && encryption_key.is_some() {
|
Codex Review: Didn't find any major issues. Another round soon, please! ℹ️ About Codex in GitHubYour team has set up Codex to review pull requests in this repo. Reviews are triggered when you
If Codex has suggestions, it will comment; otherwise it will react with 👍. Codex can also answer questions or update the PR. Try commenting "@codex address that feedback". |
aurel-fr
approved these changes
May 23, 2026
thomas-waite
approved these changes
May 26, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
As part of Project Prism we are expanding the apps and will need them all to be able to add backup methods. This updates the backup service to respect the client name when determining the appropriate bundle identifiers for verification.
I've added this header to all of the routes for completeness, but add_factor is the primary one we're interested in right now.