Skip to content

karma/hyper 139 choosing handle on sign up #12

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
Kzoeps wants to merge 5 commits into from
Closed

karma/hyper 139 choosing handle on sign up #12

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
7f01e17
feat: extend HMAC callback signing to include optional handle
Kzoeps Mar 12, 2026
f07a69b
feat: add handle selection step to new user signup flow
Kzoeps Mar 12, 2026
f0752ad
test: add handle selection flow tests
Kzoeps Mar 12, 2026
57e48b7
fix: handle selection review fixes
Kzoeps Mar 12, 2026
3aa74cf
add pinger to fix session expired issue
Kzoeps Mar 12, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
210 changes: 209 additions & 1 deletion .beads/issues.jsonl
View file
Open in desktop

Large diffs are not rendered by default.

139 changes: 139 additions & 0 deletions packages/auth-service/src/__tests__/choose-handle.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,139 @@
/**
* Unit tests for the handle selection flow.
*
* Tests the exported HANDLE_REGEX and RESERVED_HANDLES constants from
* choose-handle.ts, covering format validation edge cases and the reserved
* handle blocklist.
*/
import { describe, it, expect } from 'vitest'
import { HANDLE_REGEX, RESERVED_HANDLES } from '../routes/choose-handle.js'

describe('HANDLE_REGEX — valid handles', () => {
it('accepts a simple lowercase word', () => {
expect(HANDLE_REGEX.test('alice')).toBe(true)
})

it('accepts a handle with a hyphen in the middle', () => {
expect(HANDLE_REGEX.test('my-handle')).toBe(true)
})

it('accepts a handle with digits', () => {
expect(HANDLE_REGEX.test('a1b')).toBe(true)
})

it('accepts a 3-character handle', () => {
expect(HANDLE_REGEX.test('abc')).toBe(true)
})

it('accepts a 20-character handle (max length)', () => {
expect(HANDLE_REGEX.test('a'.repeat(20))).toBe(true)
})

it('accepts alphanumeric mix', () => {
expect(HANDLE_REGEX.test('user123')).toBe(true)
})

it('accepts handle with multiple hyphens', () => {
expect(HANDLE_REGEX.test('my-cool-handle')).toBe(true)
})
})

describe('HANDLE_REGEX — invalid handles', () => {
it('rejects a single character (too short)', () => {
expect(HANDLE_REGEX.test('a')).toBe(false)
})

it('rejects two characters (too short)', () => {
expect(HANDLE_REGEX.test('ab')).toBe(false)
})

it('rejects a handle starting with a hyphen', () => {
expect(HANDLE_REGEX.test('-abc')).toBe(false)
})

it('rejects a handle ending with a hyphen', () => {
expect(HANDLE_REGEX.test('abc-')).toBe(false)
})

it('rejects uppercase letters', () => {
expect(HANDLE_REGEX.test('ABC')).toBe(false)
})

it('rejects mixed case', () => {
expect(HANDLE_REGEX.test('Alice')).toBe(false)
})

it('rejects a handle with a space', () => {
expect(HANDLE_REGEX.test('a b')).toBe(false)
})

it('rejects an empty string', () => {
expect(HANDLE_REGEX.test('')).toBe(false)
})

it('rejects a 21-character handle (too long)', () => {
expect(HANDLE_REGEX.test('a'.repeat(21))).toBe(false)
})

it('rejects a handle with special characters', () => {
expect(HANDLE_REGEX.test('abc!')).toBe(false)
})

it('rejects a handle with dots', () => {
expect(HANDLE_REGEX.test('my.handle')).toBe(false)
})

it('rejects a handle with underscores', () => {
expect(HANDLE_REGEX.test('my_handle')).toBe(false)
})
})

describe('RESERVED_HANDLES — blocklist', () => {
it('includes "admin"', () => {
expect(RESERVED_HANDLES.has('admin')).toBe(true)
})

it('includes "root"', () => {
expect(RESERVED_HANDLES.has('root')).toBe(true)
})

it('includes "support"', () => {
expect(RESERVED_HANDLES.has('support')).toBe(true)
})

it('includes "help"', () => {
expect(RESERVED_HANDLES.has('help')).toBe(true)
})

it('includes "abuse"', () => {
expect(RESERVED_HANDLES.has('abuse')).toBe(true)
})

it('includes "system"', () => {
expect(RESERVED_HANDLES.has('system')).toBe(true)
})

it('includes "moderator"', () => {
expect(RESERVED_HANDLES.has('moderator')).toBe(true)
})

it('includes "api"', () => {
expect(RESERVED_HANDLES.has('api')).toBe(true)
})

it('includes "auth"', () => {
expect(RESERVED_HANDLES.has('auth')).toBe(true)
})

it('includes "security"', () => {
expect(RESERVED_HANDLES.has('security')).toBe(true)
})

it('does not block a normal user handle', () => {
expect(RESERVED_HANDLES.has('alice')).toBe(false)
})

it('does not block a handle with digits', () => {
expect(RESERVED_HANDLES.has('user123')).toBe(false)
})
})
2 changes: 2 additions & 0 deletions packages/auth-service/src/index.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,7 @@ import { createRecoveryRouter } from './routes/recovery.js'
import { createAccountLoginRouter } from './routes/account-login.js'
import { createAccountSettingsRouter } from './routes/account-settings.js'
import { createCompleteRouter } from './routes/complete.js'
import { createChooseHandleRouter } from './routes/choose-handle.js'

const logger = createLogger('auth-service')

Expand Down Expand Up @@ -77,6 +78,7 @@ export function createAuthService(config: AuthServiceConfig): {
app.use(createAccountLoginRouter(betterAuthInstance))
app.use(createAccountSettingsRouter(ctx, betterAuthInstance))
app.use(createCompleteRouter(ctx, betterAuthInstance))
app.use(createChooseHandleRouter(ctx, betterAuthInstance))

// Metrics endpoint (protect with admin auth in production)
app.get('/metrics', (req, res) => {
Expand Down
Loading
Loading