feat: OAuth adapter interface

* feat: implement SSO authentication with OAuth2 support

* fix: update OAuth documentation and plugin configuration

* fix: update OAuth documentation and plugin configuration

* fix: replace SSO auth plugin with OAuth plugin

* fix: remove OAuth callback route and component

Author: SerVitasik

adapters/install-adapters.sh

@@ -1,4 +1,4 @@
-ADAPTERS="adminforth-completion-adapter-open-ai-chat-gpt adminforth-email-adapter-aws-ses"
+ADAPTERS="adminforth-completion-adapter-open-ai-chat-gpt adminforth-email-adapter-aws-ses adminforth-google-oauth-adapter adminforth-github-oauth-adapter"
 
 # for each plugin
 for adapter in $ADAPTERS; do

adminforth/documentation/docs/tutorial/05-Plugins/11-oauth.md

@@ -0,0 +1,92 @@
+# OAuth Authentication
+
+The OAuth plugin enables OAuth2-based authentication in AdminForth, allowing users to sign in using their Google, GitHub, or other OAuth2 provider accounts.
+
+## Installation
+
+To install the plugin:
+
+```bash
+npm install @adminforth/oauth --save
+npm install @adminforth/google-oauth-adapter --save  # for Google OAuth
+```
+
+## Configuration
+
+### 1. OAuth Provider Setup
+
+You need to get the client ID and client secret from your OAuth2 provider.
+
+For Google:
+1. Go to the [Google Cloud Console](https://console.cloud.google.com)
+2. Create a new project or select an existing one
+3. Go to "APIs & Services" → "Credentials"
+4. Create credentials for OAuth 2.0 client IDs
+5. Select application type: "Web application"
+6. Add your application's name and redirect URI
+7. Set the redirect URI to `http://your-domain/oauth/callback`
+8. Add the credentials to your `.env` file:
+
+```bash
+GOOGLE_CLIENT_ID=your_google_client_id
+GOOGLE_CLIENT_SECRET=your_google_client_secret
+```
+
+### 2. Plugin Configuration
+
+Configure the plugin in your user resource file:
+
+```typescript title="./resources/adminuser.ts"
+import OAuth2Plugin from '@adminforth/oauth';
+import AdminForthAdapterGoogleOauth2 from '@adminforth/google-oauth-adapter';
+
+// ... existing resource configuration ...
+
+plugins: [
+  new OAuth2Plugin({
+    adapters: [
+      new AdminForthAdapterGoogleOauth2({
+        clientID: process.env.GOOGLE_CLIENT_ID,
+        clientSecret: process.env.GOOGLE_CLIENT_SECRET,
+        redirectUri: 'http://localhost:3000/oauth/callback',
+      }),
+    ],
+    emailField: 'email',  // Required: field that stores the user's email
+    emailConfirmedField: 'email_confirmed'  // Optional: field to track email verification
+  }),
+]
+```
+
+### 3. Email Confirmation
+
+The plugin supports automatic email confirmation for OAuth users. To enable this:
+
+1. Add the `email_confirmed` field to your database schema:
+
+```prisma title='./schema.prisma'
+model adminuser {
+  // ... existing fields ...
+  email_confirmed Boolean @default(false)
+}
+```
+
+2. Run the migration:
+
+```bash
+npx prisma migrate dev --name add-email-confirmed-to-adminuser
+```
+
+3. Configure the plugin with `emailConfirmedField`:
+
+```typescript title="./resources/adminuser.ts"
+new OAuth2Plugin({
+  // ... adapters configuration ...
+  emailField: 'email',
+  emailConfirmedField: 'email_confirmed'  // Enable email confirmation tracking
+}),
+```
+
+When using OAuth:
+- New users will have their email automatically confirmed (`email_confirmed = true`)
+- Existing users will have their email marked as confirmed upon successful OAuth login
+- The `email_confirmed` field must be a boolean type

adminforth/types/Adapters.ts

@@ -24,3 +24,9 @@ export interface CompletionAdapter {
     error?: string;
   }>;
 }
+
+export interface OAuth2Adapter {
+  getAuthUrl(): string;
+  getTokenFromCode(code: string): Promise<{ email: string }>;
+  getIcon(): string;
+}

dev-demo/custom/ApartsPie.vue

@@ -0,0 +1,49 @@
+<template>
+    <div class="max-w-sm w-full bg-white rounded-lg shadow dark:bg-gray-800 p-4 md:p-4 mb-5">
+        <PieChart
+            :data="data"
+            :options="{
+                chart: {
+                height: 250,
+                },
+                dataLabels: {
+                enabled: true,
+                },
+                plotOptions: {
+                pie: {
+                    dataLabels: {
+                    offset: -10, 
+                    minAngleToShowLabel: 10, 
+                    },
+                    expandOnClick: true,
+                },
+                },
+            }"
+        />
+    </div>
+  </template>
+  
+  <script setup lang="ts">
+  import { onMounted, ref, Ref } from 'vue';
+  import { PieChart } from '@/afcl';
+  import { callApi } from '@/utils';
+  import adminforth from '@/adminforth';
+  
+  
+  const data: Ref<any[]> = ref([]);
+  
+  
+  onMounted(async () => {
+    try {
+      data.value = await callApi({path: '/api/aparts-by-room-percentages', method: 'GET'});
+    } catch (error) {
+      adminforth.alert({
+        message: `Error fetching data: ${error.message}`,
+        variant: 'danger',
+        timeout: 'unlimited'
+      });
+      return;
+    }
+  })
+  
+  </script>

dev-demo/index.ts

@@ -426,6 +426,35 @@ app.get(`${ADMIN_BASE_URL}/api/dashboard/`,
   )
 );
 
+app.get(`${ADMIN_BASE_URL}/api/aparts-by-room-percentages/`,
+  admin.express.authorize(
+    async (req, res) => {
+      const roomPercentages = await admin.resource('aparts').dataConnector.db.prepare(
+        `SELECT 
+          number_of_rooms, 
+          COUNT(*) as count 
+        FROM apartments 
+        GROUP BY number_of_rooms
+        ORDER BY number_of_rooms;
+        `
+      ).all()
+      
+
+      const totalAparts = roomPercentages.reduce((acc, { count }) => acc + count, 0);
+
+      res.json(
+        roomPercentages.map(
+          ({ number_of_rooms, count }) => ({
+            amount: Math.round(count / totalAparts * 100),
+            label: `${number_of_rooms} rooms`,
+          })
+        )
+      );
+    }
+  )
+);
+
+
 // serve after you added all api
 admin.express.serve(app)
 admin.discoverDatabases().then(async () => {

dev-demo/migrations/20250214093026_add_email_confirmed/migration.sql

@@ -0,0 +1,21 @@
+-- AlterTable
+ALTER TABLE "users" ADD COLUMN "email_verified" BOOLEAN DEFAULT false;
+
+-- CreateTable
+CREATE TABLE "apartment_buyers" (
+    "id" TEXT NOT NULL PRIMARY KEY,
+    "created_at" DATETIME NOT NULL,
+    "name" TEXT NOT NULL,
+    "age" INTEGER,
+    "gender" TEXT,
+    "info" TEXT,
+    "contact_info" TEXT,
+    "language" TEXT,
+    "ideal_price" DECIMAL,
+    "ideal_space" REAL,
+    "ideal_subway_distance" REAL,
+    "contacted" BOOLEAN NOT NULL DEFAULT false,
+    "contact_date" DATETIME,
+    "contact_time" DATETIME,
+    "realtor_id" TEXT
+);

dev-demo/resources/apartment_buyers.ts

@@ -7,7 +7,7 @@ import AdminForth, {
   AdminUser,
 } from "../../adminforth";
 import { v1 as uuid } from "uuid";
-import RichEditorPlugin from "../../plugins/adminforth-rich-editor";
+// import RichEditorPlugin from "../../plugins/adminforth-rich-editor";
 
 export default {
   dataSource: 'mysql',
@@ -148,9 +148,9 @@ export default {
     },
   ],
   plugins: [
-    new RichEditorPlugin({
-      htmlFieldName: 'info',
-    }),
+    // new RichEditorPlugin({
+    //   htmlFieldName: 'info',
+    // }),
   ],
   options: {
     fieldGroups: [

dev-demo/resources/apartments.ts

@@ -319,29 +319,29 @@ export default {
     //     debounceTime: 250,
     //   }
     // }),
-    new RichEditorPlugin({
-      htmlFieldName: "description",
-      completion: {
-        adapter: new CompletionAdapterOpenAIChatGPT({
-          openAiApiKey: process.env.OPENAI_API_KEY as string,
-        }),
-        expert: {
-          debounceTime: 250,
-        },
-      },
-      // requires to have table 'description_images' with upload plugin installed on attachment field
+    // new RichEditorPlugin({
+    //   htmlFieldName: "description",
+    //   completion: {
+    //     adapter: new CompletionAdapterOpenAIChatGPT({
+    //       openAiApiKey: process.env.OPENAI_API_KEY as string,
+    //     }),
+    //     expert: {
+    //       debounceTime: 250,
+    //     },
+    //   },
+    //   // requires to have table 'description_images' with upload plugin installed on attachment field
 
-      ...(process.env.AWS_ACCESS_KEY_ID
-        ? {
-            attachments: {
-              attachmentResource: "description_images",
-              attachmentFieldName: "image_path",
-              attachmentRecordIdFieldName: "record_id",
-              attachmentResourceIdFieldName: "resource_id",
-            },
-          }
-        : {}),
-    }),
+    //   ...(process.env.AWS_ACCESS_KEY_ID
+    //     ? {
+    //         attachments: {
+    //           attachmentResource: "description_images",
+    //           attachmentFieldName: "image_path",
+    //           attachmentRecordIdFieldName: "record_id",
+    //           attachmentResourceIdFieldName: "resource_id",
+    //         },
+    //       }
+    //     : {}),
+    // }),
   ],
 
   options: {

dev-demo/resources/users.ts

@@ -11,7 +11,9 @@ import TwoFactorsAuthPlugin from "../../plugins/adminforth-two-factors-auth";
 import EmailResetPasswordPlugin from "../../plugins/adminforth-email-password-reset/index.js";
 import { v1 as uuid } from "uuid";
 import EmailAdapterAwsSes from "../../adapters/adminforth-email-adapter-aws-ses/index.js";
-
+import { OAuthPlugin } from "../../plugins/adminforth-oauth";
+import { AdminForthAdapterGoogleOauth2 } from "../../adapters/adminforth-google-oauth-adapter";
+import { AdminForthAdapterGithubOauth2 } from "../../adapters/adminforth-github-oauth-adapter";
 export default {
   dataSource: "maindb",
   table: "users",
@@ -83,6 +85,22 @@ export default {
       //   }),
       // },
     }),
+    new OAuthPlugin({
+      adapters: [
+        new AdminForthAdapterGithubOauth2({
+          clientID: process.env.GITHUB_CLIENT_ID,
+          clientSecret: process.env.GITHUB_CLIENT_SECRET,
+          redirectUri: 'http://localhost:3000/oauth/callback',
+        }),
+        new AdminForthAdapterGoogleOauth2({
+          clientID: process.env.GOOGLE_CLIENT_ID,
+          clientSecret: process.env.GOOGLE_CLIENT_SECRET,
+          redirectUri: 'http://localhost:3000/oauth/callback',
+        })
+      ],
+      emailField: 'email',
+      emailConfirmedField: 'email_confirmed'
+    }),
   ],
   options: {
     allowedActions: {
@@ -132,6 +150,16 @@ export default {
       showIn: [],
       backendOnly: true, // will never go to frontend
     },
+    {
+      name: 'email_confirmed',
+      type: AdminForthDataTypes.BOOLEAN,
+      showIn: {
+        list: true,
+        show: true,
+        edit: false,
+        create: false
+      }
+    },
     {
       name: "role",
       enum: [

dev-demo/schema.prisma

@@ -17,6 +17,7 @@ model users {
     last_login_ip   String?
     email_confirmed Boolean? @default(false)
     parentUserId    String?
+    email_verified  Boolean? @default(false)
 }
 
 model apartments {
@@ -100,7 +101,7 @@ model apartment_buyers {
     ideal_space             Float?
     ideal_subway_distance   Float?
     contacted               Boolean @default(false)
-    contact_date            Date?
-    contact_time            Time?
+    contact_date            DateTime?
+    contact_time            DateTime?
     realtor_id              String?
 }