Skip to content

feat: Support Qv2 CLI social login #3060

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 30 commits into
base: qv2
Choose a base branch
from
Open

feat: Support Qv2 CLI social login #3060

wants to merge 30 commits into from
+1,380 −206

Conversation

@evanliu048
Copy link
Contributor

@evanliu048 evanliu048 commented Sep 30, 2025
edited
Loading

Issue #, if available:

Description of changes:
Integrates with unified authentication portal supporting Google, GitHub, BuilderID, AWS IdC, and Internal auth methods.

Local environments: Browser-based OAuth flow via unified portal
Remote environments: Existing device flow (BuilderID/IdC(Internal))

User Experience
Local:
q login

  1. User selects a login option (Google / GitHub / IdC / BuilderID) in auth portal.
  2. Browser opens the provider’s consent page.
  3. On success or cancel, the user is redirected to a local callback that:
  • Social: Validates state and exchanges the code for a bearer token.
  • SSO: Registers the client and creates a token.
  1. The callback serves an index.html page with a friendly success or denial message.
  2. The CLI stores the tokens and (if available) the profile ARN.

Remote:
q login (--use-decivce-code)
existing auth flow, prompted user that social login is not supported here

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

@evanliu048 evanliu048 marked this pull request as draft September 30, 2025 22:06
@evanliu048 evanliu048 marked this pull request as ready for review October 3, 2025 20:33
@kensave kensave changed the title feat: Support Kiro CLI social login feat: Support Qv2 CLI social login Oct 3, 2025
kensave
kensave reviewed Oct 6, 2025
View reviewed changes
crates/chat-cli/src/auth/mod.rs
IdentityFuture::new_boxed(Box::pin(async {
let database = Database::new().await?;

if let Ok(Some(token)) = builder_id::BuilderIdToken::load(&database).await {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why do we need to check both all times?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The UnifiedBearerResolver needs to support two login paths — Builder ID and Social.
A user may complete login through either method. Therefore, during the resolution phase, we need attempt both methods

evanliu048 and others added 2 commits October 6, 2025 13:51
@evanliu048
Merge branch 'qv2' into social_login
ac1d692
@kensave @kennvene-aws
feat: Adds continuation id logic (#3114)
13feeaa 
* feat: New continuation id logic

* chore: Centralize metadata

* chore: Moves struct to right place

---------

Co-authored-by: Kenneth S. <[email protected]>
dingfeli
dingfeli reviewed Oct 15, 2025
View reviewed changes
@evanliu048 evanliu048 marked this pull request as draft October 16, 2025 00:46
@evanliu048 evanliu048 marked this pull request as ready for review October 24, 2025 04:40
@evanliu048 evanliu048 mentioned this pull request Oct 24, 2025
Open
@kkashilk kkashilk force-pushed the qv2 branch 2 times, most recently from 83daff1 to de21929 Compare October 25, 2025 05:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dingfeli dingfeli dingfeli left review comments

@kensave kensave kensave approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@evanliu048 @kensave @dingfeli @zixlin7