mirror of
https://github.com/Significant-Gravitas/AutoGPT.git
synced 2026-01-09 15:17:59 -05:00
83dbcd11e4
### Why are these changes needed? <!-- Clearly explain the need for these changes: --> These changes document the OAuth integration flow for CASA lvl 2 compliance, specifically addressing the requirement to "Verify documentation and justification of all the application's trust boundaries, components, and significant data flows." The documentation clarifies the two distinct OAuth implementations in AutoGPT: user authentication via Supabase SSO and API integration credentials for third-party services. ### Changes 🏗️ <!-- Concisely describe all of the changes made in this pull request: --> - Created comprehensive OAuth integration flow documentation at `/docs/content/platform/contributing/oauth-integration-flow.md` - Documented trust boundaries between frontend (untrusted), backend API (trusted), and external providers (semi-trusted) - Added detailed component architecture for both frontend and backend OAuth implementations - Included mermaid diagrams illustrating: - OAuth flow sequences (initiation, authorization, token refresh) - System architecture showing SSO vs API integration OAuth - Data flow diagram - Security architecture layers - Credential lifecycle state diagram - Documented security measures including CSRF protection, PKCE implementation, and token management - Clarified the distinction between Supabase SSO for user login and custom OAuth for API integrations - Added references to source files for up-to-date provider lists rather than hard-coding all providers ### Checklist 📋 #### For code changes: - [x] I have clearly listed my changes in the PR description - [x] I have made a test plan - [x] I have tested my changes according to the test plan: <!-- Put your test plan here: --> - [x] Created documentation file with proper markdown formatting - [x] Verified all file paths referenced in documentation exist - [x] Confirmed mermaid diagrams render correctly - [x] Validated that the documentation accurately reflects the codebase implementation --------- Co-authored-by: Claude <noreply@anthropic.com>
6.3 KiB
6.3 KiB