SigNoz/signoz

[authn] handle invalid invitation token gracefully in signup page

Open

#7011 opened on Feb 3, 2025

View on GitHub
 (7 comments) (0 reactions) (2 assignees)TypeScript (16,037 stars) (976 forks)batch import
authenticationfrontendgood first issue

Description

Bug Description

In case of invalid/used/expired invitation tokens, we still show the Sign Up page which is an invalid state to be at.

As the outcome after filling the sign up page would be this:

Expected Behaviour

Ideally, we should redirect the users to the Login Page where we should display the error message: "invalid/used/expired invitation token. Please contact your admin."

How to Reproduce

  1. Create a user invitation
  2. Use the invitation once, log out, and use the same link again
  3. Or update the invitation token from the URL to something else

Version Information

  • Signoz version: latest
  • Browser version: NA
  • Your OS and version: NA
  • Your CPU Architecture(ARM/Intel): NA

Additional Context

NA

Contributor guide

Tech stack
typescriptreact
Domain
frontendauthentication
Issue type
bug
DifficultyEstimated implementation difficulty for a new contributor, from 1 for very small changes to 5 for expert-level work.
3
Estimated timeA rough time range for an experienced contributor to investigate, implement, test, and prepare a pull request.
half day
Activity statusHow available the issue appears right now: fresh, active, stale, blocked, or waiting on maintainer input.
blocked
ClarityHow clearly the issue explains the expected change, acceptance criteria, and next step.
clear
Prerequisites
React knowledgeAuth flow understandingFrontend routing
Newbie friendlinessA 1-100 score estimating how approachable this issue is for first-time contributors.
55
Research direction
Investigate the signup page component (likely in frontend/.../Signup.tsx) and the authentication service that handles invitation tokens. Review the existing comments on this issue for any proposed solutions. Consider adding a redirect to the login page with an appropriate error message when the token is invalid.