allow wildcard emails in email whitelist

2026-02-14 08:56:39 +00:00 · 2025-01-26 18:12:30 -05:00
parent 9f1f2910e4
commit 61b34c8b16
4 changed files with 104 additions and 16 deletions
--- a/src/app/[orgId]/settings/resources/[resourceId]/authentication/page.tsx
+++ b/src/app/[orgId]/settings/resources/[resourceId]/authentication/page.tsx
@@ -48,6 +48,7 @@ import {
    SettingsSectionFooter
 } from "@app/components/Settings";
 import { SwitchInput } from "@app/components/SwitchInput";
+import { InfoPopup } from "@app/components/ui/info-popup";

 const UsersRolesFormSchema = z.object({
    roles: z.array(
@@ -665,10 +666,12 @@ export default function ResourceAuthenticationPage() {
                                            render={({ field }) => (
                                                <FormItem>
                                                    <FormLabel>
-                                                        Whitelisted Emails
+                                                        <InfoPopup
+                                                            text="Whitelisted Emails"
+                                                            info="Only users with these email addresses will be able to access this resource. They will be prompted to enter a one-time password sent to their email. Wildcards (*@example.com) can be used to allow any email address from a domain."
+                                                        />
                                                    </FormLabel>
                                                    <FormControl>
-                                                        {/* @ts-ignore */}
                                                        {/* @ts-ignore */}
                                                        <TagInput
                                                            {...field}
@@ -681,6 +684,17 @@ export default function ResourceAuthenticationPage() {
                                                                return z
                                                                    .string()
                                                                    .email()
+                                                                    .or(
+                                                                        z
+                                                                            .string()
+                                                                            .regex(
+                                                                                /^\*@[\w.-]+\.[a-zA-Z]{2,}$/,
+                                                                                {
+                                                                                    message:
+                                                                                        "Invalid email address. Wildcard (*) must be the entire local part."
+                                                                                }
+                                                                            )
+                                                                    )
                                                                    .safeParse(
                                                                        tag
                                                                    ).success;