[client/ui-wails] Wire up the SSO login flow end-to-end

Mirror the Fyne client's login path: the daemon Login RPC now defaults ProfileName/Username from GetActiveProfile + the OS user and sets IsUnixDesktopClient on Linux/FreeBSD so the daemon picks the SSO browser flow. A new OpenURL service launches the user's default browser via xdg-open / open / rundll32 (Fyne's openURL helper) — the embedded WebKit's window.open silently fails for external URLs. The frontend gains a Login page that drives the full Login → window.open via OpenURL → WaitSSOLogin → Up sequence with progress states. Status surfaces a Login button while the daemon reports NeedsLogin/SessionExpired, and the tray's status row stops being a purely-decorative label: it becomes a clickable Login entry whenever re-authentication is required. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-17 22:29:54 +00:00 · 2026-05-06 17:48:47 +02:00
parent 91c745e5e8
commit bb2bf673a0
7 changed files with 213 additions and 15 deletions
--- a/client/ui-wails/tray.go
+++ b/client/ui-wails/tray.go
@@ -75,6 +75,10 @@ const (
 	// Daemon status string for an SSO session that has expired and needs
 	// re-authentication. Mirrors internal.StatusSessionExpired.
 	statusSessionExpired = "SessionExpired"
+	// statusNeedsLogin is what the daemon publishes before the user has
+	// completed an SSO authentication on this profile. Mirrors
+	// internal.StatusNeedsLogin.
+	statusNeedsLogin = "NeedsLogin"

 	// External URLs.
 	urlGitHubRepo     = "https://github.com/netbirdio/netbird"
@@ -182,7 +186,13 @@ func (t *Tray) ShowWindow() {
 func (t *Tray) buildMenu() *application.Menu {
 	menu := application.NewMenu()

-	t.statusItem = menu.Add(menuStatusDisconnected).SetEnabled(false)
+	// statusItem doubles as the "Login" entry once the daemon reports
+	// NeedsLogin/SessionExpired — applyStatus toggles its enabled state and
+	// label. The click handler is harmless while disabled, so we wire it
+	// up unconditionally rather than swapping items at runtime.
+	t.statusItem = menu.Add(menuStatusDisconnected).
+		OnClick(func(*application.Context) { t.openRoute("/login") }).
+		SetEnabled(false)

 	menu.AddSeparator()
 	// On Linux the tray icon's left-click handler is intentionally unbound
@@ -447,11 +457,16 @@ func (t *Tray) applyStatus(st services.Status) {

 	if iconChanged {
 		t.applyIcon()
+		needsLogin := strings.EqualFold(st.Status, statusNeedsLogin) ||
+			strings.EqualFold(st.Status, statusSessionExpired)
 		if t.statusItem != nil {
+			// When the daemon needs re-authentication the status row turns
+			// into the actionable Login entry — Connect would only fail.
 			t.statusItem.SetLabel(st.Status)
+			t.statusItem.SetEnabled(needsLogin)
 		}
 		if t.upItem != nil {
-			t.upItem.SetEnabled(!connected)
+			t.upItem.SetEnabled(!connected && !needsLogin)
 		}
 		if t.downItem != nil {
 			t.downItem.SetEnabled(connected)