Skip to content

chore: gussy the consent page a bit#2854

Open
qstearns wants to merge 2 commits into
mainfrom
gussy-login-challenge-more-QJVj
Open

chore: gussy the consent page a bit#2854
qstearns wants to merge 2 commits into
mainfrom
gussy-login-challenge-more-QJVj

Conversation

@qstearns
Copy link
Copy Markdown
Contributor

@qstearns qstearns commented May 15, 2026

this gussies the consent page a little further (namely by showing the users name instead of ID and setting more sensible rules for when to enable the continue button)

@changeset-bot
Copy link
Copy Markdown

changeset-bot Bot commented May 15, 2026
edited
Loading

⚠️ No Changeset found

Latest commit: f9e0690

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@qstearns qstearns marked this pull request as ready for review May 15, 2026 06:25
@qstearns qstearns requested a review from a team as a code owner May 15, 2026 06:25
@vercel
Copy link
Copy Markdown

vercel Bot commented May 15, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
gram-docs-redirect Ready Ready Preview, Comment May 15, 2026 10:13pm

Request Review

claude[bot]
claude Bot reviewed May 15, 2026
View reviewed changes
Copy link
Copy Markdown

@claude claude Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Claude Code Review

This repository is configured for manual code reviews. Comment @claude review to trigger a review and subscribe this PR to future pushes, or @claude review once for a one-time review.

Tip: disable this comment in your organization's Code Review settings.

chatgpt-codex-connector[bot]
chatgpt-codex-connector Bot reviewed May 15, 2026
View reviewed changes
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 9d3f5bc289

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Comment thread server/internal/mcp/consent_template.html Outdated
name="action"
value="approve"
class="btn btn-primary"
{{if not .ConsentEnabled}}disabled{{end}}
Copy link
Copy Markdown

@chatgpt-codex-connector chatgpt-codex-connector Bot May 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P1 Badge Enforce remote-connection gate in approve handler

Disabling the Give Access button in the template is only a client-side control; a user can still submit action=approve directly (e.g., via devtools or curl) while no required remote session is connected. handleConsentPost currently accepts approve without re-checking remote connection state, so this change can be bypassed and grants can still be minted for disconnected sessions. Add a server-side validation in the approve path that mirrors the .ConsentEnabled rule before issuing the grant.

Useful? React with 👍 / 👎.

@github-actions github-actions Bot added the preview Spawn a preview environment label May 15, 2026
@speakeasybot
Copy link
Copy Markdown
Collaborator

speakeasybot commented May 15, 2026
edited
Loading

🚀 Preview Environment (PR #2854)

Preview URL: https://pr-2854.dev.getgram.ai

Component Status Details Updated (UTC)
⏳ Database Pending Waiting for db-init job 2026-05-15 22:22:39.
✅ Images Available Container images ready 2026-05-15 22:22:37.

Gram Preview Bot

alx-xo
alx-xo approved these changes May 15, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@alx-xo alx-xo left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

damn, bootstrap classes. that takes me back 😆

@qstearns qstearns enabled auto-merge May 15, 2026 15:52
@qstearns qstearns force-pushed the gussy-login-challenge-more-QJVj branch from 92029f3 to f9e0690 Compare May 15, 2026 22:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

@claude claude[bot] claude[bot] left review comments

@alx-xo alx-xo alx-xo approved these changes

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

preview Spawn a preview environment

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@qstearns @speakeasybot @alx-xo