Bhumil's demo app with Auth0 running here: http://45.79.248.56:3000/ I'll keep it up while we work on those specs.
RecipeID: thirdparty
[ ] Can we build in a way so that users can add a custom social login if they'd like without us having to add any code? Similar to https://next-auth.js.org/configuration/providers#using-a-custom-provider
[x] Can you switch between social login providers? Use Twitter once, then facebook, etc... I can't see why not.
[x] Is it possible for an external login provider to not give us an email? If yes, should we support that kind?
Yes. We should support that, as long as email verification is not required.
[x] How does testing work? Can't rely on API calls to each providers. This is especially true for the core. We will need mock data.
[ ] Some people might just want social login to facilitate sign up flow. Should we:
[ ] Some people might want social login to query the provider's API. In that case we need a valid token.
[x] Do we do popup or full tab? I think it's hard enough to manage so that we don't have to care about popup state. I prefer doing full page.