Support external step for login flow

[allenporter]

Proposed change

Support external step for login flow for use by authentication providers for custom components. This is an update on #14471 that addresses some of the PR feedback, and is also simpler, reusing more of the existing login flow and is based on the config flow external steps.

Type of change

• Dependency upgrade
• Bugfix (non-breaking change which fixes an issue)
• New feature (thank you!)
• Breaking change (fix/feature causing existing functionality to break)
• Code quality improvements to existing code or addition of tests

Example configuration

Additional information

• This PR fixes or closes issue: fixes #
• This PR is related to issue or discussion:
• Link to documentation pull request:

Screen.Recording.2024-12-07.at.11.18.46.AM.mov

Checklist

• The code change is tested and works locally.
• There is no commented out code in this PR.
• Tests have been added to verify that the new code works.

If user exposed functionality or configuration variables are added/changed:

• Documentation added/updated for www.home-assistant.io

[bramkragten]

Can we do a check for origin and source of the message?

[allenporter]

Yes, sounds good. I have this working for the window.open (following what the previous PR did). How do you track the source of the button that opens the window above?

[bramkragten]

I dont think there is a way with just an anchor link. You could make it a click event and open the window programmatically with window.open. Hoping that will not cause issues with popup blockers.

[allenporter]

OK -- I changed this to use a button to run the same code thats run when first loading. Perhaps that is reasonable...

[bramkragten]

The message is sent from the external site right? So the origin would something like this.step.url?

[allenporter]

It appears to always be the home assistant url e.g. http://localhost:8123 when i'm testing, and not as the external IDP.