fix: blank screen in admin dashboard on authentication problems (#3385)
* fix: dashboard logs out user when cookie expires or is unauthorized * fix: handles the 401 error thrown when trying to refresh tokens * chore: updated wrong logic when returning state in refresh token function * feat: introduced auth exchange to urql client to check for errors on each backend call * fix: prevent multiple window reloads --------- Co-authored-by: jamesgeorge007 <jamesgeorge998001@gmail.com>
This commit is contained in:
Joel Jacob Stephen
committed by
GitHub
GitHub
parent
0188a8d7db
commit
b18fd90b64
@@ -6,7 +6,7 @@ import {
|
||||
setLocalConfig,
|
||||
} from './localpersistence';
|
||||
import { Ref, ref, watch } from 'vue';
|
||||
|
||||
import * as O from 'fp-ts/Option';
|
||||
/**
|
||||
* A common (and required) set of fields that describe a user.
|
||||
*/
|
||||
@@ -60,6 +60,24 @@ async function logout() {
|
||||
});
|
||||
}
|
||||
|
||||
const signOut = async (reloadWindow = false) => {
|
||||
await logout();
|
||||
|
||||
// Reload the window if both `access_token` and `refresh_token`is invalid
|
||||
// there by the user is taken to the login page
|
||||
if (reloadWindow) {
|
||||
window.location.reload();
|
||||
}
|
||||
|
||||
probableUser$.next(null);
|
||||
currentUser$.next(null);
|
||||
removeLocalConfig('login_state');
|
||||
|
||||
authEvents$.next({
|
||||
event: 'logout',
|
||||
});
|
||||
};
|
||||
|
||||
async function signInUserWithGithubFB() {
|
||||
window.location.href = `${
|
||||
import.meta.env.VITE_BACKEND_API_URL
|
||||
@@ -149,6 +167,7 @@ async function setInitialUser() {
|
||||
setInitialUser();
|
||||
} else {
|
||||
setUser(null);
|
||||
await signOut(true);
|
||||
isGettingInitialUser.value = false;
|
||||
}
|
||||
|
||||
@@ -187,24 +206,22 @@ async function setInitialUser() {
|
||||
}
|
||||
}
|
||||
|
||||
async function refreshToken() {
|
||||
const res = await axios.get(
|
||||
`${import.meta.env.VITE_BACKEND_API_URL}/auth/refresh`,
|
||||
{
|
||||
withCredentials: true,
|
||||
}
|
||||
);
|
||||
|
||||
const isSuccessful = res.status === 200;
|
||||
|
||||
if (isSuccessful) {
|
||||
const refreshToken = async () => {
|
||||
try {
|
||||
const res = await axios.get(
|
||||
`${import.meta.env.VITE_BACKEND_API_URL}/auth/refresh`,
|
||||
{
|
||||
withCredentials: true,
|
||||
}
|
||||
);
|
||||
authEvents$.next({
|
||||
event: 'token_refresh',
|
||||
});
|
||||
return res.status === 200;
|
||||
} catch {
|
||||
return false;
|
||||
}
|
||||
|
||||
return isSuccessful;
|
||||
}
|
||||
};
|
||||
|
||||
async function elevateUser() {
|
||||
const res = await axios.get(
|
||||
@@ -356,18 +373,21 @@ export const auth = {
|
||||
return;
|
||||
},
|
||||
|
||||
async signOutUser() {
|
||||
// if (!currentUser$.value) throw new Error("No user has logged in")
|
||||
async performAuthRefresh() {
|
||||
const isRefreshSuccess = await refreshToken();
|
||||
|
||||
await logout();
|
||||
if (isRefreshSuccess) {
|
||||
setInitialUser();
|
||||
return O.some(true);
|
||||
} else {
|
||||
setUser(null);
|
||||
isGettingInitialUser.value = false;
|
||||
return O.none;
|
||||
}
|
||||
},
|
||||
|
||||
probableUser$.next(null);
|
||||
currentUser$.next(null);
|
||||
removeLocalConfig('login_state');
|
||||
|
||||
authEvents$.next({
|
||||
event: 'logout',
|
||||
});
|
||||
async signOutUser(reloadWindow = false) {
|
||||
await signOut(reloadWindow);
|
||||
},
|
||||
|
||||
async processMagicLink() {
|
||||
|
||||
Reference in New Issue
Block a user