fix: fix cors and add Unauthorized error handler

alexmagikov · alexmagikov · commit f2043c361412 · 2025-12-06T14:19:17.000+03:00
diff --git a/HwProj.APIGateway/HwProj.APIGateway.API/Controllers/AccountController.cs b/HwProj.APIGateway/HwProj.APIGateway.API/Controllers/AccountController.cs
@@ -155,6 +155,7 @@ public async Task<IActionResult> RefreshToken()
         }
 
         [HttpPost("logout")]
+        [ProducesResponseType((int)HttpStatusCode.OK)]
         public IActionResult Logout()
         {
             ClearTokenCookie();
diff --git a/HwProj.APIGateway/HwProj.APIGateway.API/Startup.cs b/HwProj.APIGateway/HwProj.APIGateway.API/Startup.cs
@@ -126,7 +126,7 @@ public void Configure(IApplicationBuilder app, IHostEnvironment env)
 
         app.UseRouting();
         app.UseCors(x => x
-            .AllowAnyMethod()
+            .WithMethods("GET")
             .AllowAnyHeader()
             .SetIsOriginAllowed(_ => true)
             .AllowCredentials());
diff --git a/hwproj.front/src/App.tsx b/hwproj.front/src/App.tsx
@@ -16,7 +16,7 @@ import Register from "./components/Auth/Register";
 import ExpertsNotebook from "./components/Experts/Notebook";
 import StudentSolutionsPage from "./components/Solutions/StudentSolutionsPage";
 import EditProfile from "./components/EditProfile";
-import ApiSingleton from "./api/ApiSingleton";
+import ApiSingleton, {setAunauthorizedHandler} from "./api/ApiSingleton";
 import SystemInfoComponent from "./components/System/SystemInfoComponent";
 import WrongPath from "./components/WrongPath";
 import ResetPassword from "components/Auth/ResetPassword";
@@ -34,6 +34,7 @@ interface AppState {
     newNotificationsCount: number;
     appBarContextAction: AppBarContextAction;
     authReady: boolean;
+    needAuth: boolean;
 }
 
 const withRouter = (Component: any) => {
@@ -58,12 +59,15 @@ class App extends Component<{ navigate: any }, AppState> {
             isExpert: ApiSingleton.authService.isExpert(),
             newNotificationsCount: 0,
             appBarContextAction: "Default",
-            authReady: false
+            authReady: false,
+            needAuth: false,
         };
         appBarStateManager.setOnContextActionChange(appBarState => this.setState({appBarContextAction: appBarState}))
     }
 
     componentDidMount = async () => {
+        setUnauthorizedHandler(() => this.setState({needAuth: true}));
+
         const user = await ApiSingleton.authService.getProfile();
         this.setState(
             {
@@ -90,7 +94,8 @@ class App extends Component<{ navigate: any }, AppState> {
         this.setState({
             loggedIn: true,
             isLecturer: isLecturer,
-            isExpert: isExpert
+            isExpert: isExpert,
+            needAuth: false,
         })
         if (!isExpert) {
             await this.updatedNewNotificationsCount()
@@ -100,7 +105,7 @@ class App extends Component<{ navigate: any }, AppState> {
 
     logout = async () => {
         await ApiSingleton.authService.logout();
-        this.setState({loggedIn: false, isLecturer: false, isExpert: false, newNotificationsCount: 0, authReady: true});
+        this.setState({loggedIn: false, isLecturer: false, isExpert: false, newNotificationsCount: 0, authReady: true, needAuth: false});
         this.props.navigate("/login");
     }
 
@@ -115,6 +120,7 @@ class App extends Component<{ navigate: any }, AppState> {
                         onLogout={this.logout}
                         contextAction={this.state.appBarContextAction}/>
                 <TrackPageChanges/>
+
                 <Routes>
                     <Route element={<AuthLayout/>}>
                         <Route path="user/edit" element={<EditProfile isExpert={this.state.isExpert}/>}/>
diff --git a/hwproj.front/src/api/ApiSingleton.ts b/hwproj.front/src/api/ApiSingleton.ts
@@ -69,12 +69,28 @@ function getApiBase(): string {
     return `${protocol}//${hostname}${effectivePort ? `:${effectivePort}` : ""}`
 }
 
+let unauthorizedHandler: (() => void) | null = null
+
+export const setUnauthorizedHandler = (handler: (() => void) | null) => {
+    unauthorizedHandler = handler;
+}
+
 const cookieFetch = async (url: string, init: any) => {
     const response = await fetch(url, {
         ...init,
         credentials: "include"
     });
 
+    const path = window.location.pathname;
+
+    if (response.status === 401 &&
+        !path.includes("login") &&
+        !path.includes("register")){
+        if (unauthorizedHandler) {
+            unauthorizedHandler()
+        }
+    }
+
     return response;
 }
 
diff --git a/hwproj.front/src/services/AuthService.ts b/hwproj.front/src/services/AuthService.ts
@@ -1,4 +1,4 @@
-import {LoginViewModel, AccountApi, RegisterViewModel} from '../api';
+import {LoginViewModel, RegisterViewModel} from '../api';
 import ApiSingleton from "../api/ApiSingleton";
 import decode from "jwt-decode";
 

Original file line number	Diff line number	Diff line change
`@@ -155,6 +155,7 @@ public async Task<IActionResult> RefreshToken()`
`155`	`155`	`}`
`156`	`156`
`157`	`157`	`[HttpPost("logout")]`
	`158`	`+ [ProducesResponseType((int)HttpStatusCode.OK)]`
`158`	`159`	`public IActionResult Logout()`
`159`	`160`	`{`
`160`	`161`	`ClearTokenCookie();`
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-import {LoginViewModel, AccountApi, RegisterViewModel} from '../api';`
	`1`	`+import {LoginViewModel, RegisterViewModel} from '../api';`
`2`	`2`	`import ApiSingleton from "../api/ApiSingleton";`
`3`	`3`	`import decode from "jwt-decode";`
`4`	`4`