Merge pull request #23 from NYCU-SDC/fix/fix-refresh-token-logic

Fix refresh token logic

Author: elvisdragonmao

src/features/auth/components/CallbackPage.tsx

@@ -23,11 +23,6 @@ function getSafeRedirectTarget(): string | null {
 	}
 }
 
-function getRefreshTokenFromUrl(): string | null {
-	const params = new URLSearchParams(window.location.search);
-	return params.get("refreshToken") ?? params.get("rt");
-}
-
 export const CallbackPage = () => {
 	const navigate = useNavigate();
 	const queryClient = useQueryClient();
@@ -38,11 +33,6 @@ export const CallbackPage = () => {
 			const wait = (ms: number) => new Promise(resolve => setTimeout(resolve, ms));
 
 			try {
-				const refreshToken = getRefreshTokenFromUrl();
-				if (refreshToken) {
-					authService.setStoredRefreshToken(refreshToken);
-				}
-
 				let user: AuthUser | null = null;
 
 				for (let attempt = 0; attempt < 3; attempt += 1) {

src/features/auth/hooks/useAuth.ts

@@ -1,6 +1,10 @@
 import { authService } from "@/features/auth/services/authService";
 import type { UserOnboardingRequest } from "@nycu-sdc/core-system-sdk";
+import { authRefreshToken } from "@nycu-sdc/core-system-sdk";
 import { useMutation, useQuery, useQueryClient } from "@tanstack/react-query";
+import { useEffect } from "react";
+
+const DEFAULT_AUTH_REFRESH_INTERVAL = 5 * 60 * 1000;
 
 export const useMe = () =>
 	useQuery({
@@ -30,3 +34,13 @@ export const useAuth = () => {
 		isLoading
 	};
 };
+
+export const useAuthRefreshInterval = () => {
+	useEffect(() => {
+		const interval = setInterval(() => {
+			authRefreshToken("");
+		}, DEFAULT_AUTH_REFRESH_INTERVAL);
+
+		return () => clearInterval(interval);
+	}, []);
+};

src/features/auth/services/authService.ts

@@ -1,6 +1,6 @@
 import { assertOk } from "@/shared/utils/apiError";
 import type { UserOnboardingRequest, UserUser } from "@nycu-sdc/core-system-sdk";
-import { authLogout, authRefreshToken, userGetMe, userUpdateUsername } from "@nycu-sdc/core-system-sdk";
+import { authLogout, userGetMe, userUpdateUsername } from "@nycu-sdc/core-system-sdk";
 
 export type OAuthProvider = "google" | "nycu";
 
@@ -10,105 +10,11 @@ const defaultRequestOptions: RequestInit = {
 	credentials: "include"
 };
 
-const REFRESH_TOKEN_STORAGE_KEY = "core-system.refresh-token";
-const ACCESS_TOKEN_EXPIRY_STORAGE_KEY = "core-system.access-token-exp-ms";
-let refreshInFlight: Promise<boolean> | null = null;
-
-const parseJwtExpirationMs = (jwt: string): number | null => {
-	try {
-		const [, payloadBase64Url] = jwt.split(".");
-		if (!payloadBase64Url) return null;
-		const payloadBase64 = payloadBase64Url.replace(/-/g, "+").replace(/_/g, "/");
-		const padded = payloadBase64 + "=".repeat((4 - (payloadBase64.length % 4)) % 4);
-		const payloadJson = atob(padded);
-		const payload = JSON.parse(payloadJson) as { exp?: number };
-		if (!payload.exp || typeof payload.exp !== "number") return null;
-		return payload.exp * 1000;
-	} catch {
-		return null;
-	}
-};
-
-export const withAuthRefreshRetry = async <T extends { status: number }>(request: () => Promise<T>): Promise<T> => {
-	const firstResponse = await request();
-	if (firstResponse.status !== 401) return firstResponse;
-
-	if (!refreshInFlight) {
-		refreshInFlight = authService
-			.refreshAccessToken()
-			.catch(() => false)
-			.finally(() => {
-				refreshInFlight = null;
-			});
-	}
-
-	const refreshed = await refreshInFlight;
-	if (!refreshed) return firstResponse;
-
-	return request();
-};
-
 const normalizeProvider = (provider: OAuthProvider): string => {
 	return provider.toLowerCase();
 };
 
 export const authService = {
-	getStoredRefreshToken(): string | null {
-		if (typeof window === "undefined") return null;
-		return window.localStorage.getItem(REFRESH_TOKEN_STORAGE_KEY);
-	},
-
-	setStoredRefreshToken(refreshToken: string) {
-		if (typeof window === "undefined") return;
-		window.localStorage.setItem(REFRESH_TOKEN_STORAGE_KEY, refreshToken);
-	},
-
-	getStoredAccessTokenExpiryMs(): number | null {
-		if (typeof window === "undefined") return null;
-		const raw = window.localStorage.getItem(ACCESS_TOKEN_EXPIRY_STORAGE_KEY);
-		if (!raw) return null;
-		const value = Number(raw);
-		return Number.isFinite(value) ? value : null;
-	},
-
-	setStoredAccessTokenExpiryMs(expirationMs: number) {
-		if (typeof window === "undefined") return;
-		window.localStorage.setItem(ACCESS_TOKEN_EXPIRY_STORAGE_KEY, String(expirationMs));
-	},
-
-	clearStoredAccessTokenExpiryMs() {
-		if (typeof window === "undefined") return;
-		window.localStorage.removeItem(ACCESS_TOKEN_EXPIRY_STORAGE_KEY);
-	},
-
-	clearStoredRefreshToken() {
-		if (typeof window === "undefined") return;
-		window.localStorage.removeItem(REFRESH_TOKEN_STORAGE_KEY);
-		this.clearStoredAccessTokenExpiryMs();
-	},
-
-	async refreshAccessToken(): Promise<boolean> {
-		const refreshToken = this.getStoredRefreshToken();
-		if (!refreshToken) return false;
-
-		const res = await authRefreshToken(refreshToken, defaultRequestOptions);
-		if (res.status === 404) {
-			this.clearStoredRefreshToken();
-			throw new Error("Refresh token expired");
-		}
-
-		assertOk(res.status, "Failed to refresh access token", res.data);
-		if (res.data?.refreshToken) {
-			this.setStoredRefreshToken(res.data.refreshToken);
-		}
-		const accessTokenExpMs = parseJwtExpirationMs(res.data.accessToken);
-		if (accessTokenExpMs) {
-			this.setStoredAccessTokenExpiryMs(accessTokenExpMs);
-		}
-
-		return true;
-	},
-
 	redirectToOAuthLogin(
 		provider: OAuthProvider,
 		options: {
@@ -132,19 +38,18 @@ export const authService = {
 	},
 
 	async logout(): Promise<void> {
-		const res = await withAuthRefreshRetry(() => authLogout(defaultRequestOptions));
+		const res = await authLogout(defaultRequestOptions);
 		assertOk(res.status, "Failed to logout", res.data);
-		this.clearStoredRefreshToken();
 	},
 
 	async getCurrentUser<T extends UserUser = UserUser>(): Promise<T> {
-		const res = await withAuthRefreshRetry(() => userGetMe(defaultRequestOptions));
+		const res = await userGetMe(defaultRequestOptions);
 		assertOk(res.status, "Failed to get current user", res.data);
 		return res.data as T;
 	},
 
 	async updateOnboarding(data: UserOnboardingRequest): Promise<void> {
-		const res = await withAuthRefreshRetry(() => userUpdateUsername(data, defaultRequestOptions));
+		const res = await userUpdateUsername(data, defaultRequestOptions);
 		assertOk(res.status, "Failed to update onboarding", res.data);
 	}
 };

src/features/dashboard/services/api.ts

@@ -1,4 +1,3 @@
-import { withAuthRefreshRetry } from "@/features/auth/services/authService";
 import { assertOk } from "@/shared/utils/apiError";
 import type { SlugGetSlugHistory200, SlugStatus, UnitOrgMemberRequest, UnitOrganization, UnitUpdateOrgRequest } from "@nycu-sdc/core-system-sdk";
 import {
@@ -17,48 +16,48 @@ const defaultRequestOptions: RequestInit = {
 };
 
 export const getOrg = async (slug: string): Promise<UnitOrganization> => {
-	const res = await withAuthRefreshRetry(() => unitGetOrgById(slug, defaultRequestOptions));
+	const res = await unitGetOrgById(slug, defaultRequestOptions);
 	assertOk(res.status, "Failed to load organization", res.data);
 	return res.data;
 };
 
 export const listOrgMembers = async (slug: string) => {
-	const res = await withAuthRefreshRetry(() => unitListOrgMembers(slug, defaultRequestOptions));
+	const res = await unitListOrgMembers(slug, defaultRequestOptions);
 	assertOk(res.status, "Failed to load members", res.data);
 	return res.data;
 };
 
 export const updateOrg = async (slug: string, req: UnitUpdateOrgRequest) => {
-	const res = await withAuthRefreshRetry(() => unitUpdateOrg(slug, req, defaultRequestOptions));
+	const res = await unitUpdateOrg(slug, req, defaultRequestOptions);
 	assertOk(res.status, "Failed to update organization", res.data);
 	return res.data;
 };
 
 export const addOrgMember = async (slug: string, req: UnitOrgMemberRequest) => {
-	const res = await withAuthRefreshRetry(() => unitAddOrgMember(slug, req, defaultRequestOptions));
+	const res = await unitAddOrgMember(slug, req, defaultRequestOptions);
 	assertOk(res.status, "Failed to add member", res.data);
 	return res.data;
 };
 
 export const removeOrgMember = async (slug: string, memberId: string): Promise<void> => {
-	const res = await withAuthRefreshRetry(() => unitRemoveOrgMember(slug, memberId, defaultRequestOptions));
+	const res = await unitRemoveOrgMember(slug, memberId, defaultRequestOptions);
 	assertOk(res.status, "Failed to remove member", res.data);
 };
 
 export const listMyOrgs = async (): Promise<UnitOrganization[]> => {
-	const res = await withAuthRefreshRetry(() => unitListOrganizationsOfCurrentUser(defaultRequestOptions));
+	const res = await unitListOrganizationsOfCurrentUser(defaultRequestOptions);
 	assertOk(res.status, "Failed to load my organizations", res.data);
 	return res.data;
 };
 
 export const getSlugStatus = async (slug: string): Promise<SlugStatus> => {
-	const res = await withAuthRefreshRetry(() => slugGetSlugStatus(slug, defaultRequestOptions));
+	const res = await slugGetSlugStatus(slug, defaultRequestOptions);
 	assertOk(res.status, "Failed to get slug status", res.data);
 	return res.data as SlugStatus;
 };
 
 export const getSlugHistory = async (slug: string): Promise<SlugGetSlugHistory200> => {
-	const res = await withAuthRefreshRetry(() => slugGetSlugHistory(slug, defaultRequestOptions));
+	const res = await slugGetSlugHistory(slug, defaultRequestOptions);
 	assertOk(res.status, "Failed to get slug history", res.data);
 	return res.data as SlugGetSlugHistory200;
 };

src/features/form/components/AdminFormDetailPages/EditPage.tsx

@@ -92,8 +92,6 @@ export const AdminFormEditPage = ({ formData }: AdminFormEditPageProps) => {
 			isMergeNode: pass1.filter(n => n.next === node.id).length + pass1.filter(n => n.nextTrue === node.id).length + pass1.filter(n => n.nextFalse === node.id).length > 1
 		}));
 
-		console.log("Post-processed nodes:", res);
-
 		return res;
 	};