feat(auth): Refactor authentication flow

- Uses code verification
- Added auth state listener
- Updated states and events

Author: fulleni

lib/authentication/bloc/authentication_bloc.dart

@@ -1,12 +1,17 @@
-//
-// ignore_for_file: lines_longer_than_80_chars
-
 import 'dart:async';
 
 import 'package:bloc/bloc.dart';
 import 'package:equatable/equatable.dart';
-import 'package:ht_authentication_client/ht_authentication_client.dart';
-import 'package:ht_authentication_repository/ht_authentication_repository.dart';
+import 'package:ht_auth_repository/ht_auth_repository.dart';
+import 'package:ht_shared/ht_shared.dart'
+    show
+        AuthenticationException,
+        HtHttpException,
+        InvalidInputException,
+        NetworkException,
+        OperationFailedException,
+        ServerException,
+        User;
 
 part 'authentication_event.dart';
 part 'authentication_state.dart';
@@ -17,116 +22,126 @@ part 'authentication_state.dart';
 class AuthenticationBloc
     extends Bloc<AuthenticationEvent, AuthenticationState> {
   /// {@macro authentication_bloc}
-  AuthenticationBloc({
-    required HtAuthenticationRepository authenticationRepository,
-  }) : _authenticationRepository = authenticationRepository,
-       super(AuthenticationInitial()) {
-    on<AuthenticationSendSignInLinkRequested>(
-      _onAuthenticationSendSignInLinkRequested,
-    );
-    on<AuthenticationSignInWithLinkAttempted>(
-      _onAuthenticationSignInWithLinkAttempted,
+  AuthenticationBloc({required HtAuthRepository authenticationRepository})
+    : _authenticationRepository = authenticationRepository,
+      super(AuthenticationInitial()) {
+    // Listen to authentication state changes from the repository
+    _authenticationRepository.authStateChanges.listen(
+      (user) => add(_AuthenticationUserChanged(user: user)),
     );
-    on<AuthenticationGoogleSignInRequested>(
-      _onAuthenticationGoogleSignInRequested,
+
+    on<_AuthenticationUserChanged>(_onAuthenticationUserChanged);
+    on<AuthenticationRequestSignInCodeRequested>(
+      _onAuthenticationRequestSignInCodeRequested,
     );
+    on<AuthenticationVerifyCodeRequested>(_onAuthenticationVerifyCodeRequested);
     on<AuthenticationAnonymousSignInRequested>(
       _onAuthenticationAnonymousSignInRequested,
     );
     on<AuthenticationSignOutRequested>(_onAuthenticationSignOutRequested);
-    on<AuthenticationDeleteAccountRequested>(
-      _onAuthenticationDeleteAccountRequested,
-    );
   }
 
-  final HtAuthenticationRepository _authenticationRepository;
+  final HtAuthRepository _authenticationRepository;
 
-  /// Handles [AuthenticationSendSignInLinkRequested] events.
-  Future<void> _onAuthenticationSendSignInLinkRequested(
-    AuthenticationSendSignInLinkRequested event,
+  /// Handles [_AuthenticationUserChanged] events.
+  Future<void> _onAuthenticationUserChanged(
+    _AuthenticationUserChanged event,
+    Emitter<AuthenticationState> emit,
+  ) async {
+    if (event.user != null) {
+      emit(AuthenticationAuthenticated(user: event.user!));
+    } else {
+      emit(AuthenticationUnauthenticated());
+    }
+  }
+
+  /// Handles [AuthenticationRequestSignInCodeRequested] events.
+  Future<void> _onAuthenticationRequestSignInCodeRequested(
+    AuthenticationRequestSignInCodeRequested event,
     Emitter<AuthenticationState> emit,
   ) async {
     // Validate email format (basic check)
     if (event.email.isEmpty || !event.email.contains('@')) {
       emit(const AuthenticationFailure('Please enter a valid email address.'));
       return;
     }
-    emit(AuthenticationLinkSending()); // Indicate link sending
+    emit(
+      AuthenticationRequestCodeLoading(),
+    ); // Indicate code request is sending
     try {
-      // Simply call the repository method, email temprary storage storage
-      // is handled internally
-      await _authenticationRepository.sendSignInLinkToEmail(email: event.email);
-      emit(AuthenticationLinkSentSuccess()); // Confirm link sent
-    } on SendSignInLinkException catch (e) {
-      emit(AuthenticationFailure('Failed to send link: ${e.error}'));
+      await _authenticationRepository.requestSignInCode(event.email);
+      emit(
+        AuthenticationCodeSentSuccess(email: event.email),
+      ); // Confirm code requested and include email
+    } on InvalidInputException catch (e) {
+      emit(AuthenticationFailure('Invalid input: ${e.message}'));
+    } on NetworkException catch (_) {
+      emit(const AuthenticationFailure('Network error occurred.'));
+    } on ServerException catch (e) {
+      emit(AuthenticationFailure('Server error: ${e.message}'));
+    } on OperationFailedException catch (e) {
+      emit(AuthenticationFailure('Operation failed: ${e.message}'));
+    } on HtHttpException catch (e) {
+      // Catch any other HtHttpException subtypes
+      emit(AuthenticationFailure('HTTP error: ${e.message}'));
     } catch (e) {
       // Catch any other unexpected errors
       emit(AuthenticationFailure('An unexpected error occurred: $e'));
       // Optionally log the stackTrace here
     }
   }
 
-  /// Handles [AuthenticationSignInWithLinkAttempted] events.
-  /// This assumes the event is dispatched after the app receives the deep link.
-  Future<void> _onAuthenticationSignInWithLinkAttempted(
-    AuthenticationSignInWithLinkAttempted event,
+  /// Handles [AuthenticationVerifyCodeRequested] events.
+  Future<void> _onAuthenticationVerifyCodeRequested(
+    AuthenticationVerifyCodeRequested event,
     Emitter<AuthenticationState> emit,
   ) async {
-    emit(AuthenticationLoading()); // General loading for sign-in attempt
+    emit(AuthenticationLoading()); // Indicate code verification is loading
     try {
-      // Call the updated repository method (no email needed here)
-      await _authenticationRepository.signInWithEmailLink(
-        emailLink: event.emailLink,
-      );
-      // On success, AppBloc should react to the user stream change from the repo.
-      // Resetting to Initial state here.
-      emit(AuthenticationInitial());
-    } on InvalidSignInLinkException catch (e) {
-      emit(
-        AuthenticationFailure(
-          'Sign in failed: Invalid or expired link. ${e.error}',
-        ),
-      );
+      await _authenticationRepository.verifySignInCode(event.email, event.code);
+      // On success, the _AuthenticationUserChanged listener will handle
+      // emitting AuthenticationAuthenticated.
+    } on InvalidInputException catch (e) {
+      emit(AuthenticationFailure('Invalid input: ${e.message}'));
+    } on AuthenticationException catch (e) {
+      emit(AuthenticationFailure('Authentication failed: ${e.message}'));
+    } on NetworkException catch (_) {
+      emit(const AuthenticationFailure('Network error occurred.'));
+    } on ServerException catch (e) {
+      emit(AuthenticationFailure('Server error: ${e.message}'));
+    } on OperationFailedException catch (e) {
+      emit(AuthenticationFailure('Operation failed: ${e.message}'));
+    } on HtHttpException catch (e) {
+      // Catch any other HtHttpException subtypes
+      emit(AuthenticationFailure('HTTP error: ${e.message}'));
     } catch (e) {
       // Catch any other unexpected errors
-      emit(
-        AuthenticationFailure(
-          'An unexpected error occurred during sign in: $e',
-        ),
-      );
+      emit(AuthenticationFailure('An unexpected error occurred: $e'));
       // Optionally log the stackTrace here
     }
   }
 
-  /// Handles [AuthenticationGoogleSignInRequested] events.
-  Future<void> _onAuthenticationGoogleSignInRequested(
-    AuthenticationGoogleSignInRequested event,
-    Emitter<AuthenticationState> emit,
-  ) async {
-    emit(AuthenticationLoading());
-    try {
-      await _authenticationRepository.signInWithGoogle();
-      emit(AuthenticationInitial());
-    } on GoogleSignInException catch (e) {
-      emit(AuthenticationFailure(e.toString()));
-    } catch (e) {
-      emit(AuthenticationFailure(e.toString()));
-    }
-  }
-
   /// Handles [AuthenticationAnonymousSignInRequested] events.
   Future<void> _onAuthenticationAnonymousSignInRequested(
     AuthenticationAnonymousSignInRequested event,
     Emitter<AuthenticationState> emit,
   ) async {
-    emit(AuthenticationLoading());
+    emit(AuthenticationLoading()); // Indicate anonymous sign-in is loading
     try {
       await _authenticationRepository.signInAnonymously();
-      emit(AuthenticationInitial());
-    } on AnonymousLoginException catch (e) {
-      emit(AuthenticationFailure(e.toString()));
+      // On success, the _AuthenticationUserChanged listener will handle
+      // emitting AuthenticationAuthenticated.
+    } on NetworkException catch (_) {
+      emit(const AuthenticationFailure('Network error occurred.'));
+    } on ServerException catch (e) {
+      emit(AuthenticationFailure('Server error: ${e.message}'));
+    } on OperationFailedException catch (e) {
+      emit(AuthenticationFailure('Operation failed: ${e.message}'));
+    } on HtHttpException catch (e) {
+      // Catch any other HtHttpException subtypes
+      emit(AuthenticationFailure('HTTP error: ${e.message}'));
     } catch (e) {
-      emit(AuthenticationFailure(e.toString()));
+      emit(AuthenticationFailure('An unexpected error occurred: $e'));
     }
   }
 
@@ -135,29 +150,22 @@ class AuthenticationBloc
     AuthenticationSignOutRequested event,
     Emitter<AuthenticationState> emit,
   ) async {
-    emit(AuthenticationLoading());
+    emit(AuthenticationLoading()); // Indicate sign-out is loading
     try {
       await _authenticationRepository.signOut();
-      emit(AuthenticationInitial());
-    } on LogoutException catch (e) {
-      emit(AuthenticationFailure(e.toString()));
-    } catch (e) {
-      emit(AuthenticationFailure(e.toString()));
-    }
-  }
-
-  Future<void> _onAuthenticationDeleteAccountRequested(
-    AuthenticationDeleteAccountRequested event,
-    Emitter<AuthenticationState> emit,
-  ) async {
-    emit(AuthenticationLoading());
-    try {
-      await _authenticationRepository.deleteAccount();
-      emit(AuthenticationInitial());
-    } on DeleteAccountException catch (e) {
-      emit(AuthenticationFailure(e.toString()));
+      // On success, the _AuthenticationUserChanged listener will handle
+      // emitting AuthenticationUnauthenticated.
+    } on NetworkException catch (_) {
+      emit(const AuthenticationFailure('Network error occurred.'));
+    } on ServerException catch (e) {
+      emit(AuthenticationFailure('Server error: ${e.message}'));
+    } on OperationFailedException catch (e) {
+      emit(AuthenticationFailure('Operation failed: ${e.message}'));
+    } on HtHttpException catch (e) {
+      // Catch any other HtHttpException subtypes
+      emit(AuthenticationFailure('HTTP error: ${e.message}'));
     } catch (e) {
-      emit(AuthenticationFailure(e.toString()));
+      emit(AuthenticationFailure('An unexpected error occurred: $e'));
     }
   }
 }

lib/authentication/bloc/authentication_event.dart

@@ -8,16 +8,17 @@ sealed class AuthenticationEvent extends Equatable {
   const AuthenticationEvent();
 
   @override
-  List<Object> get props => [];
+  List<Object?> get props => [];
 }
 
-/// {@template authentication_send_sign_in_link_requested}
-/// Event triggered when the user requests a sign-in link to be sent
+/// {@template authentication_request_sign_in_code_requested}
+/// Event triggered when the user requests a sign-in code to be sent
 /// to their email.
 /// {@endtemplate}
-final class AuthenticationSendSignInLinkRequested extends AuthenticationEvent {
-  /// {@macro authentication_send_sign_in_link_requested}
-  const AuthenticationSendSignInLinkRequested({required this.email});
+final class AuthenticationRequestSignInCodeRequested
+    extends AuthenticationEvent {
+  /// {@macro authentication_request_sign_in_code_requested}
+  const AuthenticationRequestSignInCodeRequested({required this.email});
 
   /// The user's email address.
   final String email;
@@ -26,27 +27,24 @@ final class AuthenticationSendSignInLinkRequested extends AuthenticationEvent {
   List<Object> get props => [email];
 }
 
-/// {@template authentication_sign_in_with_link_attempted}
-/// Event triggered when the app attempts to sign in using an email link.
-/// This is typically triggered by a deep link handler.
+/// {@template authentication_verify_code_requested}
+/// Event triggered when the user attempts to sign in using an email and code.
 /// {@endtemplate}
-final class AuthenticationSignInWithLinkAttempted extends AuthenticationEvent {
-  /// {@macro authentication_sign_in_with_link_attempted}
-  const AuthenticationSignInWithLinkAttempted({required this.emailLink});
+final class AuthenticationVerifyCodeRequested extends AuthenticationEvent {
+  /// {@macro authentication_verify_code_requested}
+  const AuthenticationVerifyCodeRequested({
+    required this.email,
+    required this.code,
+  });
 
-  /// The sign-in link received by the app.
-  final String emailLink;
+  /// The user's email address.
+  final String email;
 
-  @override
-  List<Object> get props => [emailLink];
-}
+  /// The verification code received by the user.
+  final String code;
 
-/// {@template authentication_google_sign_in_requested}
-/// Event triggered when the user requests to sign in with Google.
-/// {@endtemplate}
-final class AuthenticationGoogleSignInRequested extends AuthenticationEvent {
-  /// {@macro authentication_google_sign_in_requested}
-  const AuthenticationGoogleSignInRequested();
+  @override
+  List<Object> get props => [email, code];
 }
 
 /// {@template authentication_anonymous_sign_in_requested}
@@ -65,10 +63,16 @@ final class AuthenticationSignOutRequested extends AuthenticationEvent {
   const AuthenticationSignOutRequested();
 }
 
-/// {@template authentication_delete_account_requested}
-/// Event triggered when the user requests to delete their account.
+/// {@template _authentication_user_changed}
+/// Internal event triggered when the authentication state changes.
 /// {@endtemplate}
-final class AuthenticationDeleteAccountRequested extends AuthenticationEvent {
-  /// {@macro authentication_delete_account_requested}
-  const AuthenticationDeleteAccountRequested();
+final class _AuthenticationUserChanged extends AuthenticationEvent {
+  /// {@macro _authentication_user_changed}
+  const _AuthenticationUserChanged({required this.user});
+
+  /// The current authenticated user, or null if unauthenticated.
+  final User? user;
+
+  @override
+  List<Object?> get props => [user];
 }

lib/authentication/bloc/authentication_state.dart

@@ -26,7 +26,7 @@ final class AuthenticationLoading extends AuthenticationState {}
 /// {@endtemplate}
 final class AuthenticationAuthenticated extends AuthenticationState {
   /// {@macro authentication_authenticated}
-  const AuthenticationAuthenticated(this.user);
+  const AuthenticationAuthenticated({required this.user});
 
   /// The authenticated [User] object.
   final User user;
@@ -40,15 +40,24 @@ final class AuthenticationAuthenticated extends AuthenticationState {
 /// {@endtemplate}
 final class AuthenticationUnauthenticated extends AuthenticationState {}
 
-/// {@template authentication_link_sending}
-/// State indicating that the sign-in link is being sent.
+/// {@template authentication_request_code_loading}
+/// State indicating that the sign-in code is being requested.
 /// {@endtemplate}
-final class AuthenticationLinkSending extends AuthenticationState {}
+final class AuthenticationRequestCodeLoading extends AuthenticationState {}
 
-/// {@template authentication_link_sent_success}
-/// State indicating that the sign-in link was sent successfully.
+/// {@template authentication_code_sent_success}
+/// State indicating that the sign-in code was sent successfully.
 /// {@endtemplate}
-final class AuthenticationLinkSentSuccess extends AuthenticationState {}
+final class AuthenticationCodeSentSuccess extends AuthenticationState {
+  /// {@macro authentication_code_sent_success}
+  const AuthenticationCodeSentSuccess({required this.email});
+
+  /// The email address the code was sent to.
+  final String email;
+
+  @override
+  List<Object> get props => [email];
+}
 
 /// {@template authentication_failure}
 /// Represents an authentication failure.