Update login flow

rkpasia · rkpasia · commit 076967203324 · 2023-05-13T12:42:55.000+02:00
- set expiration of cookie set by nodejs server respect to JWT auth token generated by fractal-server
- Update error handling of authentication flow
diff --git a/package.json b/package.json
@@ -29,6 +29,7 @@
 	"type": "module",
 	"dependencies": {
 		"@vincjo/datatables": "^1.6.0",
+		"jose": "^4.14.4",
 		"sweetalert2": "^11.4.37"
 	}
 }
diff --git a/src/routes/auth/login/+page.server.js b/src/routes/auth/login/+page.server.js
@@ -1,4 +1,5 @@
-import { redirect } from '@sveltejs/kit'
+import { fail, redirect } from '@sveltejs/kit'
+import * as jose from 'jose'
 import { userAuthentication } from '$lib/server/api/v1/auth_api'
 
 export const actions = {
@@ -9,11 +10,22 @@ export const actions = {
 
     // Get form data
     const formData = await request.formData()
-    const authData = await userAuthentication(fetch, formData)
+    // Set auth data
+    let authData
+    try {
+      authData = await userAuthentication(fetch, formData)
+    } catch (error) {
+      console.error(error)
+      return fail(400, { invalidMessage: 'Invalid credentials', invalid: true })
+    }
+    const authToken = authData.access_token
+    // Decode JWT token claims
+    const tokenClaims = jose.decodeJwt(authToken)
 
+    // Set the authentication cookie
     cookies.set('fastapiusersauth', authData.access_token, {
       path: '/',
-      maxAge: 60 * 60 * 24 * 7, // 1 week
+      expires: new Date(tokenClaims.exp * 1000),
       sameSite: 'lax',
       secure: true,
       httpOnly: true
diff --git a/src/routes/auth/login/+page.svelte b/src/routes/auth/login/+page.svelte
@@ -1,9 +1,11 @@
 <script>
-  import { goto } from '$app/navigation'
-  import { userStore } from '$lib/stores/authStores'
-
+  export let form
   let loginError = false
 
+  if (form?.invalid) {
+		loginError = true
+  }
+
 </script>
 
 <div class="container">
@@ -18,7 +20,7 @@
           <input name="username" type="email" class="form-control { loginError ? 'is-invalid' : '' }" id="userEmail" aria-describedby="emailHelp" required>
           <div id="emailHelp" class="form-text">The email you provided to the IT manager</div>
           <div class="invalid-feedback">
-            Can not perform login with the data provided
+            { form?.invalidMessage }
           </div>
         </div>
         <div class="mb-3">

Original file line number	Diff line number	Diff line change
`@@ -29,6 +29,7 @@`
`29`	`29`	`"type": "module",`
`30`	`30`	`"dependencies": {`
`31`	`31`	`"@vincjo/datatables": "^1.6.0",`
	`32`	`+ "jose": "^4.14.4",`
`32`	`33`	`"sweetalert2": "^11.4.37"`
`33`	`34`	`}`
`34`	`35`	`}`