Replace API key auth with JWT token and improve user data management

ralyodio · ralyodio · commit 36f74326b057 · 2025-04-27T20:49:54.000-07:00
diff --git a/public/js/components/pf-header.js b/public/js/components/pf-header.js
@@ -511,9 +511,25 @@ class PfHeader extends HTMLElement {
   }
 
   updateNavbar() {
-    const apiKey = localStorage.getItem('api_key');
-    const username = localStorage.getItem('username') || apiKey;
-    const isLoggedIn = !!apiKey;
+    // Check for JWT token instead of API key
+    const jwtToken = localStorage.getItem('jwt_token');
+    
+    // Get user data from localStorage
+    let userObject = null;
+    try {
+      const userJson = localStorage.getItem('user');
+      if (userJson) {
+        userObject = JSON.parse(userJson);
+      }
+    } catch (error) {
+      console.error('Error parsing user object from localStorage:', error);
+    }
+    
+    // Get username from user object or fallback to username in localStorage
+    const username = userObject?.username || localStorage.getItem('username') || 'User';
+    
+    // Check if user is logged in based on JWT token
+    const isLoggedIn = !!jwtToken;
     
     // Update desktop navigation
     const navLinks = this.shadowRoot.querySelector('.nav-links');
@@ -717,8 +733,12 @@ class PfHeader extends HTMLElement {
   }
 
   logout() {
-    // Clear all localStorage items
-    localStorage.clear();
+    // Clear JWT token and user data
+    localStorage.removeItem('jwt_token');
+    localStorage.removeItem('username');
+    localStorage.removeItem('user');
+    localStorage.removeItem('subscription_data');
+    localStorage.removeItem('api_key'); // Remove legacy API key if present
     
     // Clear all cookies
     const cookies = document.cookie.split(";");
diff --git a/public/views/settings.html b/public/views/settings.html
@@ -70,8 +70,8 @@ <h3 class="danger-title">Danger Zone</h3>
   </div>
   
   <script>
-    // Check if user is logged in
-    const apiKey = localStorage.getItem('api_key');
+    // Check if user is logged in using JWT token
+    const jwtToken = localStorage.getItem('jwt_token');
     const userJson = localStorage.getItem('user');
     let user = null;
     
@@ -83,15 +83,16 @@ <h3 class="danger-title">Danger Zone</h3>
       }
     }
     
-    if (!apiKey) {
+    if (!jwtToken) {
       // Redirect to login page if not logged in
       window.location.href = '/login';
       throw new Error('Not logged in');
     }
     
     // Populate form fields
-    document.getElementById('email').value = user?.email || apiKey;
-    document.getElementById('display-name').value = user?.username || localStorage.getItem('username') || apiKey;
+    const username = localStorage.getItem('username');
+    document.getElementById('email').value = user?.email || username || '';
+    document.getElementById('display-name').value = user?.username || username || '';
     
     // Populate subscription info if available
     if (user?.subscription) {
