chore(auth): general auth improvements

Author: grdsdev

Sources/Auth/AuthClient.swift

@@ -37,14 +37,14 @@ public final class AuthClient: Sendable {
   ///
   /// The session returned by this property may be expired. Use ``session`` for a session that is guaranteed to be valid.
   public var currentSession: Session? {
-    try? sessionStorage.get()
+    sessionStorage.get()
   }
 
   /// Returns the current user, if any.
   ///
   /// The user returned by this property may be outdated. Use ``user(jwt:)`` method to get an up-to-date user instance.
   public var currentUser: User? {
-    try? sessionStorage.get()?.user
+    currentSession?.user
   }
 
   /// Namespace for accessing multi-factor authentication API.

Sources/Auth/AuthClientConfiguration.swift

@@ -20,17 +20,28 @@ extension AuthClient {
 
   /// Configuration struct represents the client configuration.
   public struct Configuration: Sendable {
+    /// The URL of the Auth server.
     public let url: URL
+
+    /// Any additional headers to send to the Auth server.
     public var headers: [String: String]
     public let flowType: AuthFlowType
+
+    /// Default URL to be used for redirect on the flows that requires it.
     public let redirectToURL: URL?
 
     /// Optional key name used for storing tokens in local storage.
     public var storageKey: String?
+
+    /// Provider your own local storage implementation to use instead of the default one.
     public let localStorage: any AuthLocalStorage
+
+    /// Custom SupabaseLogger implementation used to inspecting log messages from the Auth library.
     public let logger: (any SupabaseLogger)?
     public let encoder: JSONEncoder
     public let decoder: JSONDecoder
+
+    /// A custom fetch implementation.
     public let fetch: FetchHandler
 
     /// Set to `true` if you want to automatically refresh the token before expiring.
@@ -51,7 +62,7 @@ extension AuthClient {
     ///   - fetch: The asynchronous fetch handler for network requests.
     ///   - autoRefreshToken: Set to `true` if you want to automatically refresh the token before expiring.
     public init(
-      url: URL,
+      url: URL? = nil,
       headers: [String: String] = [:],
       flowType: AuthFlowType = Configuration.defaultFlowType,
       redirectToURL: URL? = nil,
@@ -65,7 +76,7 @@ extension AuthClient {
     ) {
       let headers = headers.merging(Configuration.defaultHeaders) { l, _ in l }
 
-      self.url = url
+      self.url = url ?? defaultAuthURL
       self.headers = headers
       self.flowType = flowType
       self.redirectToURL = redirectToURL
@@ -94,7 +105,7 @@ extension AuthClient {
   ///   - fetch: The asynchronous fetch handler for network requests.
   ///   - autoRefreshToken: Set to `true` if you want to automatically refresh the token before expiring.
   public convenience init(
-    url: URL,
+    url: URL? = nil,
     headers: [String: String] = [:],
     flowType: AuthFlowType = AuthClient.Configuration.defaultFlowType,
     redirectToURL: URL? = nil,

Sources/Auth/AuthError.swift

@@ -182,7 +182,7 @@ public enum AuthError: LocalizedError, Equatable {
       errorCode: .unknown,
       underlyingData: (try? AuthClient.Configuration.jsonEncoder.encode(error)) ?? Data(),
       underlyingResponse: HTTPURLResponse(
-        url: URL(string: "http://localhost")!,
+        url: defaultAuthURL,
         statusCode: error.code ?? 500,
         httpVersion: nil,
         headerFields: nil

Sources/Auth/Internal/Contants.swift

@@ -7,7 +7,8 @@
 
 import Foundation
 
-let EXPIRY_MARGIN: TimeInterval = 30
+let defaultAuthURL = URL(string: "http://localhost:9999")!
+let defaultExpiryMargin: TimeInterval = 30
 let STORAGE_KEY = "supabase.auth.token"
 
 let API_VERSION_HEADER_NAME = "X-Supabase-Api-Version"

Sources/Auth/Internal/SessionManager.swift

@@ -39,7 +39,7 @@ private actor LiveSessionManager {
 
   func session() async throws -> Session {
     try await trace(using: logger) {
-      guard let currentSession = try sessionStorage.get() else {
+      guard let currentSession = sessionStorage.get() else {
         throw AuthError.sessionMissing
       }
 
@@ -78,7 +78,9 @@ private actor LiveSessionManager {
               query: [
                 URLQueryItem(name: "grant_type", value: "refresh_token"),
               ],
-              body: configuration.encoder.encode(UserCredentials(refreshToken: refreshToken))
+              body: configuration.encoder.encode(
+                UserCredentials(refreshToken: refreshToken)
+              )
             )
           )
           .decoded(as: Session.self, decoder: configuration.decoder)
@@ -97,22 +99,17 @@ private actor LiveSessionManager {
   }
 
   func update(_ session: Session) {
-    do {
-      try sessionStorage.store(session)
-    } catch {
-      logger?.error("Failed to store session: \(error)")
-    }
+    sessionStorage.store(session)
   }
 
   func remove() {
-    do {
-      try sessionStorage.delete()
-    } catch {
-      logger?.error("Failed to remove session: \(error)")
-    }
+    sessionStorage.delete()
   }
 
-  private func scheduleNextTokenRefresh(_ refreshedSession: Session, caller: StaticString = #function) async {
+  private func scheduleNextTokenRefresh(
+    _ refreshedSession: Session,
+    caller: StaticString = #function
+  ) async {
     await SupabaseLoggerTaskLocal.$additionalContext.withValue(
       merging: ["caller": .string("\(caller)")]
     ) {

Sources/Auth/Internal/SessionStorage.swift

@@ -9,9 +9,9 @@ import Foundation
 import Helpers
 
 struct SessionStorage {
-  var get: @Sendable () throws -> Session?
-  var store: @Sendable (_ session: Session) throws -> Void
-  var delete: @Sendable () throws -> Void
+  var get: @Sendable () -> Session?
+  var store: @Sendable (_ session: Session) -> Void
+  var delete: @Sendable () -> Void
 }
 
 extension SessionStorage {
@@ -50,19 +50,32 @@ extension SessionStorage {
           }
         }
 
-        let storedData = try storage.retrieve(key: key)
-        return try storedData.flatMap {
-          try AuthClient.Configuration.jsonDecoder.decode(Session.self, from: $0)
+        do {
+          let storedData = try storage.retrieve(key: key)
+          return try storedData.flatMap {
+            try AuthClient.Configuration.jsonDecoder.decode(Session.self, from: $0)
+          }
+        } catch {
+          logger?.error("Failed to retrieve session: \(error.localizedDescription)")
+          return nil
         }
       },
       store: { session in
-        try storage.store(
-          key: key,
-          value: AuthClient.Configuration.jsonEncoder.encode(session)
-        )
+        do {
+          try storage.store(
+            key: key,
+            value: AuthClient.Configuration.jsonEncoder.encode(session)
+          )
+        } catch {
+          logger?.error("Failed to store session: \(error.localizedDescription)")
+        }
       },
       delete: {
-        try storage.remove(key: key)
+        do {
+          try storage.remove(key: key)
+        } catch {
+          logger?.error("Failed to delete session: \(error.localizedDescription)")
+        }
       }
     )
   }

Sources/Auth/Types.swift

@@ -114,7 +114,7 @@ public struct Session: Codable, Hashable, Sendable {
   /// The 30 second buffer is to account for latency issues.
   public var isExpired: Bool {
     let expiresAt = Date(timeIntervalSince1970: expiresAt)
-    return expiresAt.timeIntervalSinceNow < EXPIRY_MARGIN
+    return expiresAt.timeIntervalSinceNow < defaultExpiryMargin
   }
 }
 
@@ -286,6 +286,7 @@ public struct UserIdentity: Codable, Hashable, Identifiable, Sendable {
   }
 }
 
+/// One of the providers supported by Auth.
 public enum Provider: String, Identifiable, Codable, CaseIterable, Sendable {
   case apple
   case azure
@@ -478,6 +479,7 @@ public struct UserAttributes: Codable, Hashable, Sendable {
   public var nonce: String?
 
   /// An email change token.
+  @available(*, deprecated, message: "This is an old field, stop relying on it.")
   public var emailChangeToken: String?
   /// A custom data object to store the user's metadata. This maps to the `auth.users.user_metadata`
   /// column. The `data` should be a JSON object that includes user-specific info, such as their

Tests/AuthTests/AuthClientTests.swift

@@ -53,7 +53,7 @@ final class AuthClientTests: XCTestCase {
   func testOnAuthStateChanges() async throws {
     let session = Session.validSession
     let sut = makeSUT()
-    try Dependencies[sut.clientID].sessionStorage.store(session)
+    Dependencies[sut.clientID].sessionStorage.store(session)
 
     let events = LockIsolated([AuthChangeEvent]())
 
@@ -71,7 +71,7 @@ final class AuthClientTests: XCTestCase {
   func testAuthStateChanges() async throws {
     let session = Session.validSession
     let sut = makeSUT()
-    try Dependencies[sut.clientID].sessionStorage.store(session)
+    Dependencies[sut.clientID].sessionStorage.store(session)
 
     let stateChange = await sut.authStateChanges.first { _ in true }
     expectNoDifference(stateChange?.event, .initialSession)
@@ -83,7 +83,7 @@ final class AuthClientTests: XCTestCase {
       .stub()
     }
 
-    try Dependencies[sut.clientID].sessionStorage.store(.validSession)
+    Dependencies[sut.clientID].sessionStorage.store(.validSession)
 
     let eventsTask = Task {
       await sut.authStateChanges.prefix(2).collect()
@@ -112,11 +112,11 @@ final class AuthClientTests: XCTestCase {
       .stub()
     }
 
-    try Dependencies[sut.clientID].sessionStorage.store(.validSession)
+    Dependencies[sut.clientID].sessionStorage.store(.validSession)
 
     try await sut.signOut(scope: .others)
 
-    let sessionRemoved = try Dependencies[sut.clientID].sessionStorage.get() == nil
+    let sessionRemoved = Dependencies[sut.clientID].sessionStorage.get() == nil
     XCTAssertFalse(sessionRemoved)
   }
 
@@ -131,7 +131,7 @@ final class AuthClientTests: XCTestCase {
     }
 
     let validSession = Session.validSession
-    try Dependencies[sut.clientID].sessionStorage.store(validSession)
+    Dependencies[sut.clientID].sessionStorage.store(validSession)
 
     let eventsTask = Task {
       await sut.authStateChanges.prefix(2).collect()
@@ -147,7 +147,7 @@ final class AuthClientTests: XCTestCase {
     expectNoDifference(events, [.initialSession, .signedOut])
     expectNoDifference(sessions, [.validSession, nil])
 
-    let sessionRemoved = try Dependencies[sut.clientID].sessionStorage.get() == nil
+    let sessionRemoved = Dependencies[sut.clientID].sessionStorage.get() == nil
     XCTAssertTrue(sessionRemoved)
   }
 
@@ -162,7 +162,7 @@ final class AuthClientTests: XCTestCase {
     }
 
     let validSession = Session.validSession
-    try Dependencies[sut.clientID].sessionStorage.store(validSession)
+    Dependencies[sut.clientID].sessionStorage.store(validSession)
 
     let eventsTask = Task {
       await sut.authStateChanges.prefix(2).collect()
@@ -178,7 +178,7 @@ final class AuthClientTests: XCTestCase {
     expectNoDifference(events, [.initialSession, .signedOut])
     expectNoDifference(sessions, [validSession, nil])
 
-    let sessionRemoved = try Dependencies[sut.clientID].sessionStorage.get() == nil
+    let sessionRemoved = Dependencies[sut.clientID].sessionStorage.get() == nil
     XCTAssertTrue(sessionRemoved)
   }
 
@@ -193,7 +193,7 @@ final class AuthClientTests: XCTestCase {
     }
 
     let validSession = Session.validSession
-    try Dependencies[sut.clientID].sessionStorage.store(validSession)
+    Dependencies[sut.clientID].sessionStorage.store(validSession)
 
     let eventsTask = Task {
       await sut.authStateChanges.prefix(2).collect()
@@ -209,7 +209,7 @@ final class AuthClientTests: XCTestCase {
     expectNoDifference(events, [.initialSession, .signedOut])
     expectNoDifference(sessions, [validSession, nil])
 
-    let sessionRemoved = try Dependencies[sut.clientID].sessionStorage.get() == nil
+    let sessionRemoved = Dependencies[sut.clientID].sessionStorage.get() == nil
     XCTAssertTrue(sessionRemoved)
   }
 
@@ -269,7 +269,7 @@ final class AuthClientTests: XCTestCase {
       )
     }
 
-    try Dependencies[sut.clientID].sessionStorage.store(.validSession)
+    Dependencies[sut.clientID].sessionStorage.store(.validSession)
 
     let response = try await sut.getLinkIdentityURL(provider: .github)
 
@@ -294,7 +294,7 @@ final class AuthClientTests: XCTestCase {
       )
     }
 
-    try Dependencies[sut.clientID].sessionStorage.store(.validSession)
+    Dependencies[sut.clientID].sessionStorage.store(.validSession)
 
     let receivedURL = LockIsolated<URL?>(nil)
     Dependencies[sut.clientID].urlOpener.open = { url in