Real authentication example?

[arcataroger]

I'm trying to figure out how to use SWR for user authentication, but the current example (from #325) isn't really sufficient. That example just mocks setting a cookie and retrieving it, but doesn't really cover where the fetch() happens, error handling, caching, etc. Those things get really complicated when we're trying to async login to a remote server, and it's not really clear to me how to chain several useSWR calls together to make a working system.

My use case is pretty basic:

• One SWR hook would login with a username and password and retrieve a JWT token
• Somewhere, somehow (any suggestions for best practices?), that JWT would be stored clientside... either in a cookie/localStorage or perhaps local state (React Context, Redux, etc.)
• Other SWR hooks would depend on that JWT token, as one of their parameters in the key, in order to make subsequent data fetches from the API
• Whenever the JWT token changes, the dependent SWR hooks should invalidate and refetch
• The JWT token itself might expire after X time. I'm thinking of just parsing the login server's expiration date and configuring the useSWR's invalidation time to be the same. But I'm not really sure if it's possible to change the config object of that hook dynamically, based on the server response

Even this relatively simple use case has me stumped, with a few questions I'm not sure how to answer, such as:

• Where exactly should I store stateful information (in this case the retrieved JWT auth token) between dependent SWR hooks?
• How can I invalidate a SWR call at a certain time?
• What's the best way to bubble up errors from the server response to the fetcher to the SWR hook to the UI?

Does anyone have a link to a better example or a more thorough writeup?

I'm experimenting with this on my own too, and if I manage to get it working, I'll post it here as a starting place for others...

Thanks!