Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(#80): AuthInterceptor implementation is incomplete #91

Open
wants to merge 38 commits into
base: master
Choose a base branch
from
Open

fix(#80): AuthInterceptor implementation is incomplete #91

wants to merge 38 commits into from

Conversation

nivisi
Copy link
Contributor

@nivisi nivisi commented Jan 6, 2023
edited
Loading

Resolves #80

Introduced:

  • A new Authenticator class that is responsible for:
    • Making the tokens accessible by other classes such as interceptors. This class is the source of truth
    • Trying to reauthenticate the user. The new interceptor, ApiAuthInterceptor, is using Authenticator to reauth if needed.
  • A new ApiAuthInterceptor class. It is a rewritten version of the old interceptor — more readable and straightforward. This interceptor is a QueuedInterceptor now — meaning that, if we await for something, other request calls will wait until this call is resolved.

Both of the classes are covered with tests. If you think that not all the scenarios are covered — please let me know, I'll add those.

Also, we now use FlutterSecureStorage for storing the tokens. It is safer. BUT! This storage survives app uninstallation IIRC. So we should consider creating something that will detect fresh installation and clear the storage. Something like storing a value with the freshInstallation key in the shared prefs of the app.

Changes with build context and response errors are related to the freezed generator failing to build with material library imports..

@nivisi
chore(ml-opensource#80): Use ApplicationConfig
6135712
@nivisi
chore(ml-opensource#80): Inject AppConfig manually
6b79f94
@nivisi
chore(ml-opensource#80): Add FlutterSecureStorage
cf8464c
@nivisi
chore(ml-opensource#80): Remove Dio from data_module
6f849c0
@nivisi
chore(ml-opensource#80): Register ApiConfig correctly
893f0be
@nivisi
chore(ml-opensource#80): Configure Dios
d80d25f
@nivisi
chore(ml-opensource#80): Add expiresAt & expiresSoon to authTokens
716cae3
@nivisi
fix: Make ApplicationConfig factory const
6792e4c
@nivisi
chore(ml-opensource#80): Introduce AuthTokenStorage
046c236
@nivisi
fix(ml-opensource#80): Remove injectable from DioHttpClient
400cb02
@nivisi
nit
1b92abc
@nivisi
chore(ml-opensource#80): Introduce Authenticator
6a766f2
@nivisi
chore(ml-opensource#80): Introduce new ApiAuthInterceptor
1ca53d6
@nivisi
nit(ml-opensource#80): Update Config & NetworkModule
96627e1
@nivisi
chore(ml-opensource#80): Add SecureAuthTokenStorage tests
102504b
@nivisi
chore(ml-opensource#80): Add Authenticator tests
ecdcfd2
@nivisi
chore(ml-opensource#80): Add ApiAuthInterceptor tests
5ca7cfa
@nivisi
nit
e75b5a3
@nivisi
chore(ml-opensource#80): Remove the new folder
a7100fb
@nivisi
chore(ml-opensource#80): Remove the old interceptor
50186a0
@nivisi
nit
e6300d7
@nivisi
chore(ml-opensource#80): Remove AuthPreferences
9816e6c
@nivisi
chore(ml-opensource#80): Make MetaInterceptor injectalbe
37aa7c7
@nivisi
nit
bca429c
@nivisi nivisi requested a review from johsoe January 6, 2023 09:31
@nivisi nivisi changed the title fix(/#80): AuthInterceptor implementation is incomplete fix(#80): AuthInterceptor implementation is incomplete Jan 6, 2023
johsoe
johsoe suggested changes Jan 19, 2023
View reviewed changes
lib/data/api/authenticator/authenticator.dart Outdated Show resolved Hide resolved
lib/data/model/auth/auth_tokens.dart
@@ -11,9 +12,21 @@ class AuthTokens with _$AuthTokens {
required String refreshToken,
required String tokenType,
required double expiresIn,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hmm, do we ever get this tbh? Shouldn't it just be expiresAt

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@johsoe in all the projects I've worked on we used expiresIn

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do we use expiresAt on other projects?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If that's the case, we should probably remove expiresAt - we shouldn't have both

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@johsoe johsoe johsoe approved these changes

@hassan-saleh-ml hassan-saleh-ml Awaiting requested review from hassan-saleh-ml

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

AuthInterceptor implementation is incomplete
2 participants
@nivisi @johsoe