tokens refresh when jwt is expired and added basic axios config

2025-07-07 15:18:50 +00:00 · 2025-06-25 07:56:30 +02:00 · 2025-06-25 07:56:30 +02:00 · fbf645ba0f
commit fbf645ba0f
parent c48498af95
15 changed files with 470 additions and 289 deletions
--- a/code/frontend/src/App.tsx
+++ b/code/frontend/src/App.tsx
@ -7,26 +7,29 @@ import Footer from "./components/Footer";
 import Header from "./components/header";
 import Profile from "./pages/Profile";
 import { BrowserRouter as Router, Routes, Route } from "react-router-dom";
+import { Auth } from "./api/Auth";

 function App() {
  return (
-    <Router>
-      <div className="App">
-        <Header />
-        <Routes>
-          <Route
-            path="/login"
-            element={<LoginAndSignUpPage signupProp={false} />}
-          ></Route>
-          <Route
-            path="/register"
-            element={<LoginAndSignUpPage signupProp={true} />}
-          ></Route>
-          <Route path="/profile" element={<Profile />}></Route>
-        </Routes>
-        <Footer />
-      </div>
-    </Router>
+    <Auth>
+      <Router>
+        <div className="App">
+          <Header />
+          <Routes>
+            <Route
+              path="/login"
+              element={<LoginAndSignUpPage signupProp={false} />}
+            ></Route>
+            <Route
+              path="/register"
+              element={<LoginAndSignUpPage signupProp={true} />}
+            ></Route>
+            <Route path="/profile" element={<Profile />}></Route>
+          </Routes>
+          <Footer />
+        </div>
+      </Router>
+    </Auth>
  );
 }

--- a/code/frontend/src/api/Auth.tsx
+++ b/code/frontend/src/api/Auth.tsx
@ -0,0 +1,94 @@
+import {
+  createContext,
+  useContext,
+  useState,
+  ReactNode,
+  FC,
+  useEffect,
+} from "react";
+import api from "./axios";
+import { jwtDecode } from "jwt-decode";
+import { redirectToLogin } from "./axios";
+import { refreshToken } from "./refreshToken";
+
+type User = {
+  id: string;
+  username: string;
+  role: string;
+};
+
+type AuthContextType = {
+  user: User | null;
+  logout: () => Promise<void>;
+  setUserState: (tryRefresh?: boolean) => Promise<void>;
+};
+type JwtPayload = {
+  username: string;
+  role: string;
+  sub: string;
+  jti: string;
+  iat: number;
+  exp: number;
+  iss: string;
+};
+
+const AuthContext = createContext<AuthContextType | null>(null);
+
+type AuthProviderProps = {
+  children: ReactNode;
+};
+
+export const Auth: FC<AuthProviderProps> = ({ children }) => {
+  const [user, setUser] = useState<User | null>(null);
+  useEffect(() => {
+    setUserState();
+  }, []);
+
+  const setUserState = async (tryRefresh = true) => {
+    try {
+      const token = localStorage.getItem("token");
+      if (!token) return;
+      const now = Date.now() / 1000;
+      const decoded = jwtDecode<JwtPayload>(token);
+
+      if (decoded.exp > now) {
+        setUser({
+          id: decoded.sub,
+          username: decoded.username,
+          role: decoded.role,
+        });
+      } else if (tryRefresh) {
+        await refreshToken();
+        await setUserState(false);
+      }
+    } catch {
+      console.log("Error while reading and refreshing user info"); // this error should only appear if the app is run in strictMode
+      return;
+    }
+  };
+
+  const logout = async () => {
+    try {
+      await api.delete("/user/logout");
+    } catch {
+      console.log("Logout error");
+    }
+    localStorage.clear();
+    setUser(null);
+    redirectToLogin(false);
+  };
+
+  return (
+    <AuthContext.Provider value={{ user, logout, setUserState }}>
+      {children}
+    </AuthContext.Provider>
+  );
+};
+
+export const useAuth = (): AuthContextType => {
+  const ctx = useContext(AuthContext);
+  if (!ctx) {
+    throw new Error("useAuth must be used within an AuthProvider");
+  }
+  return ctx;
+};
--- a/code/frontend/src/api/axios.ts
+++ b/code/frontend/src/api/axios.ts
@ -0,0 +1,67 @@
+import axios from "axios";
+import { refreshToken } from "./refreshToken";
+
+const excludedUrls: string[] = ["/user/login", "/user/regiser"];
+
+const api = axios.create({
+  baseURL: "http://localhost:3001/api",
+  withCredentials: true,
+});
+
+// get token from local storage
+const getAccessToken = () => localStorage.getItem("token");
+const getRefreshToken = () => localStorage.getItem("refreshToken");
+
+//redirects the page to the login and back
+export const redirectToLogin = (returnToPage = true) => {
+  if (returnToPage) {
+    const returnTo = window.location.pathname + window.location.search;
+    window.location.href = `/login?returnTo=${encodeURIComponent(returnTo)}`;
+  } else {
+    window.location.href = "/login";
+  }
+};
+
+// Request interceptor add token
+api.interceptors.request.use((config) => {
+  const token = getAccessToken();
+  if (token && config.headers) {
+    config.headers["Authorization"] = `Bearer ${token}`;
+  }
+  return config;
+});
+
+// retry with new token
+api.interceptors.response.use(
+  (response) => response,
+  async (error) => {
+    const originalRequest = error.config;
+    const isExcluded = excludedUrls.some((url) =>
+      originalRequest.url?.includes(url)
+    );
+
+    if (
+      error.response?.status === 401 &&
+      !originalRequest._retry &&
+      !isExcluded
+    ) {
+      await refreshToken();
+      originalRequest._retry = true;
+      return api(originalRequest);
+    }
+
+    if (
+      error.response?.status === 401 &&
+      originalRequest._retry &&
+      !isExcluded
+    ) {
+      localStorage.removeItem("token");
+      localStorage.removeItem("refreshToken");
+      redirectToLogin();
+    }
+
+    return Promise.reject(error);
+  }
+);
+
+export default api;
--- a/code/frontend/src/api/refreshToken.ts
+++ b/code/frontend/src/api/refreshToken.ts
@ -0,0 +1,28 @@
+import axios from "axios";
+const getRefreshToken = () => localStorage.getItem("refreshToken");
+
+export const refreshToken = async () => {
+  const token = getRefreshToken();
+
+  if (!token) {
+    throw new Error("No refresh token available");
+  }
+  const response = await axios.get(
+    "http://localhost:3001/api/user/refreshToken",
+    {
+      headers: {
+        "Refresh-Token": getRefreshToken(),
+      },
+      withCredentials: true,
+    }
+  );
+  const authHeader = response.headers["authorization"];
+  if (authHeader && authHeader.startsWith("Bearer ")) {
+    const token = authHeader.substring(7);
+    localStorage.setItem("token", token);
+  }
+  const refreshToken = response.headers["refresh-token"];
+  if (refreshToken) {
+    localStorage.setItem("refreshToken", refreshToken);
+  }
+};
--- a/code/frontend/src/components/Footer.tsx
+++ b/code/frontend/src/components/Footer.tsx
@ -1,6 +1,10 @@
 import "./footer.css";
 import { Link } from "react-router-dom";
+import { useAuth } from "../api/Auth";
 function Footer() {
+  const { user } = useAuth();
+  const { logout } = useAuth();
+
  return (
    <footer className="footer">
      <div className="footer-left">
@ -11,6 +15,7 @@ function Footer() {
        <a
          href="https://github.com/bubblecup-12/VogelSocialMedia"
          target="_blank"
+          rel="noreferrer"
          className="footer-link github"
        >
          <img src="/assets/icons/github-mark.svg" alt="GitHub mark" />
@ -18,17 +23,24 @@ function Footer() {
          <img src="/assets/icons/GitHub_Logo.png" alt="GitHub logo" />
        </a>
      </div>
-
      <div className="footer-right">
        <Link className="footer-link" to="/">
          Feed
        </Link>
-        <Link className="footer-link" to="login">
-          Login
-        </Link>
-        <Link className="footer-link" to="/register">
-          Sign up
-        </Link>
+        {user ? (
+          <a className="footer-link" onClick={logout}>
+            Logout
+          </a>
+        ) : (
+          <>
+            <Link className="footer-link" to="login">
+              Login
+            </Link>
+            <Link className="footer-link" to="/register">
+              Sign up
+            </Link>
+          </>
+        )}
        <Link className="footer-link" to="/">
          Create Post
        </Link>
--- a/code/frontend/src/index.tsx
+++ b/code/frontend/src/index.tsx
@ -1,11 +1,11 @@
-import React from 'react';
-import ReactDOM from 'react-dom/client';
-import './index.css';
-import App from './App';
-import reportWebVitals from './reportWebVitals';
+import React from "react";
+import ReactDOM from "react-dom/client";
+import "./index.css";
+import App from "./App";
+import reportWebVitals from "./reportWebVitals";

 const root = ReactDOM.createRoot(
-  document.getElementById('root') as HTMLElement
+  document.getElementById("root") as HTMLElement
 );
 root.render(
  <React.StrictMode>
--- a/code/frontend/src/logo.svg
+++ b/code/frontend/src/logo.svg
@ -1 +0,0 @@
-<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 841.9 595.3"><g fill="#61DAFB"><path d="M666.3 296.5c0-32.5-40.7-63.3-103.1-82.4 14.4-63.6 8-114.2-20.2-130.4-6.5-3.8-14.1-5.6-22.4-5.6v22.3c4.6 0 8.3.9 11.4 2.6 13.6 7.8 19.5 37.5 14.9 75.7-1.1 9.4-2.9 19.3-5.1 29.4-19.6-4.8-41-8.5-63.5-10.9-13.5-18.5-27.5-35.3-41.6-50 32.6-30.3 63.2-46.9 84-46.9V78c-27.5 0-63.5 19.6-99.9 53.6-36.4-33.8-72.4-53.2-99.9-53.2v22.3c20.7 0 51.4 16.5 84 46.6-14 14.7-28 31.4-41.3 49.9-22.6 2.4-44 6.1-63.6 11-2.3-10-4-19.7-5.2-29-4.7-38.2 1.1-67.9 14.6-75.8 3-1.8 6.9-2.6 11.5-2.6V78.5c-8.4 0-16 1.8-22.6 5.6-28.1 16.2-34.4 66.7-19.9 130.1-62.2 19.2-102.7 49.9-102.7 82.3 0 32.5 40.7 63.3 103.1 82.4-14.4 63.6-8 114.2 20.2 130.4 6.5 3.8 14.1 5.6 22.5 5.6 27.5 0 63.5-19.6 99.9-53.6 36.4 33.8 72.4 53.2 99.9 53.2 8.4 0 16-1.8 22.6-5.6 28.1-16.2 34.4-66.7 19.9-130.1 62-19.1 102.5-49.9 102.5-82.3zm-130.2-66.7c-3.7 12.9-8.3 26.2-13.5 39.5-4.1-8-8.4-16-13.1-24-4.6-8-9.5-15.8-14.4-23.4 14.2 2.1 27.9 4.7 41 7.9zm-45.8 106.5c-7.8 13.5-15.8 26.3-24.1 38.2-14.9 1.3-30 2-45.2 2-15.1 0-30.2-.7-45-1.9-8.3-11.9-16.4-24.6-24.2-38-7.6-13.1-14.5-26.4-20.8-39.8 6.2-13.4 13.2-26.8 20.7-39.9 7.8-13.5 15.8-26.3 24.1-38.2 14.9-1.3 30-2 45.2-2 15.1 0 30.2.7 45 1.9 8.3 11.9 16.4 24.6 24.2 38 7.6 13.1 14.5 26.4 20.8 39.8-6.3 13.4-13.2 26.8-20.7 39.9zm32.3-13c5.4 13.4 10 26.8 13.8 39.8-13.1 3.2-26.9 5.9-41.2 8 4.9-7.7 9.8-15.6 14.4-23.7 4.6-8 8.9-16.1 13-24.1zM421.2 430c-9.3-9.6-18.6-20.3-27.8-32 9 .4 18.2.7 27.5.7 9.4 0 18.7-.2 27.8-.7-9 11.7-18.3 22.4-27.5 32zm-74.4-58.9c-14.2-2.1-27.9-4.7-41-7.9 3.7-12.9 8.3-26.2 13.5-39.5 4.1 8 8.4 16 13.1 24 4.7 8 9.5 15.8 14.4 23.4zM420.7 163c9.3 9.6 18.6 20.3 27.8 32-9-.4-18.2-.7-27.5-.7-9.4 0-18.7.2-27.8.7 9-11.7 18.3-22.4 27.5-32zm-74 58.9c-4.9 7.7-9.8 15.6-14.4 23.7-4.6 8-8.9 16-13 24-5.4-13.4-10-26.8-13.8-39.8 13.1-3.1 26.9-5.8 41.2-7.9zm-90.5 125.2c-35.4-15.1-58.3-34.9-58.3-50.6 0-15.7 22.9-35.6 58.3-50.6 8.6-3.7 18-7 27.7-10.1 5.7 19.6 13.2 40 22.5 60.9-9.2 20.8-16.6 41.1-22.2 60.6-9.9-3.1-19.3-6.5-28-10.2zM310 490c-13.6-7.8-19.5-37.5-14.9-75.7 1.1-9.4 2.9-19.3 5.1-29.4 19.6 4.8 41 8.5 63.5 10.9 13.5 18.5 27.5 35.3 41.6 50-32.6 30.3-63.2 46.9-84 46.9-4.5-.1-8.3-1-11.3-2.7zm237.2-76.2c4.7 38.2-1.1 67.9-14.6 75.8-3 1.8-6.9 2.6-11.5 2.6-20.7 0-51.4-16.5-84-46.6 14-14.7 28-31.4 41.3-49.9 22.6-2.4 44-6.1 63.6-11 2.3 10.1 4.1 19.8 5.2 29.1zm38.5-66.7c-8.6 3.7-18 7-27.7 10.1-5.7-19.6-13.2-40-22.5-60.9 9.2-20.8 16.6-41.1 22.2-60.6 9.9 3.1 19.3 6.5 28.1 10.2 35.4 15.1 58.3 34.9 58.3 50.6-.1 15.7-23 35.6-58.4 50.6zM320.8 78.4z"/><circle cx="420.9" cy="296.5" r="45.7"/><path d="M520.5 78.1z"/></g></svg>
--- a/code/frontend/src/pages/LoginAndSignUpPage.tsx
+++ b/code/frontend/src/pages/LoginAndSignUpPage.tsx
@ -1,7 +1,9 @@
 import "./loginAndSignUpPage.css";
 import { useEffect, useState } from "react";
-import axios from "axios";
+import api from "../api/axios";
 import ButtonRotkehlchen from "../components/ButtonRotkehlchen";
+import { useLocation, useNavigate } from "react-router-dom";
+import { useAuth } from "../api/Auth";

 type FormData = {
  username: string;
@ -15,6 +17,14 @@ function LoginAndSignUpPage({ signupProp }: { signupProp: boolean }) {
    error: String;
    details: { message: string }[];
  }>();
+
+  const location = useLocation();
+  const navigate = useNavigate();
+
+  const { setUserState } = useAuth();
+  const returnTo =
+    new URLSearchParams(location.search).get("returnTo") || "/feed";
+
  useEffect(() => {
    setSignup(signupProp);
  }, [signupProp]);
@ -34,24 +44,28 @@ function LoginAndSignUpPage({ signupProp }: { signupProp: boolean }) {
    setErrorMessages(undefined);
    try {
      const response = signup
-        ? await axios.post("http://localhost:3001/api/user/register", {
+        ? await api.post("http://localhost:3001/api/user/register", {
            email: formData.email,
            username: formData.username,
            password: formData.password,
          })
-        : await axios.post("http://localhost:3001/api/user/login", {
+        : await api.post("http://localhost:3001/api/user/login", {
            username: formData.username,
            password: formData.password,
          });
      const authHeader = response.headers["authorization"];
      if (authHeader && authHeader.startsWith("Bearer ")) {
        const token = authHeader.substring(7);
-        console.log(token, "Hello");
        localStorage.setItem("token", token);
      }
+      const refreshToken = response.headers["refresh-token"];
+      if (refreshToken) {
+        localStorage.setItem("refreshToken", refreshToken);
+      }
+      await setUserState();
+      navigate(returnTo, { replace: true });
    } catch (err: any) {
      setErrorMessages(err.response.data);
-      console.error("error:", err.response.data);
    }
  };

--- a/code/frontend/src/setupTests.ts
+++ b/code/frontend/src/setupTests.ts
@ -1,5 +0,0 @@
-// jest-dom adds custom jest matchers for asserting on DOM nodes.
-// allows you to do things like:
-// expect(element).toHaveTextContent(/react/i)
-// learn more: https://github.com/testing-library/jest-dom
-import '@testing-library/jest-dom';
				`@ -1 +0,0 @@`
				<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 841.9 595.3"><g fill="#61DAFB"><path d="M666.3 296.5c0-32.5-40.7-63.3-103.1-82.4 14.4-63.6 8-114.2-20.2-130.4-6.5-3.8-14.1-5.6-22.4-5.6v22.3c4.6 0 8.3.9 11.4 2.6 13.6 7.8 19.5 37.5 14.9 75.7-1.1 9.4-2.9 19.3-5.1 29.4-19.6-4.8-41-8.5-63.5-10.9-13.5-18.5-27.5-35.3-41.6-50 32.6-30.3 63.2-46.9 84-46.9V78c-27.5 0-63.5 19.6-99.9 53.6-36.4-33.8-72.4-53.2-99.9-53.2v22.3c20.7 0 51.4 16.5 84 46.6-14 14.7-28 31.4-41.3 49.9-22.6 2.4-44 6.1-63.6 11-2.3-10-4-19.7-5.2-29-4.7-38.2 1.1-67.9 14.6-75.8 3-1.8 6.9-2.6 11.5-2.6V78.5c-8.4 0-16 1.8-22.6 5.6-28.1 16.2-34.4 66.7-19.9 130.1-62.2 19.2-102.7 49.9-102.7 82.3 0 32.5 40.7 63.3 103.1 82.4-14.4 63.6-8 114.2 20.2 130.4 6.5 3.8 14.1 5.6 22.5 5.6 27.5 0 63.5-19.6 99.9-53.6 36.4 33.8 72.4 53.2 99.9 53.2 8.4 0 16-1.8 22.6-5.6 28.1-16.2 34.4-66.7 19.9-130.1 62-19.1 102.5-49.9 102.5-82.3zm-130.2-66.7c-3.7 12.9-8.3 26.2-13.5 39.5-4.1-8-8.4-16-13.1-24-4.6-8-9.5-15.8-14.4-23.4 14.2 2.1 27.9 4.7 41 7.9zm-45.8 106.5c-7.8 13.5-15.8 26.3-24.1 38.2-14.9 1.3-30 2-45.2 2-15.1 0-30.2-.7-45-1.9-8.3-11.9-16.4-24.6-24.2-38-7.6-13.1-14.5-26.4-20.8-39.8 6.2-13.4 13.2-26.8 20.7-39.9 7.8-13.5 15.8-26.3 24.1-38.2 14.9-1.3 30-2 45.2-2 15.1 0 30.2.7 45 1.9 8.3 11.9 16.4 24.6 24.2 38 7.6 13.1 14.5 26.4 20.8 39.8-6.3 13.4-13.2 26.8-20.7 39.9zm32.3-13c5.4 13.4 10 26.8 13.8 39.8-13.1 3.2-26.9 5.9-41.2 8 4.9-7.7 9.8-15.6 14.4-23.7 4.6-8 8.9-16.1 13-24.1zM421.2 430c-9.3-9.6-18.6-20.3-27.8-32 9 .4 18.2.7 27.5.7 9.4 0 18.7-.2 27.8-.7-9 11.7-18.3 22.4-27.5 32zm-74.4-58.9c-14.2-2.1-27.9-4.7-41-7.9 3.7-12.9 8.3-26.2 13.5-39.5 4.1 8 8.4 16 13.1 24 4.7 8 9.5 15.8 14.4 23.4zM420.7 163c9.3 9.6 18.6 20.3 27.8 32-9-.4-18.2-.7-27.5-.7-9.4 0-18.7.2-27.8.7 9-11.7 18.3-22.4 27.5-32zm-74 58.9c-4.9 7.7-9.8 15.6-14.4 23.7-4.6 8-8.9 16-13 24-5.4-13.4-10-26.8-13.8-39.8 13.1-3.1 26.9-5.8 41.2-7.9zm-90.5 125.2c-35.4-15.1-58.3-34.9-58.3-50.6 0-15.7 22.9-35.6 58.3-50.6 8.6-3.7 18-7 27.7-10.1 5.7 19.6 13.2 40 22.5 60.9-9.2 20.8-16.6 41.1-22.2 60.6-9.9-3.1-19.3-6.5-28-10.2zM310 490c-13.6-7.8-19.5-37.5-14.9-75.7 1.1-9.4 2.9-19.3 5.1-29.4 19.6 4.8 41 8.5 63.5 10.9 13.5 18.5 27.5 35.3 41.6 50-32.6 30.3-63.2 46.9-84 46.9-4.5-.1-8.3-1-11.3-2.7zm237.2-76.2c4.7 38.2-1.1 67.9-14.6 75.8-3 1.8-6.9 2.6-11.5 2.6-20.7 0-51.4-16.5-84-46.6 14-14.7 28-31.4 41.3-49.9 22.6-2.4 44-6.1 63.6-11 2.3 10.1 4.1 19.8 5.2 29.1zm38.5-66.7c-8.6 3.7-18 7-27.7 10.1-5.7-19.6-13.2-40-22.5-60.9 9.2-20.8 16.6-41.1 22.2-60.6 9.9 3.1 19.3 6.5 28.1 10.2 35.4 15.1 58.3 34.9 58.3 50.6-.1 15.7-23 35.6-58.4 50.6zM320.8 78.4z"/><circle cx="420.9" cy="296.5" r="45.7"/><path d="M520.5 78.1z"/></g></svg>