immich/mobile/lib/routing/auth_guard.dart

import 'dart:io';

import 'package:auto_route/auto_route.dart';
import 'package:immich_mobile/routing/router.dart';
import 'package:immich_mobile/shared/models/store.dart';
import 'package:immich_mobile/shared/services/api.service.dart';
import 'package:logging/logging.dart';
import 'package:openapi/api.dart';

class AuthGuard extends AutoRouteGuard {
  final ApiService _apiService;
  final _log = Logger("AuthGuard");
  AuthGuard(this._apiService);
  @override
  void onNavigation(NavigationResolver resolver, StackRouter router) async {
    resolver.next(true);

    try {
      // Look in the store for an access token
      Store.get(StoreKey.accessToken);

      // Validate the access token with the server
      final res = await _apiService.authenticationApi.validateAccessToken();
      if (res == null || res.authStatus != true) {
        // If the access token is invalid, take user back to login
        _log.fine('User token is invalid. Redirecting to login');
        router.replaceAll([const LoginRoute()]);
      }
    } on StoreKeyNotFoundException catch (_) {
      // If there is no access token, take us to the login page
      _log.warning('No access token in the store.');
      router.replaceAll([const LoginRoute()]);
      return;
    } on ApiException catch (e) {
      // On an unauthorized request, take us to the login page
      if (e.code == HttpStatus.unauthorized) {
        _log.warning("Unauthorized access token.");
        router.replaceAll([const LoginRoute()]);
        return;
      }
    } catch (e) {
      // Otherwise, this is not fatal, but we still log the warning
      _log.warning('Error validating access token from server: $e');
    }
  }
}
feature(mobile): allow app to be used offline (#1932) * feature(mobile): allow app to be used offline * translatable server/network error message * adjust profile drawer error message * call getAllAsset after cold app starts * fix analyzer error * update asset state if length differs --------- Co-authored-by: Alex <alex.tran1502@gmail.com> 2023-03-15 23:29:07 +02:00			`import 'dart:io';`

Transfer repository from Gitlab 2022-02-03 18:06:44 +02:00			`import 'package:auto_route/auto_route.dart';`
Refactor mobile to use OpenApi generated SDK (#336) 2022-07-13 14:23:48 +02:00			`import 'package:immich_mobile/routing/router.dart';`
fix(mobile): Stop sending app to login page for unrelated auth errors (#7383) Now we only validate access token when we have one in the store and only send you to the login page when the response from the server is a 401 linter Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2024-02-27 05:25:39 +02:00			`import 'package:immich_mobile/shared/models/store.dart';`
Refactor mobile to use OpenApi generated SDK (#336) 2022-07-13 14:23:48 +02:00			`import 'package:immich_mobile/shared/services/api.service.dart';`
feat(mobile) - Add better offline support (#3279) * WIP: Adding init support for offline-loading * WIP: found bug and fixed with offline browing adv setting * WIP: big some bugs with first login * WIP: static analysis fixes * PR: Removed setting for offline browing * PR: static analysis - remove imports * PR: Refactored user login state * PR: changed logger log level as it happens a lot * PR: change log var to _log * PR: addressing comments * WIP: bug fixes * WIP: static analysis on the logger variable 2023-07-28 05:05:27 +02:00			`import 'package:logging/logging.dart';`
feature(mobile): allow app to be used offline (#1932) * feature(mobile): allow app to be used offline * translatable server/network error message * adjust profile drawer error message * call getAllAsset after cold app starts * fix analyzer error * update asset state if length differs --------- Co-authored-by: Alex <alex.tran1502@gmail.com> 2023-03-15 23:29:07 +02:00			`import 'package:openapi/api.dart';`
Transfer repository from Gitlab 2022-02-03 18:06:44 +02:00
			`class AuthGuard extends AutoRouteGuard {`
Refactor mobile to use OpenApi generated SDK (#336) 2022-07-13 14:23:48 +02:00			`final ApiService _apiService;`
feat(mobile) - Add better offline support (#3279) * WIP: Adding init support for offline-loading * WIP: found bug and fixed with offline browing adv setting * WIP: big some bugs with first login * WIP: static analysis fixes * PR: Removed setting for offline browing * PR: static analysis - remove imports * PR: Refactored user login state * PR: changed logger log level as it happens a lot * PR: change log var to _log * PR: addressing comments * WIP: bug fixes * WIP: static analysis on the logger variable 2023-07-28 05:05:27 +02:00			`final _log = Logger("AuthGuard");`
Refactor mobile to use OpenApi generated SDK (#336) 2022-07-13 14:23:48 +02:00			`AuthGuard(this._apiService);`
Transfer repository from Gitlab 2022-02-03 18:06:44 +02:00			`@override`
			`void onNavigation(NavigationResolver resolver, StackRouter router) async {`
feat(mobile) - Add better offline support (#3279) * WIP: Adding init support for offline-loading * WIP: found bug and fixed with offline browing adv setting * WIP: big some bugs with first login * WIP: static analysis fixes * PR: Removed setting for offline browing * PR: static analysis - remove imports * PR: Refactored user login state * PR: changed logger log level as it happens a lot * PR: change log var to _log * PR: addressing comments * WIP: bug fixes * WIP: static analysis on the logger variable 2023-07-28 05:05:27 +02:00			`resolver.next(true);`

Transfer repository from Gitlab 2022-02-03 18:06:44 +02:00			`try {`
fix(mobile): Stop sending app to login page for unrelated auth errors (#7383) Now we only validate access token when we have one in the store and only send you to the login page when the response from the server is a 401 linter Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2024-02-27 05:25:39 +02:00			`// Look in the store for an access token`
			`Store.get(StoreKey.accessToken);`

			`// Validate the access token with the server`
			`final res = await _apiService.authenticationApi.validateAccessToken();`
feat(mobile) - Add better offline support (#3279) * WIP: Adding init support for offline-loading * WIP: found bug and fixed with offline browing adv setting * WIP: big some bugs with first login * WIP: static analysis fixes * PR: Removed setting for offline browing * PR: static analysis - remove imports * PR: Refactored user login state * PR: changed logger log level as it happens a lot * PR: change log var to _log * PR: addressing comments * WIP: bug fixes * WIP: static analysis on the logger variable 2023-07-28 05:05:27 +02:00			`if (res == null \|\| res.authStatus != true) {`
			`// If the access token is invalid, take user back to login`
fix(mobile): Stop sending app to login page for unrelated auth errors (#7383) Now we only validate access token when we have one in the store and only send you to the login page when the response from the server is a 401 linter Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2024-02-27 05:25:39 +02:00			`_log.fine('User token is invalid. Redirecting to login');`
Refactor mobile to use OpenApi generated SDK (#336) 2022-07-13 14:23:48 +02:00			`router.replaceAll([const LoginRoute()]);`
Transfer repository from Gitlab 2022-02-03 18:06:44 +02:00			`}`
fix(mobile): Stop sending app to login page for unrelated auth errors (#7383) Now we only validate access token when we have one in the store and only send you to the login page when the response from the server is a 401 linter Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2024-02-27 05:25:39 +02:00			`} on StoreKeyNotFoundException catch (_) {`
			`// If there is no access token, take us to the login page`
			`_log.warning('No access token in the store.');`
			`router.replaceAll([const LoginRoute()]);`
			`return;`
feature(mobile): allow app to be used offline (#1932) * feature(mobile): allow app to be used offline * translatable server/network error message * adjust profile drawer error message * call getAllAsset after cold app starts * fix analyzer error * update asset state if length differs --------- Co-authored-by: Alex <alex.tran1502@gmail.com> 2023-03-15 23:29:07 +02:00			`} on ApiException catch (e) {`
fix(mobile): Stop sending app to login page for unrelated auth errors (#7383) Now we only validate access token when we have one in the store and only send you to the login page when the response from the server is a 401 linter Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2024-02-27 05:25:39 +02:00			`// On an unauthorized request, take us to the login page`
			`if (e.code == HttpStatus.unauthorized) {`
			`_log.warning("Unauthorized access token.");`
feature(mobile): allow app to be used offline (#1932) * feature(mobile): allow app to be used offline * translatable server/network error message * adjust profile drawer error message * call getAllAsset after cold app starts * fix analyzer error * update asset state if length differs --------- Co-authored-by: Alex <alex.tran1502@gmail.com> 2023-03-15 23:29:07 +02:00			`router.replaceAll([const LoginRoute()]);`
feat(mobile) - Add better offline support (#3279) * WIP: Adding init support for offline-loading * WIP: found bug and fixed with offline browing adv setting * WIP: big some bugs with first login * WIP: static analysis fixes * PR: Removed setting for offline browing * PR: static analysis - remove imports * PR: Refactored user login state * PR: changed logger log level as it happens a lot * PR: change log var to _log * PR: addressing comments * WIP: bug fixes * WIP: static analysis on the logger variable 2023-07-28 05:05:27 +02:00			`return;`
feature(mobile): allow app to be used offline (#1932) * feature(mobile): allow app to be used offline * translatable server/network error message * adjust profile drawer error message * call getAllAsset after cold app starts * fix analyzer error * update asset state if length differs --------- Co-authored-by: Alex <alex.tran1502@gmail.com> 2023-03-15 23:29:07 +02:00			`}`
feat(mobile) - Add better offline support (#3279) * WIP: Adding init support for offline-loading * WIP: found bug and fixed with offline browing adv setting * WIP: big some bugs with first login * WIP: static analysis fixes * PR: Removed setting for offline browing * PR: static analysis - remove imports * PR: Refactored user login state * PR: changed logger log level as it happens a lot * PR: change log var to _log * PR: addressing comments * WIP: bug fixes * WIP: static analysis on the logger variable 2023-07-28 05:05:27 +02:00			`} catch (e) {`
fix(mobile): Stop sending app to login page for unrelated auth errors (#7383) Now we only validate access token when we have one in the store and only send you to the login page when the response from the server is a 401 linter Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2024-02-27 05:25:39 +02:00			`// Otherwise, this is not fatal, but we still log the warning`
			`_log.warning('Error validating access token from server: $e');`
Transfer repository from Gitlab 2022-02-03 18:06:44 +02:00			`}`
			`}`
			`}`