Solian/lib/providers/auth.dart

import 'dart:convert';

import 'package:flutter/material.dart';
import 'package:flutter_secure_storage/flutter_secure_storage.dart';
import 'package:oauth2/oauth2.dart' as oauth2;
import 'package:solian/utils/service_url.dart';

class AuthProvider extends ChangeNotifier {
  AuthProvider();

  final deviceEndpoint = getRequestUri('passport', '/api/notifications/subscribe');
  final tokenEndpoint = getRequestUri('passport', '/api/auth/token');
  final userinfoEndpoint = getRequestUri('passport', '/api/users/me');
  final redirectUrl = Uri.parse('solian://auth');

  static const clientId = "solian";
  static const clientSecret = "_F4%q2Eea3";

  static const storage = FlutterSecureStorage();
  static const storageKey = "identity";
  static const profileKey = "profiles";

  /// Before use this variable to make request
  /// **MAKE SURE YOU HAVE CALL THE isAuthorized() METHOD**
  oauth2.Client? client;

  DateTime? lastRefreshedAt;

  Future<bool> pickClient() async {
    if (await storage.containsKey(key: storageKey)) {
      try {
        final credentials = oauth2.Credentials.fromJson((await storage.read(key: storageKey))!);
        client = oauth2.Client(credentials, identifier: clientId, secret: clientSecret);
        await fetchProfiles();
        return true;
      } catch (e) {
        signoff();
        return false;
      }
    } else {
      return false;
    }
  }

  Future<oauth2.Client> createClient(BuildContext context, String username, String password) async {
    if (await pickClient()) {
      return client!;
    }

    return await oauth2.resourceOwnerPasswordGrant(
      tokenEndpoint,
      username,
      password,
      identifier: clientId,
      secret: clientSecret,
      scopes: ["openid"],
      basicAuth: false,
    );
  }

  Future<void> fetchProfiles() async {
    if (client != null) {
      var userinfo = await client!.get(userinfoEndpoint);
      storage.write(key: profileKey, value: utf8.decode(userinfo.bodyBytes));
    }
    notifyListeners();
  }

  Future<void> refreshToken() async {
    if (client != null) {
      final credentials =
          await client!.credentials.refresh(identifier: clientId, secret: clientSecret, basicAuth: false);
      client = oauth2.Client(credentials, identifier: clientId, secret: clientSecret);
      storage.write(key: storageKey, value: credentials.toJson());
    }
    notifyListeners();
  }

  Future<void> signin(BuildContext context, String username, String password) async {
    client = await createClient(context, username, password);
    storage.write(key: storageKey, value: client!.credentials.toJson());

    await fetchProfiles();
  }

  void signoff() {
    storage.delete(key: profileKey);
    storage.delete(key: storageKey);
  }

  Future<bool> isAuthorized() async {
    const storage = FlutterSecureStorage();
    if (await storage.containsKey(key: storageKey)) {
      if (client == null) {
        await pickClient();
      }
      if (lastRefreshedAt == null || DateTime.now().subtract(const Duration(minutes: 3)).isAfter(lastRefreshedAt!)) {
        await refreshToken();
        lastRefreshedAt = DateTime.now();
      }
      return true;
    } else {
      return false;
    }
  }

  Future<dynamic> getProfiles() async {
    const storage = FlutterSecureStorage();
    return jsonDecode(await storage.read(key: profileKey) ?? "{}");
  }
}