Solian/lib/providers/auth.dart

import 'dart:async';
import 'dart:convert';
import 'dart:developer';

import 'package:flutter/material.dart';
import 'package:flutter_secure_storage/flutter_secure_storage.dart';
import 'package:get/get.dart';
import 'package:get/get_connect/http/src/request/request.dart';
import 'package:mutex/mutex.dart';
import 'package:solian/controllers/chat_events_controller.dart';
import 'package:solian/providers/account.dart';
import 'package:solian/providers/chat.dart';
import 'package:solian/services.dart';

class TokenSet {
  final String accessToken;
  final String refreshToken;
  final DateTime? expiredAt;

  TokenSet({
    required this.accessToken,
    required this.refreshToken,
    this.expiredAt,
  });

  factory TokenSet.fromJson(Map<String, dynamic> json) => TokenSet(
        accessToken: json['access_token'],
        refreshToken: json['refresh_token'],
        expiredAt: json['expired_at'] != null
            ? DateTime.parse(json['expired_at'])
            : null,
      );

  Map<String, dynamic> toJson() => {
        'access_token': accessToken,
        'refresh_token': refreshToken,
        'expired_at': expiredAt?.toIso8601String(),
      };

  bool get isExpired => expiredAt?.isBefore(DateTime.now()) ?? true;
}

class RiskyAuthenticateException implements Exception {
  final int ticketId;

  RiskyAuthenticateException(this.ticketId);
}

class AuthProvider extends GetConnect {
  final tokenEndpoint =
      Uri.parse('${ServiceFinder.services['passport']}/api/auth/token');

  static const clientId = 'solian';
  static const clientSecret = '_F4%q2Eea3';

  static const storage = FlutterSecureStorage();

  TokenSet? credentials;
  Mutex credentialsRefreshMutex = Mutex();

  @override
  void onInit() {
    httpClient.baseUrl = ServiceFinder.services['passport'];
    loadCredentials();
  }

  Future<void> refreshCredentials() async {
    try {
      credentialsRefreshMutex.acquire();
      if (!credentials!.isExpired) return;
      final resp = await post('/api/auth/token', {
        'refresh_token': credentials!.refreshToken,
        'grant_type': 'refresh_token',
      });
      if (resp.statusCode != 200) {
        throw Exception(resp.bodyString);
      }
      credentials = TokenSet(
        accessToken: resp.body['access_token'],
        refreshToken: resp.body['refresh_token'],
        expiredAt: DateTime.now().add(const Duration(minutes: 3)),
      );
      storage.write(
        key: 'auth_credentials',
        value: jsonEncode(credentials!.toJson()),
      );
    } catch (_) {
      rethrow;
    } finally {
      credentialsRefreshMutex.release();
    }
  }

  Future<Request<T?>> requestAuthenticator<T>(Request<T?> request) async {
    try {
      await ensureCredentials();
      request.headers['Authorization'] = 'Bearer ${credentials!.accessToken}';
    } catch (_) {}

    return request;
  }

  GetConnect configureClient(
    String service, {
    timeout = const Duration(seconds: 5),
  }) {
    final client = GetConnect(
      maxAuthRetries: 3,
      timeout: timeout,
      userAgent: 'Solian/1.1',
      sendUserAgent: true,
    );
    client.httpClient.addAuthenticator(requestAuthenticator);
    client.httpClient.baseUrl = ServiceFinder.services[service];

    return client;
  }

  Future<void> ensureCredentials() async {
    if (!await isAuthorized) throw Exception('unauthorized');
    if (credentials == null) await loadCredentials();

    if (credentials!.isExpired) {
      await refreshCredentials();
      log('Refreshed credentials at ${DateTime.now()}');
    }
  }

  Future<void> loadCredentials() async {
    if (await isAuthorized) {
      final content = await storage.read(key: 'auth_credentials');
      credentials = TokenSet.fromJson(jsonDecode(content!));
    }
  }

  Future<TokenSet> signin(
    BuildContext context,
    String username,
    String password,
  ) async {
    _cachedUserProfileResponse = null;

    final client = ServiceFinder.configureClient('passport');

    // Create ticket
    final resp = await client.post('/api/auth', {
      'username': username,
      'password': password,
    });
    if (resp.statusCode != 200) {
      throw Exception(resp.body);
    } else if (resp.body['is_finished'] == false) {
      throw RiskyAuthenticateException(resp.body['ticket']['id']);
    }

    // Assign token
    final tokenResp = await post('/api/auth/token', {
      'code': resp.body['ticket']['grant_token'],
      'grant_type': 'grant_token',
    });
    if (tokenResp.statusCode != 200) {
      throw Exception(tokenResp.bodyString);
    }

    credentials = TokenSet(
      accessToken: tokenResp.body['access_token'],
      refreshToken: tokenResp.body['refresh_token'],
      expiredAt: DateTime.now().add(const Duration(minutes: 3)),
    );

    storage.write(
      key: 'auth_credentials',
      value: jsonEncode(credentials!.toJson()),
    );

    Get.find<AccountProvider>().connect();
    Get.find<AccountProvider>().notifyPrefetch();
    Get.find<ChatProvider>().connect();

    return credentials!;
  }

  void signout() {
    _cachedUserProfileResponse = null;

    Get.find<ChatProvider>().disconnect();
    Get.find<AccountProvider>().disconnect();
    Get.find<AccountProvider>().notifications.clear();
    Get.find<AccountProvider>().notificationUnread.value = 0;

    final chatHistory = ChatEventController();
    chatHistory.initialize().then((_) async {
      await chatHistory.database.localEvents.wipeLocalEvents();
    });

    storage.deleteAll();
  }

  // Data Layer

  Response? _cachedUserProfileResponse;

  Future<bool> get isAuthorized => storage.containsKey(key: 'auth_credentials');

  Future<Response> getProfile({noCache = false}) async {
    if (!noCache && _cachedUserProfileResponse != null) {
      return _cachedUserProfileResponse!;
    }

    final client = configureClient('passport');

    final resp = await client.get('/api/users/me');
    if (resp.statusCode != 200) {
      throw Exception(resp.bodyString);
    } else {
      _cachedUserProfileResponse = resp;
    }

    return resp;
  }

  Future<Response?> getProfileWithCheck({noCache = false}) async {
    if (!await isAuthorized) return null;

    return await getProfile(noCache: noCache);
  }
}
:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`import 'dart:async';`
			`import 'dart:convert';`
:recycle: Better http client management, no more expired token 2024-06-06 12:49:18 +00:00			`import 'dart:developer';`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00
			`import 'package:flutter/material.dart';`
			`import 'package:flutter_secure_storage/flutter_secure_storage.dart';`
			`import 'package:get/get.dart';`
			`import 'package:get/get_connect/http/src/request/request.dart';`
:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`import 'package:mutex/mutex.dart';`
:recycle: Basic things to move to events system 2024-06-27 16:05:43 +00:00			`import 'package:solian/controllers/chat_events_controller.dart';`
:sparkles: Notifications 2024-05-25 05:00:40 +00:00			`import 'package:solian/providers/account.dart';`
:sparkles: Chat messaging 2024-05-26 05:39:21 +00:00			`import 'package:solian/providers/chat.dart';`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`import 'package:solian/services.dart';`
:bug: Fix bugs and optimize your auth experience 2024-06-29 09:35:18 +00:00
			`class TokenSet {`
			`final String accessToken;`
			`final String refreshToken;`
			`final DateTime? expiredAt;`

			`TokenSet({`
			`required this.accessToken,`
			`required this.refreshToken,`
			`this.expiredAt,`
			`});`

			`factory TokenSet.fromJson(Map<String, dynamic> json) => TokenSet(`
			`accessToken: json['access_token'],`
			`refreshToken: json['refresh_token'],`
			`expiredAt: json['expired_at'] != null`
			`? DateTime.parse(json['expired_at'])`
			`: null,`
			`);`

			`Map<String, dynamic> toJson() => {`
			`'access_token': accessToken,`
			`'refresh_token': refreshToken,`
			`'expired_at': expiredAt?.toIso8601String(),`
			`};`

			`bool get isExpired => expiredAt?.isBefore(DateTime.now()) ?? true;`
			`}`

			`class RiskyAuthenticateException implements Exception {`
			`final int ticketId;`

			`RiskyAuthenticateException(this.ticketId);`
			`}`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00
			`class AuthProvider extends GetConnect {`
:sparkles: Post repost, reply and even more optimization! 2024-05-21 16:05:03 +00:00			`final tokenEndpoint =`
			`Uri.parse('${ServiceFinder.services['passport']}/api/auth/token');`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00
			`static const clientId = 'solian';`
			`static const clientSecret = '_F4%q2Eea3';`

			`static const storage = FlutterSecureStorage();`

:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`TokenSet? credentials;`
			`Mutex credentialsRefreshMutex = Mutex();`

:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`@override`
			`void onInit() {`
			`httpClient.baseUrl = ServiceFinder.services['passport'];`
:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00			`loadCredentials();`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`}`

:sparkles: Notifications 2024-05-25 05:00:40 +00:00			`Future<void> refreshCredentials() async {`
:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`try {`
			`credentialsRefreshMutex.acquire();`
			`if (!credentials!.isExpired) return;`
			`final resp = await post('/api/auth/token', {`
			`'refresh_token': credentials!.refreshToken,`
			`'grant_type': 'refresh_token',`
			`});`
			`if (resp.statusCode != 200) {`
			`throw Exception(resp.bodyString);`
			`}`
			`credentials = TokenSet(`
			`accessToken: resp.body['access_token'],`
			`refreshToken: resp.body['refresh_token'],`
			`expiredAt: DateTime.now().add(const Duration(minutes: 3)),`
			`);`
			`storage.write(`
			`key: 'auth_credentials',`
			`value: jsonEncode(credentials!.toJson()),`
			`);`
			`} catch (_) {`
			`rethrow;`
			`} finally {`
			`credentialsRefreshMutex.release();`
:sparkles: Notifications 2024-05-25 05:00:40 +00:00			`}`
			`}`

:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00			`Future<Request<T?>> requestAuthenticator<T>(Request<T?> request) async {`
:recycle: Better http client management, no more expired token 2024-06-06 12:49:18 +00:00			`try {`
			`await ensureCredentials();`
:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`request.headers['Authorization'] = 'Bearer ${credentials!.accessToken}';`
:recycle: Better http client management, no more expired token 2024-06-06 12:49:18 +00:00			`} catch (_) {}`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00
			`return request;`
			`}`

:art: Improve code structure 2024-06-22 14:39:32 +00:00			`GetConnect configureClient(`
			`String service, {`
:recycle: Better http client management, no more expired token 2024-06-06 12:49:18 +00:00			`timeout = const Duration(seconds: 5),`
			`}) {`
			`final client = GetConnect(`
			`maxAuthRetries: 3,`
			`timeout: timeout,`
:bug: Fix bugs and optimize your auth experience 2024-06-29 09:35:18 +00:00			`userAgent: 'Solian/1.1',`
			`sendUserAgent: true,`
:recycle: Better http client management, no more expired token 2024-06-06 12:49:18 +00:00			`);`
			`client.httpClient.addAuthenticator(requestAuthenticator);`
:art: Improve code structure 2024-06-22 14:39:32 +00:00			`client.httpClient.baseUrl = ServiceFinder.services[service];`
:recycle: Better http client management, no more expired token 2024-06-06 12:49:18 +00:00
			`return client;`
			`}`

			`Future<void> ensureCredentials() async {`
			`if (!await isAuthorized) throw Exception('unauthorized');`
:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`if (credentials == null) await loadCredentials();`
:recycle: Better http client management, no more expired token 2024-06-06 12:49:18 +00:00
:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`if (credentials!.isExpired) {`
:recycle: Better http client management, no more expired token 2024-06-06 12:49:18 +00:00			`await refreshCredentials();`
:recycle: Use controller instead of state to manage history 2024-06-23 10:51:49 +00:00			`log('Refreshed credentials at ${DateTime.now()}');`
:recycle: Better http client management, no more expired token 2024-06-06 12:49:18 +00:00			`}`
			`}`

:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00			`Future<void> loadCredentials() async {`
			`if (await isAuthorized) {`
			`final content = await storage.read(key: 'auth_credentials');`
:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`credentials = TokenSet.fromJson(jsonDecode(content!));`
:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00			`}`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`}`

:bug: Fix bugs and optimize your auth experience 2024-06-29 09:35:18 +00:00			`Future<TokenSet> signin(`
:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00			`BuildContext context,`
			`String username,`
			`String password,`
			`) async {`
:zap: Improved attachments 2024-06-01 13:39:28 +00:00			`_cachedUserProfileResponse = null;`
:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00
:bug: Fix bugs and optimize your auth experience 2024-06-29 09:35:18 +00:00			`final client = ServiceFinder.configureClient('passport');`

			`// Create ticket`
			`final resp = await client.post('/api/auth', {`
			`'username': username,`
			`'password': password,`
			`});`
			`if (resp.statusCode != 200) {`
			`throw Exception(resp.body);`
			`} else if (resp.body['is_finished'] == false) {`
			`throw RiskyAuthenticateException(resp.body['ticket']['id']);`
			`}`

			`// Assign token`
			`final tokenResp = await post('/api/auth/token', {`
			`'code': resp.body['ticket']['grant_token'],`
			`'grant_type': 'grant_token',`
			`});`
			`if (tokenResp.statusCode != 200) {`
			`throw Exception(tokenResp.bodyString);`
			`}`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00
:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`credentials = TokenSet(`
:bug: Fix bugs and optimize your auth experience 2024-06-29 09:35:18 +00:00			`accessToken: tokenResp.body['access_token'],`
			`refreshToken: tokenResp.body['refresh_token'],`
			`expiredAt: DateTime.now().add(const Duration(minutes: 3)),`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`);`

:sparkles: Post repost, reply and even more optimization! 2024-05-21 16:05:03 +00:00			`storage.write(`
:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00			`key: 'auth_credentials',`
:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`value: jsonEncode(credentials!.toJson()),`
:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00			`);`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00
:sparkles: Notifications 2024-05-25 05:00:40 +00:00			`Get.find<AccountProvider>().connect();`
:sparkles: Post detail 2024-05-25 05:19:16 +00:00			`Get.find<AccountProvider>().notifyPrefetch();`
:sparkles: Chat messaging 2024-05-26 05:39:21 +00:00			`Get.find<ChatProvider>().connect();`
:sparkles: Notifications 2024-05-25 05:00:40 +00:00
:zap: Optimized refresh credentials 2024-07-07 03:56:25 +00:00			`return credentials!;`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`}`

			`void signout() {`
:zap: Improved attachments 2024-06-01 13:39:28 +00:00			`_cachedUserProfileResponse = null;`
:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00
:sparkles: Chat messaging 2024-05-26 05:39:21 +00:00			`Get.find<ChatProvider>().disconnect();`
:sparkles: Notifications 2024-05-25 05:00:40 +00:00			`Get.find<AccountProvider>().disconnect();`
:sparkles: Post detail 2024-05-25 05:19:16 +00:00			`Get.find<AccountProvider>().notifications.clear();`
			`Get.find<AccountProvider>().notificationUnread.value = 0;`
:sparkles: Notifications 2024-05-25 05:00:40 +00:00
:recycle: Basic things to move to events system 2024-06-27 16:05:43 +00:00			`final chatHistory = ChatEventController();`
:bug: Bug fixes on duplicate message 2024-06-23 11:13:07 +00:00			`chatHistory.initialize().then((_) async {`
:recycle: Basic things to move to events system 2024-06-27 16:05:43 +00:00			`await chatHistory.database.localEvents.wipeLocalEvents();`
:bug: Bug fixes on duplicate message 2024-06-23 11:13:07 +00:00			`});`

:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`storage.deleteAll();`
			`}`

:heavy_plus_sign: Add firebase 2024-06-06 15:28:19 +00:00			`// Data Layer`

:zap: Improved attachments 2024-06-01 13:39:28 +00:00			`Response? _cachedUserProfileResponse;`
:sparkles: Post repost, reply and even more optimization! 2024-05-21 16:05:03 +00:00
:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`Future<bool> get isAuthorized => storage.containsKey(key: 'auth_credentials');`

:sparkles: Post repost, reply and even more optimization! 2024-05-21 16:05:03 +00:00			`Future<Response> getProfile({noCache = false}) async {`
:zap: Improved attachments 2024-06-01 13:39:28 +00:00			`if (!noCache && _cachedUserProfileResponse != null) {`
			`return _cachedUserProfileResponse!;`
:sparkles: Post repost, reply and even more optimization! 2024-05-21 16:05:03 +00:00			`}`

:art: Improve code structure 2024-06-22 14:39:32 +00:00			`final client = configureClient('passport');`
:bug: Bug fixes on bad switching account UX 2024-05-23 15:54:05 +00:00
			`final resp = await client.get('/api/users/me');`
:sparkles: Call button 2024-05-31 17:25:45 +00:00			`if (resp.statusCode != 200) {`
			`throw Exception(resp.bodyString);`
			`} else {`
:zap: Improved attachments 2024-06-01 13:39:28 +00:00			`_cachedUserProfileResponse = resp;`
:sparkles: Call button 2024-05-31 17:25:45 +00:00			`}`

:sparkles: Post repost, reply and even more optimization! 2024-05-21 16:05:03 +00:00			`return resp;`
			`}`
:sparkles: Account status on sidebar 2024-07-12 05:15:46 +00:00
			`Future<Response?> getProfileWithCheck({noCache = false}) async {`
			`if (!await isAuthorized) return null;`

			`return await getProfile(noCache: noCache);`
			`}`
:sparkles: Attachments 2024-05-18 14:23:36 +00:00			`}`