import 'dart:async'; import 'dart:convert'; import 'dart:developer'; import 'package:flutter/material.dart'; import 'package:flutter_secure_storage/flutter_secure_storage.dart'; import 'package:get/get.dart'; import 'package:get/get_connect/http/src/request/request.dart'; import 'package:solian/providers/account.dart'; import 'package:solian/providers/chat.dart'; import 'package:solian/services.dart'; import 'package:oauth2/oauth2.dart' as oauth2; class AuthProvider extends GetConnect { final tokenEndpoint = Uri.parse('${ServiceFinder.services['passport']}/api/auth/token'); static const clientId = 'solian'; static const clientSecret = '_F4%q2Eea3'; static const storage = FlutterSecureStorage(); @override void onInit() { httpClient.baseUrl = ServiceFinder.services['passport']; loadCredentials(); } oauth2.Credentials? credentials; Future refreshCredentials() async { final resp = await post('/api/auth/token', { 'refresh_token': credentials!.refreshToken, 'grant_type': 'refresh_token', }); if (resp.statusCode != 200) { throw Exception(resp.bodyString); } credentials = oauth2.Credentials( resp.body['access_token'], refreshToken: resp.body['refresh_token'], idToken: resp.body['access_token'], tokenEndpoint: tokenEndpoint, expiration: DateTime.now().add(const Duration(minutes: 3)), ); storage.write( key: 'auth_credentials', value: jsonEncode(credentials!.toJson()), ); } Future> requestAuthenticator(Request request) async { try { await ensureCredentials(); request.headers['Authorization'] = 'Bearer ${credentials!.accessToken}'; } catch (_) {} return request; } GetConnect configureClient({ String? service, timeout = const Duration(seconds: 5), }) { final client = GetConnect( maxAuthRetries: 3, timeout: timeout, allowAutoSignedCert: true, ); client.httpClient.addAuthenticator(requestAuthenticator); if (service != null) { client.httpClient.baseUrl = ServiceFinder.services[service]; } return client; } Future ensureCredentials() async { if (!await isAuthorized) throw Exception('unauthorized'); if (credentials == null) await loadCredentials(); if (credentials!.isExpired) { await refreshCredentials(); log("Refreshed credentials at ${DateTime.now()}"); } } Future loadCredentials() async { if (await isAuthorized) { final content = await storage.read(key: 'auth_credentials'); credentials = oauth2.Credentials.fromJson(jsonDecode(content!)); } } Future signin( BuildContext context, String username, String password, ) async { _cachedUserProfileResponse = null; final resp = await oauth2.resourceOwnerPasswordGrant( tokenEndpoint, username, password, identifier: clientId, secret: clientSecret, scopes: ['*'], basicAuth: false, ); credentials = oauth2.Credentials( resp.credentials.accessToken, refreshToken: resp.credentials.refreshToken!, idToken: resp.credentials.accessToken, tokenEndpoint: tokenEndpoint, expiration: DateTime.now().add(const Duration(minutes: 3)), ); storage.write( key: 'auth_credentials', value: jsonEncode(credentials!.toJson()), ); Get.find().connect(); Get.find().notifyPrefetch(); Get.find().connect(); return credentials!; } void signout() { _cachedUserProfileResponse = null; Get.find().disconnect(); Get.find().disconnect(); Get.find().notifications.clear(); Get.find().notificationUnread.value = 0; storage.deleteAll(); } Response? _cachedUserProfileResponse; Future get isAuthorized => storage.containsKey(key: 'auth_credentials'); Future getProfile({noCache = false}) async { if (!noCache && _cachedUserProfileResponse != null) { return _cachedUserProfileResponse!; } final client = configureClient(service: 'passport'); final resp = await client.get('/api/users/me'); if (resp.statusCode != 200) { throw Exception(resp.bodyString); } else { _cachedUserProfileResponse = resp; } return resp; } }