frontend/src/services/auth.service.ts

import { getCookie, setCookie } from "cookies-next";
import * as jose from "jose";
import api from "./api.service";

const signIn = async (emailOrUsername: string, password: string) => {
  const emailOrUsernameBody = emailOrUsername.includes("@")
    ? { email: emailOrUsername }
    : { username: emailOrUsername };

  const response = await api.post("auth/signIn", {
    ...emailOrUsernameBody,
    password,
  });

  setCookie("access_token", response.data.accessToken);
  setCookie("refresh_token", response.data.refreshToken, {
    maxAge: 60 * 60 * 24 * 30 * 3,
  });

  return response;
};

const signInTotp = async (
  emailOrUsername: string,
  password: string,
  totp: string,
  loginToken: string
) => {
  const emailOrUsernameBody = emailOrUsername.includes("@")
    ? { email: emailOrUsername }
    : { username: emailOrUsername };

  const response = await api.post("auth/signIn/totp", {
    ...emailOrUsernameBody,
    password,
    totp,
    loginToken,
  });
  return response;
};

const signUp = async (email: string, username: string, password: string) => {
  const response = await api.post("auth/signUp", { email, username, password });

  setCookie("access_token", response.data.accessToken);
  setCookie("refresh_token", response.data.refreshToken, {
    maxAge: 60 * 60 * 24 * 30 * 3,
  });

  return response;
};

const signOut = () => {
  setCookie("access_token", null);
  setCookie("refresh_token", null);
  window.location.reload();
};

const refreshAccessToken = async () => {
  try {
    const accessToken = getCookie("access_token") as string;
    const refreshToken = getCookie("refresh_token");
    if (
      (accessToken &&
        (jose.decodeJwt(accessToken).exp ?? 0) * 1000 <
          Date.now() + 2 * 60 * 1000) ||
      (refreshToken && !accessToken)
    ) {
      const response = await api.post("auth/token", { refreshToken });
      setCookie("access_token", response.data.accessToken);
    }
  } catch {
    console.info("Refresh token invalid or expired");
  }
};

const updatePassword = async (oldPassword: string, password: string) => {
  await api.patch("/auth/password", { oldPassword, password });
};

const enableTOTP = async (password: string) => {
  const { data } = await api.post("/auth/totp/enable", { password });

  return {
    totpAuthUrl: data.totpAuthUrl,
    totpSecret: data.totpSecret,
    qrCode: data.qrCode,
  };
};

const verifyTOTP = async (totpCode: string, password: string) => {
  await api.post("/auth/totp/verify", {
    code: totpCode,
    password,
  });
};

const disableTOTP = async (totpCode: string, password: string) => {
  await api.post("/auth/totp/disable", {
    code: totpCode,
    password,
  });
};

export default {
  signIn,
  signInTotp,
  signUp,
  signOut,
  refreshAccessToken,
  updatePassword,
  enableTOTP,
  verifyTOTP,
  disableTOTP,
};
feat: TOTP (two-factor) Authentication (#55) * Working on some initial prototype stuff for TOTP * Fixed a bug that prevented the change password menu from working * Enable/disable totp working * Added the new login procedure including TOTP! :) * misc: Changed bad description for the TOTP_SECRET env var * I forgot to include the migration for the new prisma stuff * fix: refresh user context instead refreshing the page * refactor: simplify totp error handling * Removed U2F tab + format schema * fix: tokens not saved in cookies * refactor: deleted commented out code * refactor: move password text to input description * refactor: remove tabler icon package Co-authored-by: Elias Schneider <login@eliasschneider.com> Co-authored-by: Elias Schneider <58886915+stonith404@users.noreply.github.com> 2022-12-21 11:58:37 -05:00			`import { getCookie, setCookie } from "cookies-next";`
feat: remove appwrite and add nextjs backend 2022-10-09 22:30:32 +02:00			`import * as jose from "jose";`
			`import api from "./api.service";`

feat: add setup wizard 2022-12-01 23:07:49 +01:00			`const signIn = async (emailOrUsername: string, password: string) => {`
			`const emailOrUsernameBody = emailOrUsername.includes("@")`
			`? { email: emailOrUsername }`
			`: { username: emailOrUsername };`

			`const response = await api.post("auth/signIn", {`
			`...emailOrUsernameBody,`
			`password,`
			`});`
fix: refresh token gets deleted on session end 2022-12-26 12:57:54 +01:00
			`setCookie("access_token", response.data.accessToken);`
			`setCookie("refresh_token", response.data.refreshToken, {`
			`maxAge: 60 * 60 * 24 * 30 * 3,`
			`});`

feat: TOTP (two-factor) Authentication (#55) * Working on some initial prototype stuff for TOTP * Fixed a bug that prevented the change password menu from working * Enable/disable totp working * Added the new login procedure including TOTP! :) * misc: Changed bad description for the TOTP_SECRET env var * I forgot to include the migration for the new prisma stuff * fix: refresh user context instead refreshing the page * refactor: simplify totp error handling * Removed U2F tab + format schema * fix: tokens not saved in cookies * refactor: deleted commented out code * refactor: move password text to input description * refactor: remove tabler icon package Co-authored-by: Elias Schneider <login@eliasschneider.com> Co-authored-by: Elias Schneider <58886915+stonith404@users.noreply.github.com> 2022-12-21 11:58:37 -05:00			`return response;`
			`};`

			`const signInTotp = async (`
			`emailOrUsername: string,`
			`password: string,`
			`totp: string,`
			`loginToken: string`
			`) => {`
			`const emailOrUsernameBody = emailOrUsername.includes("@")`
			`? { email: emailOrUsername }`
			`: { username: emailOrUsername };`

			`const response = await api.post("auth/signIn/totp", {`
			`...emailOrUsernameBody,`
			`password,`
			`totp,`
			`loginToken,`
			`});`
feat: remove appwrite and add nextjs backend 2022-10-09 22:30:32 +02:00			`return response;`
			`};`

feat: add setup wizard 2022-12-01 23:07:49 +01:00			`const signUp = async (email: string, username: string, password: string) => {`
fix: refresh token gets deleted on session end 2022-12-26 12:57:54 +01:00			`const response = await api.post("auth/signUp", { email, username, password });`

			`setCookie("access_token", response.data.accessToken);`
			`setCookie("refresh_token", response.data.refreshToken, {`
			`maxAge: 60 * 60 * 24 * 30 * 3,`
			`});`

			`return response;`
feat: remove appwrite and add nextjs backend 2022-10-09 22:30:32 +02:00			`};`

			`const signOut = () => {`
feat: TOTP (two-factor) Authentication (#55) * Working on some initial prototype stuff for TOTP * Fixed a bug that prevented the change password menu from working * Enable/disable totp working * Added the new login procedure including TOTP! :) * misc: Changed bad description for the TOTP_SECRET env var * I forgot to include the migration for the new prisma stuff * fix: refresh user context instead refreshing the page * refactor: simplify totp error handling * Removed U2F tab + format schema * fix: tokens not saved in cookies * refactor: deleted commented out code * refactor: move password text to input description * refactor: remove tabler icon package Co-authored-by: Elias Schneider <login@eliasschneider.com> Co-authored-by: Elias Schneider <58886915+stonith404@users.noreply.github.com> 2022-12-21 11:58:37 -05:00			`setCookie("access_token", null);`
			`setCookie("refresh_token", null);`
feat: remove appwrite and add nextjs backend 2022-10-09 22:30:32 +02:00			`window.location.reload();`
			`};`

			`const refreshAccessToken = async () => {`
fix: error when refresh token is expired 2022-10-11 14:44:12 +02:00			`try {`
fix: refresh token gets deleted on session end 2022-12-26 12:57:54 +01:00			`const accessToken = getCookie("access_token") as string;`
			`const refreshToken = getCookie("refresh_token");`
fix: error when refresh token is expired 2022-10-11 14:44:12 +02:00			`if (`
fix: refresh token gets deleted on session end 2022-12-26 12:57:54 +01:00			`(accessToken &&`
			`(jose.decodeJwt(accessToken).exp ?? 0) * 1000 <`
			`Date.now() + 2 * 60 * 1000) \|\|`
			`(refreshToken && !accessToken)`
fix: error when refresh token is expired 2022-10-11 14:44:12 +02:00			`) {`
			`const response = await api.post("auth/token", { refreshToken });`
feat: TOTP (two-factor) Authentication (#55) * Working on some initial prototype stuff for TOTP * Fixed a bug that prevented the change password menu from working * Enable/disable totp working * Added the new login procedure including TOTP! :) * misc: Changed bad description for the TOTP_SECRET env var * I forgot to include the migration for the new prisma stuff * fix: refresh user context instead refreshing the page * refactor: simplify totp error handling * Removed U2F tab + format schema * fix: tokens not saved in cookies * refactor: deleted commented out code * refactor: move password text to input description * refactor: remove tabler icon package Co-authored-by: Elias Schneider <login@eliasschneider.com> Co-authored-by: Elias Schneider <58886915+stonith404@users.noreply.github.com> 2022-12-21 11:58:37 -05:00			`setCookie("access_token", response.data.accessToken);`
fix: error when refresh token is expired 2022-10-11 14:44:12 +02:00			`}`
			`} catch {`
			`console.info("Refresh token invalid or expired");`
feat: remove appwrite and add nextjs backend 2022-10-09 22:30:32 +02:00			`}`
			`};`

feat: add user management 2022-12-05 15:53:24 +01:00			`const updatePassword = async (oldPassword: string, password: string) => {`
			`await api.patch("/auth/password", { oldPassword, password });`
			`};`

feat: TOTP (two-factor) Authentication (#55) * Working on some initial prototype stuff for TOTP * Fixed a bug that prevented the change password menu from working * Enable/disable totp working * Added the new login procedure including TOTP! :) * misc: Changed bad description for the TOTP_SECRET env var * I forgot to include the migration for the new prisma stuff * fix: refresh user context instead refreshing the page * refactor: simplify totp error handling * Removed U2F tab + format schema * fix: tokens not saved in cookies * refactor: deleted commented out code * refactor: move password text to input description * refactor: remove tabler icon package Co-authored-by: Elias Schneider <login@eliasschneider.com> Co-authored-by: Elias Schneider <58886915+stonith404@users.noreply.github.com> 2022-12-21 11:58:37 -05:00			`const enableTOTP = async (password: string) => {`
			`const { data } = await api.post("/auth/totp/enable", { password });`

			`return {`
			`totpAuthUrl: data.totpAuthUrl,`
			`totpSecret: data.totpSecret,`
			`qrCode: data.qrCode,`
			`};`
			`};`

			`const verifyTOTP = async (totpCode: string, password: string) => {`
			`await api.post("/auth/totp/verify", {`
			`code: totpCode,`
			`password,`
			`});`
			`};`

			`const disableTOTP = async (totpCode: string, password: string) => {`
			`await api.post("/auth/totp/disable", {`
			`code: totpCode,`
			`password,`
			`});`
			`};`

feat: remove appwrite and add nextjs backend 2022-10-09 22:30:32 +02:00			`export default {`
			`signIn,`
feat: TOTP (two-factor) Authentication (#55) * Working on some initial prototype stuff for TOTP * Fixed a bug that prevented the change password menu from working * Enable/disable totp working * Added the new login procedure including TOTP! :) * misc: Changed bad description for the TOTP_SECRET env var * I forgot to include the migration for the new prisma stuff * fix: refresh user context instead refreshing the page * refactor: simplify totp error handling * Removed U2F tab + format schema * fix: tokens not saved in cookies * refactor: deleted commented out code * refactor: move password text to input description * refactor: remove tabler icon package Co-authored-by: Elias Schneider <login@eliasschneider.com> Co-authored-by: Elias Schneider <58886915+stonith404@users.noreply.github.com> 2022-12-21 11:58:37 -05:00			`signInTotp,`
feat: remove appwrite and add nextjs backend 2022-10-09 22:30:32 +02:00			`signUp,`
			`signOut,`
			`refreshAccessToken,`
refactor: run formatter 2022-12-05 16:54:15 +01:00			`updatePassword,`
feat: TOTP (two-factor) Authentication (#55) * Working on some initial prototype stuff for TOTP * Fixed a bug that prevented the change password menu from working * Enable/disable totp working * Added the new login procedure including TOTP! :) * misc: Changed bad description for the TOTP_SECRET env var * I forgot to include the migration for the new prisma stuff * fix: refresh user context instead refreshing the page * refactor: simplify totp error handling * Removed U2F tab + format schema * fix: tokens not saved in cookies * refactor: deleted commented out code * refactor: move password text to input description * refactor: remove tabler icon package Co-authored-by: Elias Schneider <login@eliasschneider.com> Co-authored-by: Elias Schneider <58886915+stonith404@users.noreply.github.com> 2022-12-21 11:58:37 -05:00			`enableTOTP,`
			`verifyTOTP,`
			`disableTOTP,`
feat: remove appwrite and add nextjs backend 2022-10-09 22:30:32 +02:00			`};`