packages/core/api/token-manager.js

import http from "../utils/http";
import constants from "../utils/constants";
import { EV, EVENTS } from "../common";

const ENDPOINTS = {
  token: "/connect/token",
  revoke: "/connect/revocation",
  temporaryToken: "/account/token",
  logout: "/account/logout",
};

var isRefreshingToken = false;
class TokenManager {
  /**
   *
   * @param {import("../database/storage").default} storage
   */
  constructor(storage) {
    this._storage = storage;
  }

  async getToken(renew = true, forceRenew = false) {
    let token = await this._storage.read("token");
    if (!token) return;
    if (forceRenew || (renew && this._isTokenExpired(token))) {
      await this._refreshToken(token);
      return await this.getToken();
    }
    return token;
  }

  _isTokenExpired(token) {
    const { t, expires_in } = token;
    const expiryMs = t + expires_in * 1000;
    return Date.now() >= expiryMs;
  }

  async getAccessToken(forceRenew = false) {
    try {
      const token = await this.getToken(true, forceRenew);
      if (!token) return;
      return token.access_token;
    } catch (e) {
      console.error("Error getting access token:", e);
      if (e.message === "invalid_grant" || e.message === "invalid_client") {
        EV.publish(EVENTS.userSessionExpired);
      }
      throw e;
    }
  }

  async _refreshToken(token) {
    const { refresh_token, scope } = token;
    if (!refresh_token || !scope) return;

    if (isRefreshingToken) {
      return new Promise((resolve, reject) => {
        EV.subscribe(EVENTS.tokenRefreshed, onTokenRefreshed, true);

        function onTokenRefreshed({ success, error }) {
          clearTimeout(timeout);
          if (success) return resolve();
          else return reject(error);
        }

        const timeout = setTimeout(() => {
          EV.unsubscribe(EVENTS.tokenRefreshed, onTokenRefreshed);
          reject("Timeout while refreshing token.");
        }, 15000);
      });
    }

    isRefreshingToken = true;
    try {
      await this.saveToken(
        await http.post(`${constants.AUTH_HOST}${ENDPOINTS.token}`, {
          refresh_token,
          grant_type: "refresh_token",
          scope: scope,
          client_id: "notesnook",
        })
      );
      EV.publish(EVENTS.tokenRefreshed, { success: true });
    } catch (e) {
      EV.publish(EVENTS.tokenRefreshed, {
        success: false,
        error: e,
      });
      console.error("Failed to refresh token:", e);
      throw e;
    } finally {
      isRefreshingToken = false;
    }
  }

  async revokeToken() {
    const token = await this.getToken();
    if (!token) return;
    const { access_token } = token;

    await http.post(
      `${constants.AUTH_HOST}${ENDPOINTS.logout}`,
      null,
      access_token
    );
  }

  saveToken(tokenResponse) {
    let token = { ...tokenResponse, t: Date.now() };
    return this._storage.write("token", token);
  }

  async getAccessTokenFromAuthorizationCode(userId, authCode) {
    return await this.saveToken(
      await http.post(`${constants.AUTH_HOST}${ENDPOINTS.temporaryToken}`, {
        authorization_code: authCode,
        user_id: userId,
        client_id: "notesnook",
      })
    );
  }
}
export default TokenManager;
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`import http from "../utils/http";`
			`import constants from "../utils/constants";`
fix: invalid_grant when refreshing tokens concurrently 2021-08-08 12:20:07 +05:00			`import { EV, EVENTS } from "../common";`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00
			`const ENDPOINTS = {`
			`token: "/connect/token",`
			`revoke: "/connect/revocation",`
feat: add logic to exchange auth code with temp token 2020-12-22 09:47:01 +05:00			`temporaryToken: "/account/token",`
fix: logout using custom logout endpoint 2021-01-04 11:22:24 +05:00			`logout: "/account/logout",`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`};`

fix: invalid_grant when refreshing tokens concurrently 2021-08-08 12:20:07 +05:00			`var isRefreshingToken = false;`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`class TokenManager {`
			`/**`
			`*`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`* @param {import("../database/storage").default} storage`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`*/`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`constructor(storage) {`
			`this._storage = storage;`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`

fix: properly handle session expiry 2021-05-25 16:19:58 +05:00			`async getToken(renew = true, forceRenew = false) {`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`let token = await this._storage.read("token");`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`if (!token) return;`
fix: properly handle session expiry 2021-05-25 16:19:58 +05:00			`if (forceRenew \|\| (renew && this._isTokenExpired(token))) {`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`await this._refreshToken(token);`
			`return await this.getToken();`
			`}`
			`return token;`
			`}`

			`_isTokenExpired(token) {`
			`const { t, expires_in } = token;`
fix: invalid_grant when refreshing tokens concurrently 2021-08-08 12:20:07 +05:00			`const expiryMs = t + expires_in * 1000;`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`return Date.now() >= expiryMs;`
			`}`

fix: properly handle session expiry 2021-05-25 16:19:58 +05:00			`async getAccessToken(forceRenew = false) {`
			`try {`
			`const token = await this.getToken(true, forceRenew);`
			`if (!token) return;`
			`return token.access_token;`
			`} catch (e) {`
			`console.error("Error getting access token:", e);`
			`if (e.message === "invalid_grant" \|\| e.message === "invalid_client") {`
fix: do not send & wait for session expired event 2021-05-26 12:40:15 +05:00			`EV.publish(EVENTS.userSessionExpired);`
fix: properly handle session expiry 2021-05-25 16:19:58 +05:00			`}`
fix: do not throw on sync already running 2021-09-13 09:37:52 +05:00			`throw e;`
fix: properly handle session expiry 2021-05-25 16:19:58 +05:00			`}`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`

			`async _refreshToken(token) {`
			`const { refresh_token, scope } = token;`
fix: cache access token response This is a hotfix for Android where Database does not write new token causing user to get logged out. 2021-03-11 14:39:48 +05:00			`if (!refresh_token \|\| !scope) return;`
fix: invalid_grant when refreshing tokens concurrently 2021-08-08 12:20:07 +05:00
			`if (isRefreshingToken) {`
			`return new Promise((resolve, reject) => {`
fix: reconnect SSE on token refresh 2021-08-31 12:11:46 +05:00			`EV.subscribe(EVENTS.tokenRefreshed, onTokenRefreshed, true);`
fix: invalid_grant when refreshing tokens concurrently 2021-08-08 12:20:07 +05:00
			`function onTokenRefreshed({ success, error }) {`
			`clearTimeout(timeout);`
			`if (success) return resolve();`
			`else return reject(error);`
			`}`

			`const timeout = setTimeout(() => {`
fix: reconnect SSE on token refresh 2021-08-31 12:11:46 +05:00			`EV.unsubscribe(EVENTS.tokenRefreshed, onTokenRefreshed);`
fix: invalid_grant when refreshing tokens concurrently 2021-08-08 12:20:07 +05:00			`reject("Timeout while refreshing token.");`
			`}, 15000);`
			`});`
			`}`

			`isRefreshingToken = true;`
			`try {`
			`await this.saveToken(`
			await http.post(`${constants.AUTH_HOST}${ENDPOINTS.token}`, {
			`refresh_token,`
			`grant_type: "refresh_token",`
			`scope: scope,`
			`client_id: "notesnook",`
			`})`
			`);`
fix: reconnect SSE on token refresh 2021-08-31 12:11:46 +05:00			`EV.publish(EVENTS.tokenRefreshed, { success: true });`
fix: invalid_grant when refreshing tokens concurrently 2021-08-08 12:20:07 +05:00			`} catch (e) {`
fix: reconnect SSE on token refresh 2021-08-31 12:11:46 +05:00			`EV.publish(EVENTS.tokenRefreshed, {`
fix: invalid_grant when refreshing tokens concurrently 2021-08-08 12:20:07 +05:00			`success: false,`
			`error: e,`
			`});`
			`console.error("Failed to refresh token:", e);`
			`throw e;`
			`} finally {`
			`isRefreshingToken = false;`
			`}`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`

			`async revokeToken() {`
			`const token = await this.getToken();`
			`if (!token) return;`
fix: logout using custom logout endpoint 2021-01-04 11:22:24 +05:00			`const { access_token } = token;`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00
fix: logout using custom logout endpoint 2021-01-04 11:22:24 +05:00			`await http.post(`
			`${constants.AUTH_HOST}${ENDPOINTS.logout}`,
			`null,`
			`access_token`
			`);`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`

			`saveToken(tokenResponse) {`
feat: do not cache token locally 2021-05-28 23:10:10 +05:00			`let token = { ...tokenResponse, t: Date.now() };`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`return this._storage.write("token", token);`
fix: clear cached token on logout 2021-04-05 11:32:40 +05:00			`}`

feat: add logic to exchange auth code with temp token 2020-12-22 09:47:01 +05:00			`async getAccessTokenFromAuthorizationCode(userId, authCode) {`
			`return await this.saveToken(`
			await http.post(`${constants.AUTH_HOST}${ENDPOINTS.temporaryToken}`, {
			`authorization_code: authCode,`
			`user_id: userId,`
			`client_id: "notesnook",`
			`})`
			`);`
			`}`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`
			`export default TokenManager;`