Last active
May 16, 2018 06:53
-
-
Save leodutra/d2fd87cf8545eec7eb05e685a3ab1b07 to your computer and use it in GitHub Desktop.
Axios Factory for automatic JWT token usage and automatic token refresh
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import axios from 'axios' | |
| import jwtDecode from 'jwt-decode' | |
| import { debounce } from 'lodash' | |
| const verbose = process.env.NODE_ENV === 'development' | |
| const log = (...args) => verbose && console.log(`${AxiosFactory.name}:`, ...args) | |
| const warn = (...args) => verbose && console.warn(`${AxiosFactory.name}:`, ...args) | |
| const critical = (...args) => verbose && console.error(`${AxiosFactory.name}:`, ...args) | |
| const emptyFn = () => {} | |
| const MSG_LOGOUT = 'Please login again.' | |
| // const EXPIRATION_SECS_AHEAD = 120 | |
| function getExpirationTime () { | |
| // const secondsAhead = EXPIRATION_SECS_AHEAD | |
| const nowSeconds = Math.ceil(Date.now() / 1000) | |
| return nowSeconds // + secondsAhead | |
| } | |
| function getLivingData (token) { | |
| if (token) { | |
| log('token =', token) | |
| const payload = jwtDecode(token) | |
| log('payload =', payload) | |
| log('payload expiration =', payload && new Date(payload.exp * 1000)) | |
| if (payload.exp > getExpirationTime()) { | |
| log('token is valid and not expired.') | |
| return { | |
| token, | |
| payload | |
| } | |
| } | |
| log('token is expired.') | |
| } | |
| return null | |
| } | |
| export default class AxiosFactory { | |
| static factoryAxios ({ | |
| defaults, | |
| accessTokenGetter = emptyFn, | |
| accessTokenSetter = emptyFn, | |
| refreshTokenGetter = emptyFn, | |
| issueAccessToken = emptyFn, // !!! CANNOT CONTAIN PROTECTED ROUTES OR IT WILL LOOP | |
| loadingStateSetter = emptyFn, | |
| logoutAction = emptyFn | |
| }) { | |
| const instance = axios.create(defaults) | |
| const setLoadingState = debounce(loadingStateSetter, 300) | |
| async function handleAccessTokenData () { | |
| let accessData = getLivingData(await accessTokenGetter()) | |
| log(`Access token data =`, accessData) | |
| if (!accessData) { | |
| const refreshData = getLivingData(await refreshTokenGetter()) | |
| log(`Refresh token data =`, refreshData) | |
| if (refreshData) { | |
| log(`Issuing new access token`) | |
| accessData = getLivingData(await issueAccessToken(refreshData.token)) | |
| log('Issued access data =', accessData) | |
| if (accessData) { | |
| accessTokenSetter(accessData.token) | |
| } | |
| } | |
| } | |
| return accessData | |
| } | |
| // REQUEST INTERCEPTOR -------------------------------------------------- | |
| instance.interceptors.request.use( | |
| async config => { | |
| log(`config =`, config) | |
| if (config.auth || config.requireToken === false) { | |
| log(`Unprotected route ${config.url}.`) | |
| config._isUnprotected = true | |
| return config | |
| } | |
| log(`Protected route ${config.url}`) | |
| const accessData = await handleAccessTokenData() | |
| if (accessData) { | |
| // SEND JWT WITH THE REQUEST | |
| log(`Setting header Authorization with the access token`, { accessToken: accessData.token }) | |
| config.headers['Authorization'] = `Bearer ${accessData.token}` | |
| setLoadingState(true) | |
| } else { | |
| // CANCEL REQUEST AND LOGOUT | |
| warn(`No living access/refresh token data`) | |
| const cancelSource = axios.CancelToken.source() | |
| config.cancelToken = cancelSource.token | |
| cancelSource.cancel(MSG_LOGOUT) | |
| warn(`Canceling operation. Response interceptor MUST call logoutAction().`) | |
| } | |
| return config | |
| }, | |
| err => { | |
| warn(`Request interceptor error.`) | |
| return Promise.reject(err) | |
| } | |
| ) | |
| // RESPONSE INTERCEPTOR ---------------------------------------------- | |
| instance.interceptors.response.use( | |
| response => { | |
| setLoadingState(false) | |
| return response.data | |
| }, | |
| async error => { | |
| setLoadingState(false) | |
| const config = error && error.config | |
| log(`Response interceptor got error...`) | |
| if (error instanceof axios.Cancel) { | |
| log(`... it's a cancelation.`) | |
| if (error.message === MSG_LOGOUT) { | |
| log(`Detected logout cancelation. Logging out.`) | |
| return logoutAction() | |
| } | |
| } else if (config) { | |
| // 401... if not retrying, retries sending new token | |
| if (error.response.status === 401) { | |
| if (config._retry) { | |
| log(`Retried before. Logging out.`) | |
| return logoutAction() | |
| } else if (!config._isUnprotected) { | |
| log(`Got a 401 (UNAUTHORIZED) response... will retry request with token.`) | |
| config._retry = true // set retry flag | |
| try { | |
| const accessData = await handleAccessTokenData() | |
| if (accessData) { | |
| // envia JWT junto ao request original | |
| log(`Setting header Authorization with the access token`, { accessToken: accessData.token }) | |
| config.headers['Authorization'] = `Bearer ${accessData.token}` | |
| return config | |
| } else { | |
| log(`No access data... logging out`) | |
| return logoutAction() | |
| } | |
| } catch (err) { | |
| warn(`Error when retrying. Logging out. Error: ${err}`) | |
| return logoutAction() | |
| } | |
| } | |
| } | |
| } | |
| if (error.response) { | |
| critical(`Response interceptor got an ${error.response.status}.`) | |
| } else { | |
| critical(`Response interceptor got an unknown error!!!`) | |
| } | |
| return Promise.reject(error) | |
| } | |
| ) | |
| return instance | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment