src/frontend/src/features/auth/api/fetchUser.ts

import { ApiError } from '@/api/ApiError'
import { fetchApi } from '@/api/fetchApi'
import { type ApiUser } from './ApiUser'
import { attemptSilentLogin, canAttemptSilentLogin } from '../utils/silentLogin'

/**
 * fetch the logged-in user from the api.
 *
 * If the user is not logged in, the api returns a 401 error.
 * Here our wrapper just returns false in that case, without triggering an error:
 * this is done to prevent unnecessary query retries with react query
 */
export const fetchUser = (
  opts: {
    attemptSilent?: boolean
  } = {
    attemptSilent: true,
  }
): Promise<ApiUser | false> => {
  return new Promise((resolve, reject) => {
    fetchApi<ApiUser>('/users/me')
      .then(resolve)
      .catch((error) => {
        // we assume that a 401 means the user is not logged in
        if (error instanceof ApiError && error.statusCode === 401) {
          // make sure to not resolve the promise while trying to silent login
          // so that consumers of fetchUser don't think the work already ended
          if (opts.attemptSilent && canAttemptSilentLogin()) {
            attemptSilentLogin(30)
          } else {
            resolve(false)
          }
        } else {
          reject(error)
        }
      })
  })
}
♻️(frontend) reorganize starting frontend code - we now have "features" to try to organize code by intent instead of code type. everything at the root of frontend, not in feature/, is global - customized the panda config a bunch to try to begin to have an actual design system. The idea is to prevent using arbitrary values here and there in the code, but rather semantic tokens - changed the userAuth code logic to handle the fact that a 401 on the users/me call is not really an error per say, but rather an indication the user is not logged in 2024-07-11 18:16:18 +02:00			`import { ApiError } from '@/api/ApiError'`
			`import { fetchApi } from '@/api/fetchApi'`
			`import { type ApiUser } from './ApiUser'`
🐛(sso) prevent flash when trying to autologin the issue was we return the fetchUser promise to react query too early (before the browser reloaded the page). now we make sure react query doesn't get the info 2024-07-25 18:08:10 +02:00			`import { attemptSilentLogin, canAttemptSilentLogin } from '../utils/silentLogin'`
♻️(frontend) reorganize starting frontend code - we now have "features" to try to organize code by intent instead of code type. everything at the root of frontend, not in feature/, is global - customized the panda config a bunch to try to begin to have an actual design system. The idea is to prevent using arbitrary values here and there in the code, but rather semantic tokens - changed the userAuth code logic to handle the fact that a 401 on the users/me call is not really an error per say, but rather an indication the user is not logged in 2024-07-11 18:16:18 +02:00
			`/**`
✏️(frontend) minor typo detected on webstorm No big deal, just a little nit-pick. Nothing personal! My IDE is THE nit-picker. 2024-07-17 16:19:15 +02:00			`* fetch the logged-in user from the api.`
♻️(frontend) reorganize starting frontend code - we now have "features" to try to organize code by intent instead of code type. everything at the root of frontend, not in feature/, is global - customized the panda config a bunch to try to begin to have an actual design system. The idea is to prevent using arbitrary values here and there in the code, but rather semantic tokens - changed the userAuth code logic to handle the fact that a 401 on the users/me call is not really an error per say, but rather an indication the user is not logged in 2024-07-11 18:16:18 +02:00			`*`
			`* If the user is not logged in, the api returns a 401 error.`
			`* Here our wrapper just returns false in that case, without triggering an error:`
			`* this is done to prevent unnecessary query retries with react query`
			`*/`
♻️(front) add option to disable silent login When displayed in an iframe, not being logged-in causes a redirection to the home page. Which is not what we want with the SDK integration. We just want to stay on the same page. 2025-02-10 16:34:16 +01:00			`export const fetchUser = (`
			`opts: {`
			`attemptSilent?: boolean`
			`} = {`
			`attemptSilent: true,`
			`}`
			`): Promise<ApiUser \| false> => {`
♻️(frontend) reorganize starting frontend code - we now have "features" to try to organize code by intent instead of code type. everything at the root of frontend, not in feature/, is global - customized the panda config a bunch to try to begin to have an actual design system. The idea is to prevent using arbitrary values here and there in the code, but rather semantic tokens - changed the userAuth code logic to handle the fact that a 401 on the users/me call is not really an error per say, but rather an indication the user is not logged in 2024-07-11 18:16:18 +02:00			`return new Promise((resolve, reject) => {`
			`fetchApi<ApiUser>('/users/me')`
			`.then(resolve)`
			`.catch((error) => {`
			`// we assume that a 401 means the user is not logged in`
			`if (error instanceof ApiError && error.statusCode === 401) {`
🐛(sso) prevent flash when trying to autologin the issue was we return the fetchUser promise to react query too early (before the browser reloaded the page). now we make sure react query doesn't get the info 2024-07-25 18:08:10 +02:00			`// make sure to not resolve the promise while trying to silent login`
			`// so that consumers of fetchUser don't think the work already ended`
♻️(front) add option to disable silent login When displayed in an iframe, not being logged-in causes a redirection to the home page. Which is not what we want with the SDK integration. We just want to stay on the same page. 2025-02-10 16:34:16 +01:00			`if (opts.attemptSilent && canAttemptSilentLogin()) {`
⚡️(frontend) lower silent login retry interval from 5 min to 30 sec This change enhances user experience by making automatic login more responsive. Only occurs on app navigation/refresh, not internal navigation. Testing in production, can revert if needed. Will later refactor to use backend configuration. 2025-04-28 13:18:33 +02:00			`attemptSilentLogin(30)`
🐛(sso) prevent flash when trying to autologin the issue was we return the fetchUser promise to react query too early (before the browser reloaded the page). now we make sure react query doesn't get the info 2024-07-25 18:08:10 +02:00			`} else {`
			`resolve(false)`
			`}`
♻️(frontend) reorganize starting frontend code - we now have "features" to try to organize code by intent instead of code type. everything at the root of frontend, not in feature/, is global - customized the panda config a bunch to try to begin to have an actual design system. The idea is to prevent using arbitrary values here and there in the code, but rather semantic tokens - changed the userAuth code logic to handle the fact that a 401 on the users/me call is not really an error per say, but rather an indication the user is not logged in 2024-07-11 18:16:18 +02:00			`} else {`
			`reject(error)`
			`}`
			`})`
			`})`
			`}`