feat: add renew token query for apollo client (chrome-extension) (#5200)

fixes - #5203
twentyhq · May 16, 2024 · ea5a7ba · ea5a7ba
1 parent 6bde0ae
commit ea5a7ba
Show file tree

Hide file tree

Showing 7 changed files with 150 additions and 72 deletions.
diff --git a/packages/twenty-chrome-extension/src/db/auth.db.ts b/packages/twenty-chrome-extension/src/db/auth.db.ts
@@ -18,9 +18,3 @@ export const exchangeAuthorizationCode = async (
     return data.exchangeAuthorizationCode;
   else return null;
 };
-
-// export const RenewToken = async (appToken: string): Promise<Tokens | null> => {
-//   const data = await callQuery<Tokens>(RENEW_TOKEN, { appToken });
-//   if (isDefined(data)) return data;
-//   else return null;
-// };
diff --git a/packages/twenty-chrome-extension/src/db/token.db.ts b/packages/twenty-chrome-extension/src/db/token.db.ts
@@ -0,0 +1,36 @@
+import { ApolloClient, InMemoryCache } from '@apollo/client';
+
+import { Tokens } from '~/db/types/auth.types';
+import { RENEW_TOKEN } from '~/graphql/auth/mutations';
+import { isDefined } from '~/utils/isDefined';
+
+export const renewToken = async (
+  appToken: string,
+): Promise<{ renewToken: { tokens: Tokens } } | null> => {
+  const store = await chrome.storage.local.get();
+  const serverUrl = `${
+    isDefined(store.serverBaseUrl)
+      ? store.serverBaseUrl
+      : import.meta.env.VITE_SERVER_BASE_URL
+  }/graphql`;
+
+  // Create new client to call refresh token graphql mutation
+  const client = new ApolloClient({
+    uri: serverUrl,
+    cache: new InMemoryCache({}),
+  });
+
+  const { data } = await client.mutate({
+    mutation: RENEW_TOKEN,
+    variables: {
+      appToken,
+    },
+    fetchPolicy: 'network-only',
+  });
+
+  if (isDefined(data)) {
+    return data;
+  } else {
+    return null;
+  }
+};
diff --git a/packages/twenty-chrome-extension/src/graphql/auth/mutations.ts b/packages/twenty-chrome-extension/src/graphql/auth/mutations.ts
@@ -26,3 +26,20 @@ export const EXCHANGE_AUTHORIZATION_CODE = gql`
     }
   }
 `;
+
+export const RENEW_TOKEN = gql`
+  mutation RenewToken($appToken: String!) {
+    renewToken(appToken: $appToken) {
+      tokens {
+        accessToken {
+          token
+          expiresAt
+        }
+        refreshToken {
+          token
+          expiresAt
+        }
+      }
+    }
+  }
+`;
diff --git a/packages/twenty-chrome-extension/src/graphql/auth/queries.ts b/packages/twenty-chrome-extension/src/graphql/auth/queries.ts
diff --git a/packages/twenty-chrome-extension/src/utils/apolloClient.ts b/packages/twenty-chrome-extension/src/utils/apolloClient.ts
@@ -1,72 +1,121 @@
-import { ApolloClient, from, HttpLink, InMemoryCache } from '@apollo/client';
+import {
+  ApolloClient,
+  from,
+  fromPromise,
+  HttpLink,
+  InMemoryCache,
+} from '@apollo/client';
+import { setContext } from '@apollo/client/link/context';
 import { onError } from '@apollo/client/link/error';
 
+import { renewToken } from '~/db/token.db';
+import { Tokens } from '~/db/types/auth.types';
 import { isDefined } from '~/utils/isDefined';
 
 const clearStore = () => {
-  chrome.storage.local.remove('loginToken');
-
-  chrome.storage.local.remove('accessToken');
-
-  chrome.storage.local.remove('refreshToken');
-
+  chrome.storage.local.remove(['loginToken', 'accessToken', 'refreshToken']);
   chrome.storage.local.set({ isAuthenticated: false });
 };
 
-const getApolloClient = async () => {
+const setStore = (tokens: Tokens) => {
+  if (isDefined(tokens.loginToken)) {
+    chrome.storage.local.set({
+      loginToken: tokens.loginToken,
+    });
+  }
+  chrome.storage.local.set({
+    accessToken: tokens.accessToken,
+    refreshToken: tokens.refreshToken,
+  });
+};
+
+export const getServerUrl = async () => {
   const store = await chrome.storage.local.get();
   const serverUrl = `${
     isDefined(store.serverBaseUrl)
       ? store.serverBaseUrl
       : import.meta.env.VITE_SERVER_BASE_URL
   }/graphql`;
+  return serverUrl;
+};
 
-  const errorLink = onError(({ graphQLErrors, networkError }) => {
-    if (isDefined(graphQLErrors)) {
-      for (const graphQLError of graphQLErrors) {
-        if (graphQLError.message === 'Unauthorized') {
-          //TODO: replace this with renewToken mutation
-          clearStore();
-          return;
-        }
-        switch (graphQLError?.extensions?.code) {
-          case 'UNAUTHENTICATED': {
-            //TODO: replace this with renewToken mutation
-            clearStore();
-            break;
+const getAuthToken = async () => {
+  const store = await chrome.storage.local.get();
+  if (isDefined(store.accessToken)) return `Bearer ${store.accessToken.token}`;
+  else return '';
+};
+
+const getApolloClient = async () => {
+  const store = await chrome.storage.local.get();
+
+  const authLink = setContext(async (_, { headers }) => {
+    const token = await getAuthToken();
+    return {
+      headers: {
+        ...headers,
+        authorization: token,
+      },
+    };
+  });
+  const errorLink = onError(
+    ({ graphQLErrors, networkError, forward, operation }) => {
+      if (isDefined(graphQLErrors)) {
+        for (const graphQLError of graphQLErrors) {
+          if (graphQLError.message === 'Unauthorized') {
+            return fromPromise(
+              renewToken(store.refreshToken.token)
+                .then((response) => {
+                  if (isDefined(response)) {
+                    setStore(response.renewToken.tokens);
+                  }
+                })
+                .catch(() => {
+                  clearStore();
+                }),
+            ).flatMap(() => forward(operation));
+          }
+          switch (graphQLError?.extensions?.code) {
+            case 'UNAUTHENTICATED': {
+              return fromPromise(
+                renewToken(store.refreshToken.token)
+                  .then((response) => {
+                    if (isDefined(response)) {
+                      setStore(response.renewToken.tokens);
+                    }
+                  })
+                  .catch(() => {
+                    clearStore();
+                  }),
+              ).flatMap(() => forward(operation));
+            }
+            default:
+              // eslint-disable-next-line no-console
+              console.error(
+                `[GraphQL error]: Message: ${graphQLError.message}, Location: ${
+                  graphQLError.locations
+                    ? JSON.stringify(graphQLError.locations)
+                    : graphQLError.locations
+                }, Path: ${graphQLError.path}`,
+              );
+              break;
           }
-          default:
-            // eslint-disable-next-line no-console
-            console.error(
-              `[GraphQL error]: Message: ${graphQLError.message}, Location: ${
-                graphQLError.locations
-                  ? JSON.stringify(graphQLError.locations)
-                  : graphQLError.locations
-              }, Path: ${graphQLError.path}`,
-            );
-            break;
         }
       }
-    }
 
-    if (isDefined(networkError)) {
-      // eslint-disable-next-line no-console
-      console.error(`[Network error]: ${networkError}`);
-    }
-  });
+      if (isDefined(networkError)) {
+        // eslint-disable-next-line no-console
+        console.error(`[Network error]: ${networkError}`);
+      }
+    },
+  );
 
   const httpLink = new HttpLink({
-    uri: serverUrl,
-    headers: isDefined(store.accessToken)
-      ? {
-          Authorization: `Bearer ${store.accessToken.token}`,
-        }
-      : {},
+    uri: await getServerUrl(),
   });
 
   const client = new ApolloClient({
     cache: new InMemoryCache(),
-    link: from([errorLink, httpLink]),
+    link: from([errorLink, authLink, httpLink]),
   });
 
   return client;

diff --git a/packages/twenty-server/src/engine/core-modules/auth/services/token.service.ts b/packages/twenty-server/src/engine/core-modules/auth/services/token.service.ts
@@ -422,8 +422,9 @@ export class TokenService {
 
     assert(token, "This refresh token doesn't exist", NotFoundException);
 
-    const user = await this.userRepository.findOneBy({
-      id: jwtPayload.sub,
+    const user = await this.userRepository.findOne({
+      where: { id: jwtPayload.sub },
+      relations: ['appTokens'],
     });
 
     assert(user, 'User not found', NotFoundException);

diff --git a/...ges/twenty-server/src/engine/middlewares/graphql-hydrate-request-from-token.middleware.ts b/...ges/twenty-server/src/engine/middlewares/graphql-hydrate-request-from-token.middleware.ts
@@ -32,6 +32,7 @@ export class GraphQLHydrateRequestFromTokenMiddleware
       'SignUp',
       'RenewToken',
       'IntrospectionQuery',
+      'ExchangeAuthorizationCode',
     ];
 
     if (