Refactor Google Identity handling: improve script loading, enhance error management, and streamline authentication flow
Build and Push Reader Image / docker (push) Successful in 39s
Build and Push Reader Image / docker (push) Successful in 39s
This commit is contained in:
+87
-67
@@ -1,33 +1,50 @@
|
|||||||
"use client"
|
"use client"
|
||||||
|
|
||||||
import { useCallback, useEffect, useMemo, useState, type ReactNode } from "react"
|
import {
|
||||||
|
createContext,
|
||||||
|
useCallback,
|
||||||
|
useContext,
|
||||||
|
useEffect,
|
||||||
|
useMemo,
|
||||||
|
useState,
|
||||||
|
type ReactNode,
|
||||||
|
} from "react"
|
||||||
import type { User } from "./types"
|
import type { User } from "./types"
|
||||||
|
|
||||||
|
// ─── Google Identity Services helpers ───────────────────────────────────────
|
||||||
|
|
||||||
let googleScriptPromise: Promise<void> | null = null
|
let googleScriptPromise: Promise<void> | null = null
|
||||||
let googleInitializedClientId = ""
|
let googleInitializedClientId = ""
|
||||||
let pendingCredentialResolver: ((token: string) => void) | null = null
|
let pendingCredentialResolver: ((token: string) => void) | null = null
|
||||||
|
let pendingCredentialRejecter: ((err: Error) => void) | null = null
|
||||||
|
|
||||||
function waitForDocumentReady() {
|
function waitForDocumentReady(): Promise<void> {
|
||||||
if (typeof window === "undefined") return Promise.resolve()
|
if (typeof window === "undefined") return Promise.resolve()
|
||||||
if (document.readyState !== "loading") return Promise.resolve()
|
if (document.readyState !== "loading") return Promise.resolve()
|
||||||
|
|
||||||
return new Promise<void>((resolve) => {
|
return new Promise<void>((resolve) => {
|
||||||
document.addEventListener("DOMContentLoaded", () => resolve(), { once: true })
|
document.addEventListener("DOMContentLoaded", () => resolve(), { once: true })
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
async function ensureGoogleIdentityScript() {
|
async function ensureGoogleIdentityScript(): Promise<void> {
|
||||||
if (typeof window === "undefined") return Promise.resolve()
|
if (typeof window === "undefined") return
|
||||||
if ((window as any).google?.accounts?.id) return Promise.resolve()
|
if ((window as any).google?.accounts?.id) return
|
||||||
if (googleScriptPromise) return googleScriptPromise
|
if (googleScriptPromise) return googleScriptPromise
|
||||||
|
|
||||||
await waitForDocumentReady()
|
await waitForDocumentReady()
|
||||||
|
|
||||||
googleScriptPromise = new Promise((resolve, reject) => {
|
googleScriptPromise = new Promise((resolve, reject) => {
|
||||||
|
// Script may already exist (e.g. injected by extension)
|
||||||
const existing = document.querySelector('script[src="https://accounts.google.com/gsi/client"]')
|
const existing = document.querySelector('script[src="https://accounts.google.com/gsi/client"]')
|
||||||
if (existing) {
|
if (existing) {
|
||||||
|
if ((window as any).google?.accounts?.id) {
|
||||||
|
resolve()
|
||||||
|
return
|
||||||
|
}
|
||||||
existing.addEventListener("load", () => resolve(), { once: true })
|
existing.addEventListener("load", () => resolve(), { once: true })
|
||||||
existing.addEventListener("error", () => reject(new Error("Failed to load Google script")), { once: true })
|
existing.addEventListener("error", () => reject(new Error("Failed to load Google script")), {
|
||||||
|
once: true,
|
||||||
|
})
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -43,30 +60,29 @@ async function ensureGoogleIdentityScript() {
|
|||||||
return googleScriptPromise
|
return googleScriptPromise
|
||||||
}
|
}
|
||||||
|
|
||||||
async function initializeGoogleIdentity(clientId: string) {
|
async function initializeGoogleIdentity(clientId: string): Promise<void> {
|
||||||
await ensureGoogleIdentityScript()
|
await ensureGoogleIdentityScript()
|
||||||
|
|
||||||
const googleApi = (window as any).google?.accounts?.id
|
const googleApi = (window as any).google?.accounts?.id
|
||||||
if (!googleApi) {
|
if (!googleApi) throw new Error("Google Identity API is unavailable")
|
||||||
throw new Error("Google Identity API is unavailable")
|
|
||||||
}
|
|
||||||
|
|
||||||
// Avoid repeated initialize() calls that cause unstable GSI behavior.
|
if (googleInitializedClientId === clientId) return
|
||||||
if (googleInitializedClientId === clientId) {
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
|
// Re-initialize with new clientId (or first time)
|
||||||
googleApi.initialize({
|
googleApi.initialize({
|
||||||
client_id: clientId,
|
client_id: clientId,
|
||||||
callback: (response: { credential?: string }) => {
|
callback: (response: { credential?: string }) => {
|
||||||
const credential = (response?.credential || "").trim()
|
const credential = (response?.credential || "").trim()
|
||||||
if (!credential || !pendingCredentialResolver) {
|
const resolver = pendingCredentialResolver
|
||||||
|
const rejecter = pendingCredentialRejecter
|
||||||
|
pendingCredentialResolver = null
|
||||||
|
pendingCredentialRejecter = null
|
||||||
|
|
||||||
|
if (!credential) {
|
||||||
|
rejecter?.(new Error("Google sign-in did not return a credential"))
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
resolver?.(credential)
|
||||||
const resolver = pendingCredentialResolver
|
|
||||||
pendingCredentialResolver = null
|
|
||||||
resolver(credential)
|
|
||||||
},
|
},
|
||||||
auto_select: false,
|
auto_select: false,
|
||||||
cancel_on_tap_outside: true,
|
cancel_on_tap_outside: true,
|
||||||
@@ -79,43 +95,50 @@ async function initializeGoogleIdentity(clientId: string) {
|
|||||||
async function requestGoogleIdToken(clientId: string): Promise<string> {
|
async function requestGoogleIdToken(clientId: string): Promise<string> {
|
||||||
await initializeGoogleIdentity(clientId)
|
await initializeGoogleIdentity(clientId)
|
||||||
|
|
||||||
return new Promise((resolve, reject) => {
|
return new Promise<string>((resolve, reject) => {
|
||||||
const googleApi = (window as any).google?.accounts?.id
|
const googleApi = (window as any).google?.accounts?.id
|
||||||
if (!googleApi) {
|
if (!googleApi) {
|
||||||
reject(new Error("Google Identity API is unavailable"))
|
reject(new Error("Google Identity API is unavailable"))
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
pendingCredentialResolver = resolve
|
// Reject any previous in-flight request
|
||||||
|
pendingCredentialRejecter?.(new Error("A new sign-in request was started"))
|
||||||
|
pendingCredentialResolver = null
|
||||||
|
pendingCredentialRejecter = null
|
||||||
|
|
||||||
const timeoutId = window.setTimeout(() => {
|
const timeoutId = window.setTimeout(() => {
|
||||||
if (!pendingCredentialResolver) {
|
|
||||||
return
|
|
||||||
}
|
|
||||||
pendingCredentialResolver = null
|
pendingCredentialResolver = null
|
||||||
|
pendingCredentialRejecter = null
|
||||||
reject(new Error("Google sign-in timed out. Please try again."))
|
reject(new Error("Google sign-in timed out. Please try again."))
|
||||||
}, 15000)
|
}, 15000)
|
||||||
|
|
||||||
const originalResolver = pendingCredentialResolver
|
|
||||||
pendingCredentialResolver = (token: string) => {
|
pendingCredentialResolver = (token: string) => {
|
||||||
window.clearTimeout(timeoutId)
|
window.clearTimeout(timeoutId)
|
||||||
if (!originalResolver) {
|
|
||||||
reject(new Error("Google sign-in did not complete"))
|
|
||||||
return
|
|
||||||
}
|
|
||||||
resolve(token)
|
resolve(token)
|
||||||
}
|
}
|
||||||
|
pendingCredentialRejecter = (err: Error) => {
|
||||||
|
window.clearTimeout(timeoutId)
|
||||||
|
reject(err)
|
||||||
|
}
|
||||||
|
|
||||||
googleApi.prompt()
|
googleApi.prompt()
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
|
|
||||||
export function AuthProvider({ children }: { children: ReactNode }) {
|
// ─── Auth Context ────────────────────────────────────────────────────────────
|
||||||
return <>{children}</>
|
|
||||||
|
interface AuthContextValue {
|
||||||
|
user: User | null
|
||||||
|
isLoading: boolean
|
||||||
|
loginWithGoogle: () => Promise<unknown>
|
||||||
|
logout: () => Promise<void>
|
||||||
}
|
}
|
||||||
|
|
||||||
// Giữ nguyên custom hook `useAuth` để tương thích ngược với UI components hiện tại
|
const AuthContext = createContext<AuthContextValue | null>(null)
|
||||||
export function useAuth() {
|
|
||||||
const [sessionUser, setSessionUser] = useState<any>(null)
|
export function AuthProvider({ children }: { children: ReactNode }) {
|
||||||
|
const [sessionUser, setSessionUser] = useState<Record<string, unknown> | null>(null)
|
||||||
const [isLoading, setIsLoading] = useState(true)
|
const [isLoading, setIsLoading] = useState(true)
|
||||||
const [googleClientId, setGoogleClientId] = useState("")
|
const [googleClientId, setGoogleClientId] = useState("")
|
||||||
|
|
||||||
@@ -127,9 +150,8 @@ export function useAuth() {
|
|||||||
setSessionUser(null)
|
setSessionUser(null)
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
const data = await res.json()
|
const data = await res.json()
|
||||||
setSessionUser(data?.user || null)
|
setSessionUser((data?.user as Record<string, unknown>) || null)
|
||||||
} catch {
|
} catch {
|
||||||
setSessionUser(null)
|
setSessionUser(null)
|
||||||
} finally {
|
} finally {
|
||||||
@@ -138,32 +160,22 @@ export function useAuth() {
|
|||||||
}, [])
|
}, [])
|
||||||
|
|
||||||
useEffect(() => {
|
useEffect(() => {
|
||||||
fetchSession()
|
void fetchSession()
|
||||||
}, [fetchSession])
|
}, [fetchSession])
|
||||||
|
|
||||||
useEffect(() => {
|
useEffect(() => {
|
||||||
let active = true
|
let active = true
|
||||||
|
|
||||||
const fetchAuthConfig = async () => {
|
const fetchAuthConfig = async () => {
|
||||||
try {
|
try {
|
||||||
const res = await fetch("/api/auth/config", { cache: "no-store" })
|
const res = await fetch("/api/auth/config", { cache: "no-store" })
|
||||||
if (!res.ok) {
|
if (!res.ok) return
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
const data = await res.json()
|
const data = await res.json()
|
||||||
if (active) {
|
if (active) setGoogleClientId(String(data?.googleClientId || "").trim())
|
||||||
setGoogleClientId(String(data?.googleClientId || "").trim())
|
|
||||||
}
|
|
||||||
} catch {
|
} catch {
|
||||||
if (active) {
|
if (active) setGoogleClientId("")
|
||||||
setGoogleClientId("")
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
void fetchAuthConfig()
|
void fetchAuthConfig()
|
||||||
|
|
||||||
return () => {
|
return () => {
|
||||||
active = false
|
active = false
|
||||||
}
|
}
|
||||||
@@ -172,21 +184,19 @@ export function useAuth() {
|
|||||||
const user: User | null = useMemo(() => {
|
const user: User | null = useMemo(() => {
|
||||||
if (!sessionUser) return null
|
if (!sessionUser) return null
|
||||||
return {
|
return {
|
||||||
id: (sessionUser as any).id || "",
|
id: String(sessionUser.id || ""),
|
||||||
username: (sessionUser as any).name || "Người dùng",
|
username: String(sessionUser.name || "Người dùng"),
|
||||||
email: (sessionUser as any).email || "",
|
email: String(sessionUser.email || ""),
|
||||||
avatarUrl: (sessionUser as any).image || "",
|
avatarUrl: String(sessionUser.image || ""),
|
||||||
avatarColor: "bg-blue-500", // Mặc định
|
avatarColor: "bg-blue-500",
|
||||||
role: (sessionUser as any).role || "USER",
|
role: (sessionUser.role as "USER" | "MOD" | "ADMIN") || "USER",
|
||||||
createdAt: new Date().toISOString().split("T")[0],
|
createdAt: new Date().toISOString().split("T")[0],
|
||||||
}
|
}
|
||||||
}, [sessionUser])
|
}, [sessionUser])
|
||||||
|
|
||||||
const loginWithGoogle = async () => {
|
const loginWithGoogle = useCallback(async () => {
|
||||||
const clientId = googleClientId.trim()
|
const clientId = googleClientId.trim()
|
||||||
if (!clientId) {
|
if (!clientId) throw new Error("Google client id is not configured on server runtime")
|
||||||
throw new Error("Google client id is not configured on server runtime")
|
|
||||||
}
|
|
||||||
|
|
||||||
const googleIdToken = await requestGoogleIdToken(clientId)
|
const googleIdToken = await requestGoogleIdToken(clientId)
|
||||||
|
|
||||||
@@ -202,19 +212,29 @@ export function useAuth() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
const payload = await result.json()
|
const payload = await result.json()
|
||||||
setSessionUser(payload?.user || null)
|
setSessionUser((payload?.user as Record<string, unknown>) || null)
|
||||||
|
|
||||||
return payload
|
return payload
|
||||||
}
|
}, [googleClientId])
|
||||||
|
|
||||||
const logout = async () => {
|
const logout = useCallback(async () => {
|
||||||
try {
|
try {
|
||||||
await fetch("/api/auth/logout", { method: "POST" })
|
await fetch("/api/auth/logout", { method: "POST" })
|
||||||
} finally {
|
} finally {
|
||||||
setSessionUser(null)
|
setSessionUser(null)
|
||||||
}
|
}
|
||||||
}
|
}, [])
|
||||||
|
|
||||||
return { user, isLoading, loginWithGoogle, logout }
|
const value = useMemo(
|
||||||
|
() => ({ user, isLoading, loginWithGoogle, logout }),
|
||||||
|
[user, isLoading, loginWithGoogle, logout],
|
||||||
|
)
|
||||||
|
|
||||||
|
return <AuthContext.Provider value={value}>{children}</AuthContext.Provider>
|
||||||
|
}
|
||||||
|
|
||||||
|
export function useAuth(): AuthContextValue {
|
||||||
|
const ctx = useContext(AuthContext)
|
||||||
|
if (!ctx) throw new Error("useAuth must be used within AuthProvider")
|
||||||
|
return ctx
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user