fix(auth.provider): validate token when page changed

joonas-yoon · joonas-yoon · commit bc39a53e32d0 · 2022-09-15T02:10:43.000+09:00
diff --git a/react-app/src/components/AuthProvider.jsx b/react-app/src/components/AuthProvider.jsx
@@ -16,26 +16,25 @@ export const useAuth = () => {
 
 export const AuthProvider = ({ afterLogin, children }) => {
   const navigate = useNavigate();
+  const [isAuthenticated, setAuthenticated] = useState(false);
+  const location = useLocation();
 
-  const TOKEN_NAME = 'access_token';
+  const getAuthenticated = async () => {
+    const result = await customAxios()
+      .get('auth/authenticated-route')
+      .then(() => true)
+      .catch(() => false);
+    setAuthenticated(result);
+  };
 
-  const token = useMemo(() => {
-    return storage.get(TOKEN_NAME);
-  }, [storage]);
+  useEffect(() => {
+    getAuthenticated();
+  }, [location]);
 
-  const [isAuthenticated, setAuthenticated] = useState(false);
+  const TOKEN_NAME = 'access_token';
+  const token = storage.get(TOKEN_NAME);
 
-  useEffect(() => {
-    customAxios()
-      .get('/users/me')
-      .then((res) => {
-        console.log(res.response);
-        setAuthenticated(true);
-      })
-      .catch(() => {
-        setAuthenticated(false);
-      });
-  }, [token]);
+  console.log('[Provider] token:', token);
 
   const storeToken = (accessToken) => {
     storage.set(TOKEN_NAME, accessToken);
@@ -48,7 +47,7 @@ export const AuthProvider = ({ afterLogin, children }) => {
     const url = new URL(location.href);
     const next = url.searchParams.get('next');
     const redirectUrl = afterLogin || next || '/';
-    navigate(redirectUrl === '/login' ? '/' : redirectUrl);
+    navigate(redirectUrl);
   };
 
   const handleLogout = () => {
@@ -67,10 +66,10 @@ export const AuthProvider = ({ afterLogin, children }) => {
 };
 
 export const ProtectedRoute = ({ redirectTo, children }) => {
-  const { token, isAuthenticated } = useAuth();
+  const { isAuthenticated } = useAuth();
   const location = useLocation();
 
-  console.log('token', token, 'isAuthenticated', isAuthenticated);
+  console.log('isAuthenticated', isAuthenticated);
 
   if (!isAuthenticated) {
     const origin = location?.origin || window.location.origin;
diff --git a/react-app/src/pages/Auth.jsx b/react-app/src/pages/Auth.jsx
@@ -12,9 +12,11 @@ export const Login = () => {
     status: null,
     message: '',
   });
-  const { login } = useAuth();
+  const { login, isAuthenticated } = useAuth();
   const location = useLocation();
 
+  console.log('Component rendered: isAuthenticated', isAuthenticated);
+
   const onSubmit = (username, password) => {
     const formData = qs.stringify({
       username,
