Use cookies for client requests (#377)

* Use cookie for frontend request * Remove api helper to use SDK * Added error handling to status box * Remove additional places that check for session.user * Refactor sending password * prettier clean up * remove deadcode * Move all authentication requests to the client * refactor upload panel to only fetch assets after the upload panel disappear * Added keydown to remove focus on title change on album viewer
2026-01-16 06:06:20 +00:00 · 2022-07-26 12:28:07 -05:00
parent 2ebb755f00
commit 83cbf51704
54 changed files with 4954 additions and 4540 deletions
--- a/web/src/routes/auth/change-password/index.svelte
+++ b/web/src/routes/auth/change-password/index.svelte
@@ -3,14 +3,7 @@

 	import type { Load } from '@sveltejs/kit';

-	export const load: Load = async ({ session }) => {
-		if (!session.user) {
-			return {
-				status: 302,
-				redirect: '/auth/login',
-			};
-		}
-
+	export const load: Load = async () => {
 		try {
 			const { data: userInfo } = await api.userApi.getMyUserInfo();

@@ -18,20 +11,19 @@
 				return {
 					status: 200,
 					props: {
-						user: userInfo,
-					},
+						user: userInfo
+					}
 				};
 			} else {
 				return {
 					status: 302,
-					redirect: '/photos',
+					redirect: '/photos'
 				};
 			}
 		} catch (e) {
-			console.log('ERROR Getting user info', e);
 			return {
 				status: 302,
-				redirect: '/photos',
+				redirect: '/auth/login'
 			};
 		}
 	};
--- a/web/src/routes/auth/change-password/index.ts
+++ b/web/src/routes/auth/change-password/index.ts
@@ -1,38 +0,0 @@
-import type { RequestHandler } from '@sveltejs/kit';
-import { api } from '@api';
-
-export const POST: RequestHandler = async ({ request, locals }) => {
-	if (!locals.user) {
-		return {
-			status: 401,
-			body: {
-				error: 'Unauthorized'
-			}
-		};
-	}
-
-	const form = await request.formData();
-	const password = form.get('password');
-
-	const { status } = await api.userApi.updateUser({
-		id: locals.user.id,
-		password: String(password),
-		shouldChangePassword: false
-	});
-
-	if (status === 200) {
-		return {
-			status: 200,
-			body: {
-				success: 'Succesfully change password'
-			}
-		};
-	} else {
-		return {
-			status: 400,
-			body: {
-				error: 'Error change password'
-			}
-		};
-	}
-};
--- a/web/src/routes/auth/login/index.ts
+++ b/web/src/routes/auth/login/index.ts
@@ -1,59 +0,0 @@
-import type { RequestHandler } from '@sveltejs/kit';
-import * as cookie from 'cookie';
-import { api } from '@api';
-
-export const POST: RequestHandler = async ({ request }) => {
-	const form = await request.formData();
-
-	const email = form.get('email');
-	const password = form.get('password');
-
-	try {
-		const { data: authUser } = await api.authenticationApi.login({
-			email: String(email),
-			password: String(password)
-		});
-
-		return {
-			status: 200,
-			body: {
-				user: {
-					id: authUser.userId,
-					accessToken: authUser.accessToken,
-					firstName: authUser.firstName,
-					lastName: authUser.lastName,
-					isAdmin: authUser.isAdmin,
-					email: authUser.userEmail,
-					shouldChangePassword: authUser.shouldChangePassword
-				},
-				success: 'success'
-			},
-			headers: {
-				'Set-Cookie': cookie.serialize(
-					'session',
-					JSON.stringify({
-						id: authUser.userId,
-						accessToken: authUser.accessToken,
-						firstName: authUser.firstName,
-						lastName: authUser.lastName,
-						isAdmin: authUser.isAdmin,
-						email: authUser.userEmail
-					}),
-					{
-						path: '/',
-						httpOnly: true,
-						sameSite: 'strict',
-						maxAge: 60 * 60 * 24 * 30
-					}
-				)
-			}
-		};
-	} catch (error) {
-		return {
-			status: 400,
-			body: {
-				error: 'Incorrect email or password'
-			}
-		};
-	}
-};
--- a/web/src/routes/auth/logout.ts
+++ b/web/src/routes/auth/logout.ts
@@ -1,9 +1,15 @@
+import { api } from '@api';
 import type { RequestHandler } from '@sveltejs/kit';

 export const POST: RequestHandler = async () => {
+	api.removeAccessToken();
+
 	return {
 		headers: {
-			'Set-Cookie': 'session=deleted; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT'
+			'Set-Cookie': [
+				'immich_is_authenticated=deleted; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT;',
+				'immich_access_token=delete; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT'
+			]
 		},
 		body: {
 			ok: true
--- a/web/src/routes/auth/register/index.svelte
+++ b/web/src/routes/auth/register/index.svelte
@@ -1,25 +1,19 @@
 <script context="module" lang="ts">
 	import type { Load } from '@sveltejs/kit';

-	export const load: Load = async ({ session }) => {
+	export const load: Load = async () => {
 		const { data } = await api.userApi.getUserCount();
-
 		if (data.userCount != 0) {
 			// Admin has been registered, redirect to login
-			if (!session.user) {
-				return {
-					status: 302,
-					redirect: '/auth/login',
-				};
-			} else {
-				return {
-					status: 302,
-					redirect: '/photos',
-				};
-			}
+			return {
+				status: 302,
+				redirect: '/auth/login'
+			};
 		}

-		return {};
+		return {
+			status: 200
+		};
 	};
 </script>

--- a/web/src/routes/auth/register/index.ts
+++ b/web/src/routes/auth/register/index.ts
@@ -1,34 +0,0 @@
-import type { RequestHandler } from '@sveltejs/kit';
-import { api } from '@api';
-
-export const POST: RequestHandler = async ({ request }) => {
-	const form = await request.formData();
-
-	const email = form.get('email');
-	const password = form.get('password');
-	const firstName = form.get('firstName');
-	const lastName = form.get('lastName');
-
-	const { status } = await api.authenticationApi.adminSignUp({
-		email: String(email),
-		password: String(password),
-		firstName: String(firstName),
-		lastName: String(lastName)
-	});
-
-	if (status === 201) {
-		return {
-			status: 201,
-			body: {
-				success: 'Succesfully create admin account'
-			}
-		};
-	} else {
-		return {
-			status: 400,
-			body: {
-				error: 'Error create admin account'
-			}
-		};
-	}
-};