OAuth token expire and refresh token did not generate new

Anjana_Dhakal · January 2, 2024, 4:45am

Hello, I’ve been watching youtube ( [BuildWithHussain] Ep. 8: Mobile App with Frappe & React Native! ). Despite the fact that the access token has a 1 hour expiration time, it logs out after 1 hour even when there is a refreshtoken available that generates a new token. Having never worked with mobile development before, I cannot find a solution. The other ways I tried were unsuccessful. After the expiration date, the access code is generated more than once and the user is logged out.

code link : GitHub - NagariaHussain/doppio_mobile: React Native + Expo Starter template to build apps backed by Frappe (auth.js)

Thank you in advance!!!

revant_one · January 2, 2024, 5:11am

Use this new access_token to continue access. Keep the new refresh_token for later. Repeat this. You need to keep refreshing bearer token and use the latest valid access_token.

Anjana_Dhakal · January 2, 2024, 10:00am

Do you have any example in git repo. it would be more helpful.

revant_one · January 2, 2024, 1:34pm

Check what getToken does.

Anjana_Dhakal · January 8, 2024, 5:24pm

thank you!!
but still can`t figure it out.
I tried as you provide getting expiresIn from the store and refresh the token before the expire time and also adding interval for refreshing but not reach the requirement and also even after the login and with right credentials it shows error 401 but works until first bearer token expire.
here is the code

import React, { createContext, useState, useEffect } from "react";
import {
  BASE_URI,
  OAUTH_CLIENT_ID,
  REDIRECT_URL_SCHEME,
  SECURE_AUTH_STATE_KEY,
} from "../data/constants";
import * as AuthSession from "expo-auth-session";
import * as SecureStore from "expo-secure-store";
import { FrappeApp } from "frappe-js-sdk";

const AuthContext = createContext({});

const AuthProvider = (props) => {
  const [isAuthenticated, setIsAuthenticated] = useState(false);
  const redirectUri = AuthSession.makeRedirectUri({
    scheme: REDIRECT_URL_SCHEME,
    path: "auth",
  });

  const [accessToken, setToken] = useState(null);
  const [refreshToken, setRefreshToken] = useState(null);
  const [userInfo, setUserInfo] = useState(null);

  const [request, response, promptAsync] = AuthSession.useAuthRequest(
    {
      clientId: OAUTH_CLIENT_ID,
      redirectUri,
      responseType: "code",
      scopes: ["all"],
      usePKCE: false,
    },
    {
      authorizationEndpoint: `${BASE_URI}/api/method/frappe.integrations.oauth2.authorize`,
      tokenEndpoint: `${BASE_URI}/api/method/frappe.integrations.oauth2.get_token`,
    }
  );

  const fetchUserInfo = async () => {
    if (!accessToken) {
      console.error("accessToken not found");
      return;
    }

    const frappe = new FrappeApp(BASE_URI, {
      useToken: true,
      type: "Bearer",
      token: () => accessToken,
    });


    try {
      const call = frappe.call();
      const userInfo = await call.get("frappe.integrations.oauth2.openid_profile")
      setUserInfo(userInfo);
    } catch (e) {
      if (e.httpStatus === 403) {
        // refresh token
        await refreshAccessTokenAsync();
      }
    }
  };

  const logout = async () => {
    await SecureStore.deleteItemAsync(SECURE_AUTH_STATE_KEY);
    setIsAuthenticated(false);
    setToken(null);
    setRefreshToken(null);
    setUserInfo(null);
  };

  const refreshAccessTokenAsync = async () => {
    if (!refreshToken) {
      logout();
      return;
    }
    AuthSession.refreshAsync(
      {
        refreshToken,
      },
      {
        tokenEndpoint: `${BASE_URI}/api/method/frappe.integrations.oauth2.get_token`,
      }
    )
      .then(async (res) => {
        const authResponse = res;
        const storageValue = JSON.stringify(authResponse);
        await SecureStore.setItemAsync(SECURE_AUTH_STATE_KEY, storageValue);

        setToken(authResponse.accessToken);
        setRefreshToken(authResponse.refreshToken);
        setIsAuthenticated(true);

        const frappe = new FrappeApp(BASE_URI, {
          useToken: true,
          type: "Bearer",
          token: () => accessToken,
        });
        const call = frappe.call();
        const userInfo = await call.get("frappe.integrations.oauth2.openid_profile")
        setUserInfo(userInfo);
      })
      .catch((err) => {
        // unable to refresh
        // clean up auth state
        logout();
        console.error(err);
      });
  };

  useEffect(() => {
    SecureStore.getItemAsync(SECURE_AUTH_STATE_KEY)
      .then((result) => {
        if (result) {
          const { accessToken, refreshToken } = JSON.parse(result);
          setToken(accessToken);
          setRefreshToken(refreshToken);
          setIsAuthenticated(true);
        } else {
          if (response?.type === "success") {
            const { code } = response.params;
            AuthSession.exchangeCodeAsync(
              {
                redirectUri,
                code,
                extraParams: {
                  grant_type: "authorization_code",
                  client_id: OAUTH_CLIENT_ID,
                },
                clientId: OAUTH_CLIENT_ID,
              },
              {
                tokenEndpoint: `${BASE_URI}/api/method/frappe.integrations.oauth2.get_token`,
              }
            )
              .then(async (res) => {
                const authResponse = res;
                const storageValue = JSON.stringify(authResponse);
                await SecureStore.setItemAsync(
                  SECURE_AUTH_STATE_KEY,
                  storageValue
                );

                setToken(authResponse.accessToken);
                setRefreshToken(authResponse.refreshToken);
                setIsAuthenticated(true);
              })
              .catch((err) => {
                console.error(err);
              });
          } else {
            console.log("Not authenticated")
          }
        }
      })
      .catch((e) => console.error(e));
  }, [response]);

  useEffect(() => {
    if (accessToken) {
      fetchUserInfo();
    }
  }, [accessToken])

  return (
    <AuthContext.Provider
      value={{
        isAuthenticated,
        accessToken,
        refreshToken,
        userInfo,
        request,
        promptAsync,
        logout,
        refreshAccessTokenAsync,
        fetchUserInfo
      }}
    >
      {props.children}
    </AuthContext.Provider>
  );
};

export { AuthContext, AuthProvider };