Merge branch 'feat/frontend-rearchitecture'

1 files changed, 45 insertions, 0 deletions

diff --git a/frontend/app/auth.ts b/frontend/app/auth.ts
new file mode 100644
index 0000000..7a3d10d
--- /dev/null
+++ b/frontend/app/auth.ts
@@ -0,0 +1,45 @@
+import { type JwtPayload, jwtDecode } from "jwt-decode";
+import type { components } from "./api/schema";
+
+export type User = components["schemas"]["User"];
+
+const COOKIE_NAME = "albatross_token";
+
+export function getToken(): string | null {
+	const match = document.cookie
+		.split("; ")
+		.find((row) => row.startsWith(`${COOKIE_NAME}=`));
+	if (!match) return null;
+	return match.split("=").slice(1).join("=");
+}
+
+export function setToken(token: string): void {
+	document.cookie = `${COOKIE_NAME}=${token}; path=/; SameSite=Lax`;
+}
+
+export function clearToken(): void {
+	document.cookie = `${COOKIE_NAME}=; path=/; SameSite=Lax; max-age=0`;
+}
+
+export function getUserFromToken(): User | null {
+	const token = getToken();
+	if (!token) return null;
+	try {
+		return jwtDecode<User & JwtPayload>(token);
+	} catch {
+		return null;
+	}
+}
+
+export function isTokenExpired(): boolean {
+	const token = getToken();
+	if (!token) return true;
+	try {
+		const decoded = jwtDecode<JwtPayload>(token);
+		if (decoded.exp == null) return false;
+		// If the token will expire in less than an hour, treat it as expired.
+		return new Date((decoded.exp - 3600) * 1000) < new Date();
+	} catch {
+		return true;
+	}
+}