aboutsummaryrefslogtreecommitdiffhomepage
path: root/frontend/app/auth.ts
diff options
context:
space:
mode:
Diffstat (limited to 'frontend/app/auth.ts')
-rw-r--r--frontend/app/auth.ts45
1 files changed, 45 insertions, 0 deletions
diff --git a/frontend/app/auth.ts b/frontend/app/auth.ts
new file mode 100644
index 0000000..7a3d10d
--- /dev/null
+++ b/frontend/app/auth.ts
@@ -0,0 +1,45 @@
+import { type JwtPayload, jwtDecode } from "jwt-decode";
+import type { components } from "./api/schema";
+
+export type User = components["schemas"]["User"];
+
+const COOKIE_NAME = "albatross_token";
+
+export function getToken(): string | null {
+ const match = document.cookie
+ .split("; ")
+ .find((row) => row.startsWith(`${COOKIE_NAME}=`));
+ if (!match) return null;
+ return match.split("=").slice(1).join("=");
+}
+
+export function setToken(token: string): void {
+ document.cookie = `${COOKIE_NAME}=${token}; path=/; SameSite=Lax`;
+}
+
+export function clearToken(): void {
+ document.cookie = `${COOKIE_NAME}=; path=/; SameSite=Lax; max-age=0`;
+}
+
+export function getUserFromToken(): User | null {
+ const token = getToken();
+ if (!token) return null;
+ try {
+ return jwtDecode<User & JwtPayload>(token);
+ } catch {
+ return null;
+ }
+}
+
+export function isTokenExpired(): boolean {
+ const token = getToken();
+ if (!token) return true;
+ try {
+ const decoded = jwtDecode<JwtPayload>(token);
+ if (decoded.exp == null) return false;
+ // If the token will expire in less than an hour, treat it as expired.
+ return new Date((decoded.exp - 3600) * 1000) < new Date();
+ } catch {
+ return true;
+ }
+}
generated by cgit v1.3.1 (git 2.54.0) at 2026-06-03 21:56:53 +0000