Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

In the React SDK, isLoggedIn set to false on first token expiry and never back to true after a successful refresh [reopened] #166

Closed
sachams opened this issue Sep 17, 2024 · 6 comments
Closed

In the React SDK, isLoggedIn set to false on first token expiry and never back to true after a successful refresh [reopened] #166

sachams opened this issue Sep 17, 2024 · 6 comments
Assignees
@alex-fusionauth
Labels
bug Something isn't working React

Comments

@sachams
Copy link

sachams commented Sep 17, 2024

In the React SDK, isLoggedIn set to false on first token expiry and never back to true after a successful refresh [reopened]

Description

This is a reopening of this issue, which still persists after upgrading to v2.4.2 of the SDK.

Affects package

react-sdk

Affects versions

"@fusionauth/react-sdk@npm:^2.4.2":
  version: 2.4.2
  resolution: "@fusionauth/react-sdk@npm:2.4.2"
  dependencies:
    classnames: "npm:^2.3.2"
  peerDependencies:
    react: ">=18.2.0"
    react-dom: ">=18.2.0"
  checksum: 10c0/5eae2a0def35e01b8dbd8379e0dd5a7d1218a1686b53e83b2c90b8f07c24f33f12dc519c24a4a75a67f9890b2ff96689d1de2b532ec1c3f261f2525e56b6f42d
  languageName: node
  linkType: hard

Steps to reproduce

Steps to reproduce the behavior:
Add logging like this into App, and set the JWT token expiry to 10s

  console.log("App: isLoggedIn", isLoggedIn, " isFetchingUserInfo", isFetchingUserInfo)

After the token expires, isLoggedIn gets set to false and never gets set back to true.

Expected behavior

It is expected that isLoggedIn gets set back to true when the token is refreshed.

Screenshots

isLoggedIn.mp4

Platform

(Please complete the following information)

  • Device: Desktop
  • OS: macOs
  • Chrome Version 128.0.6613.138 (Official Build) (arm64)

Community guidelines

All issues filed in this repository must abide by the FusionAuth community guidelines.
@sachams sachams added the bug Something isn't working label Sep 17, 2024
@MaxDNG
Copy link

MaxDNG commented Sep 18, 2024

The cause might be similar to an issue I had with React.StrictMode (see #168).

Do you have the same issue without StrictMode (assuming you are using it)? If not, did you try increasing the autoRefreshSecondsBeforeExpiry value? It might be that the refresh call takes too long and completes after the tokenExpirationTimeout ends.

That being said, if the refresh does work, it should indeed call the setIsLoggedIn method, through a config onAutoRefreshSuccess for example.

As a matter of fact, as pointed out by @johnmccalla in the other issue, there is clearly a problem with the config being destructured and used as a dependency in the useMemo. This triggers unnecessary re-creation of the SDKCore. Plus if the SDKCore is recreated, then the loggedIn state should probably be recomputed from the new SDKCore instance (as it stand, it's only ever set to true potentially on mount).

I'll try to open a PR for this.

@vamsichundi
Copy link

vamsichundi commented Sep 18, 2024
edited
Loading

@sachams I am also facing the same, application is logging out after performing autorefresh. then it is redirecting to/loginwhere isLoggedIn is set to false. How can we set it to true or redirect to success url ? is there any hook or doc that we can fix this issue

@MaxDNG any thoughts on this i didnt find onAutoRefreshSuccess hook config any where from config or context provider

@johnmccalla
Copy link

I wasn't fast enough to comment in the other issue (my bad) before it got closed, but I decided to write my own logic, the sdk is just too complex. (Another problem I was having is with the long timeouts on some mobile devices not behaving properly after suspend/sleep resumes.)

My own implementation is pretty simple:
(1) Exposes 3 states: isLoggedIn (false initially), isUserInfoPending (true initially), isTokenRefreshingPending (true initially, this allows the app to wait until the initial state is "settled")
(1) Refresh token on startup if current access token is expired
(2) Check for token expiry every minute, and if happening "soon", refresh, and if it fails, user is logged out
(3) Fetch the user info anytime isLoggedIn changes.

This makes it very easy for downstream components to understand what's happening and decide what screens to put up.

@alex-fusionauth alex-fusionauth self-assigned this Sep 19, 2024
@JakeLo123 JakeLo123 mentioned this issue Sep 19, 2024
Merged
1 task
@JakeLo123
Copy link
Collaborator

Here's a PR

There was a prior bug fix for this issue -- see changes for 2.1.1. I installed that version and the bug doesn't produce, so it must've regressed at some point between then and now.

In any case, I hope that helps! Between that and this nice PR from @MaxDNG it should clean up some of the issues with timeout/callback syncing.

@alex-fusionauth
Copy link
Contributor

Thanks once again @JakeLo123!

The latest has been released
https://www.npmjs.com/package/@fusionauth/react-sdk/v/2.4.3

If anyone sees issues, I can reopen it.

@sachams
Copy link
Author

sachams commented Sep 21, 2024
edited
Loading

Hey all thanks for the comments and @JakeLo123 @alex-fusionauth thanks for the fix! I have just tested it and it is looking good so far! 🙌

@sachams sachams mentioned this issue Nov 22, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@alex-fusionauth alex-fusionauth

Labels
bug Something isn't working React
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@johnmccalla @sachams @vamsichundi @MaxDNG @JakeLo123 @alex-fusionauth