Merge pull request #63 from nimblehq/feature/12-backend-refresh-token

nkhanh44 · web-flow · commit e9a78b3a2e8e · 2023-08-23T12:13:43.000+07:00
[#12] [Backend] As a user, I can see the app automatically refreshes my expired access token
diff --git a/lib/api/authentication_api_service.dart b/lib/api/authentication_api_service.dart
@@ -1,7 +1,8 @@
 import 'package:dio/dio.dart';
-import 'package:survey_flutter/model/request/login_request.dart';
-import 'package:survey_flutter/model/response/login_response.dart';
 import 'package:retrofit/retrofit.dart';
+import 'package:survey_flutter/model/request/login_request.dart';
+import 'package:survey_flutter/model/request/refresh_token_request.dart';
+import 'package:survey_flutter/model/response/token_response.dart';
 
 part 'authentication_api_service.g.dart';
 
@@ -11,7 +12,12 @@ abstract class AuthenticationApiService {
       _AuthenticationApiService;
 
   @POST('/oauth/token')
-  Future<LoginResponse> login(
-    @Body() LoginRequest body,
+  Future<TokenResponse> login(
+    @Body() LoginRequest loginRequest,
+  );
+
+  @POST('/oauth/token')
+  Future<TokenResponse> refreshToken(
+    @Body() RefreshTokenRequest refreshTokenRequest,
   );
 }
diff --git a/lib/api/data_sources/token_data_source.dart b/lib/api/data_sources/token_data_source.dart
@@ -0,0 +1,56 @@
+import 'package:flutter_riverpod/flutter_riverpod.dart';
+import 'package:survey_flutter/api/authentication_api_service.dart';
+import 'package:survey_flutter/di/provider/dio_provider.dart';
+import 'package:survey_flutter/env.dart';
+import 'package:survey_flutter/model/api_token.dart';
+import 'package:survey_flutter/model/request/refresh_token_request.dart';
+import 'package:survey_flutter/storage/secure_storage.dart';
+import 'package:survey_flutter/storage/secure_storage_impl.dart';
+
+final tokenDataSourceProvider = Provider<TokenDataSource>((ref) {
+  return TokenDataSourceImpl(ref.watch(secureStorageProvider),
+      AuthenticationApiService(DioProvider().getDio()));
+});
+
+abstract class TokenDataSource {
+  Future<ApiToken> getToken({bool forceRefresh});
+  Future<void> setToken(ApiToken token);
+}
+
+class TokenDataSourceImpl extends TokenDataSource {
+  final SecureStorage _secureStorage;
+  final AuthenticationApiService _authenticationApiService;
+  final String _grantType = 'refresh_token';
+
+  TokenDataSourceImpl(
+    this._secureStorage,
+    this._authenticationApiService,
+  );
+
+  @override
+  Future<ApiToken> getToken({bool forceRefresh = false}) async {
+    if (forceRefresh) {
+      final tokenResponse = await _authenticationApiService.refreshToken(
+        RefreshTokenRequest(
+          grantType: _grantType,
+          clientId: Env.clientId,
+          clientSecret: Env.clientSecret,
+        ),
+      );
+      final apiToken = tokenResponse.toApiToken();
+      await _secureStorage.save(
+        value: apiToken,
+        key: SecureStorageKey.apiToken,
+      );
+      return apiToken;
+    }
+
+    return await _secureStorage.getValue(key: SecureStorageKey.apiToken)
+        as ApiToken;
+  }
+
+  @override
+  Future<void> setToken(ApiToken token) async {
+    await _secureStorage.save(value: token, key: SecureStorageKey.apiToken);
+  }
+}
diff --git a/lib/api/interceptor/auth_interceptor.dart b/lib/api/interceptor/auth_interceptor.dart
@@ -0,0 +1,58 @@
+import 'dart:io';
+
+import 'package:dio/dio.dart';
+import 'package:survey_flutter/api/data_sources/token_data_source.dart';
+
+const String _headerAuthorization = 'Authorization';
+const String _retryCountOption = 'Retry-Count';
+
+class AuthInterceptor extends Interceptor {
+  final Dio _dio;
+  final TokenDataSource _tokenDataSource;
+
+  AuthInterceptor(
+    this._dio,
+    this._tokenDataSource,
+  );
+
+  @override
+  void onRequest(
+    RequestOptions options,
+    RequestInterceptorHandler handler,
+  ) async {
+    final token = await _tokenDataSource.getToken();
+    options.headers.putIfAbsent(
+        _headerAuthorization, () => "${token.tokenType} ${token.accessToken}");
+    super.onRequest(options, handler);
+  }
+
+  @override
+  void onError(
+    DioError err,
+    ErrorInterceptorHandler handler,
+  ) {
+    final statusCode = err.response?.statusCode;
+    final requestOptions = err.requestOptions;
+
+    if (statusCode != HttpStatus.forbidden &&
+        statusCode != HttpStatus.unauthorized &&
+        requestOptions.extra[_retryCountOption] != 1) {
+      handler.next(err);
+      return;
+    }
+
+    requestOptions.extra[_retryCountOption] = 1;
+    _refreshTokenAndRetry(requestOptions, handler);
+  }
+
+  Future<void> _refreshTokenAndRetry(
+    RequestOptions options,
+    ErrorInterceptorHandler handler,
+  ) async {
+    final token = await _tokenDataSource.getToken(forceRefresh: true);
+    final headers = options.headers;
+    headers[_headerAuthorization] = "${token.tokenType} ${token.accessToken}";
+    final newOptions = options.copyWith(headers: headers);
+    await _dio.fetch(newOptions).then((response) => handler.resolve(response));
+  }
+}
diff --git a/lib/di/provider/dio_provider.dart b/lib/di/provider/dio_provider.dart
@@ -1,27 +1,41 @@
 import 'package:dio/dio.dart';
 import 'package:flutter/foundation.dart';
-import 'package:survey_flutter/di/interceptor/app_interceptor.dart';
+import 'package:survey_flutter/api/data_sources/token_data_source.dart';
+import 'package:survey_flutter/api/interceptor/auth_interceptor.dart';
 import 'package:survey_flutter/env.dart';
 
 const String _headerContentType = 'Content-Type';
 const String _defaultContentType = 'application/json; charset=utf-8';
 
 class DioProvider {
   Dio? _dio;
+  Dio? _authorizedDio;
+  TokenDataSource? _tokenDataSource;
 
   Dio getDio() {
     _dio ??= _createDio();
     return _dio!;
   }
 
-  Dio _createDio({bool requireAuthenticate = false}) {
+  Dio getAuthorizedDio({
+    required TokenDataSource tokenDataSource,
+  }) {
+    _tokenDataSource = tokenDataSource;
+    _authorizedDio ??= _createDio(requireAuthentication: true);
+    return _authorizedDio!;
+  }
+
+  Dio _createDio({bool requireAuthentication = false}) {
     final dio = Dio();
-    final appInterceptor = AppInterceptor(
-      requireAuthenticate,
-      dio,
-    );
+
     final interceptors = <Interceptor>[];
-    interceptors.add(appInterceptor);
+    if (requireAuthentication) {
+      final authInterceptor = AuthInterceptor(
+        dio,
+        _tokenDataSource!,
+      );
+      interceptors.add(authInterceptor);
+    }
     if (!kReleaseMode) {
       interceptors.add(LogInterceptor(
         request: true,
diff --git a/lib/model/request/refresh_token_request.dart b/lib/model/request/refresh_token_request.dart
@@ -0,0 +1,21 @@
+import 'package:freezed_annotation/freezed_annotation.dart';
+
+part 'refresh_token_request.g.dart';
+
+@JsonSerializable()
+class RefreshTokenRequest {
+  @JsonKey(name: 'grant_type')
+  final String grantType;
+  @JsonKey(name: 'client_id')
+  final String clientId;
+  @JsonKey(name: 'client_secret')
+  final String clientSecret;
+
+  RefreshTokenRequest({
+    required this.grantType,
+    required this.clientId,
+    required this.clientSecret,
+  });
+
+  Map<String, dynamic> toJson() => _$RefreshTokenRequestToJson(this);
+}
diff --git a/lib/model/response/token_response.dart b/lib/model/response/token_response.dart
@@ -3,18 +3,18 @@ import 'package:survey_flutter/api/response_decoder.dart';
 import 'package:survey_flutter/model/api_token.dart';
 import 'package:survey_flutter/model/login_model.dart';
 
-part 'login_response.g.dart';
+part 'token_response.g.dart';
 
 @JsonSerializable()
-class LoginResponse {
+class TokenResponse {
   final String id;
   final String accessToken;
   final String tokenType;
   final double expiresIn;
   final String refreshToken;
   final int createdAt;
 
-  LoginResponse({
+  TokenResponse({
     required this.id,
     required this.accessToken,
     required this.tokenType,
@@ -23,8 +23,8 @@ class LoginResponse {
     required this.createdAt,
   });
 
-  factory LoginResponse.fromJson(Map<String, dynamic> json) =>
-      _$LoginResponseFromJson(ResponseDecoder.decodeData(json));
+  factory TokenResponse.fromJson(Map<String, dynamic> json) =>
+      _$TokenResponseFromJson(ResponseDecoder.decodeData(json));
 
   LoginModel toLoginModel() => LoginModel(
         id: id,
@@ -39,8 +39,8 @@ class LoginResponse {
         tokenType: tokenType,
       );
 
-  static LoginResponse dummy() {
-    return LoginResponse(
+  static TokenResponse dummy() {
+    return TokenResponse(
       id: "",
       accessToken: "",
       tokenType: "",
diff --git a/lib/repositories/authentication_repository.dart b/lib/repositories/authentication_repository.dart
@@ -1,20 +1,19 @@
 import 'package:flutter_riverpod/flutter_riverpod.dart';
 import 'package:survey_flutter/api/authentication_api_service.dart';
+import 'package:survey_flutter/api/data_sources/token_data_source.dart';
 import 'package:survey_flutter/api/exception/network_exceptions.dart';
 import 'package:survey_flutter/di/provider/dio_provider.dart';
 import 'package:survey_flutter/env.dart';
 import 'package:survey_flutter/model/login_model.dart';
 import 'package:survey_flutter/model/request/login_request.dart';
-import 'package:survey_flutter/storage/secure_storage.dart';
-import 'package:survey_flutter/storage/secure_storage_impl.dart';
 
 const String _grantType = "password";
 
 final authenticationRepositoryProvider =
     Provider<AuthenticationRepository>((ref) {
   return AuthenticationRepositoryImpl(
     AuthenticationApiService(DioProvider().getDio()),
-    ref.watch(secureStorageProvider),
+    ref.watch(tokenDataSourceProvider),
   );
 });
 
@@ -27,11 +26,11 @@ abstract class AuthenticationRepository {
 
 class AuthenticationRepositoryImpl extends AuthenticationRepository {
   final AuthenticationApiService _authenticationApiService;
-  final SecureStorage _secureStorage;
+  final TokenDataSource _tokenDataSource;
 
   AuthenticationRepositoryImpl(
     this._authenticationApiService,
-    this._secureStorage,
+    this._tokenDataSource,
   );
 
   @override
@@ -47,10 +46,7 @@ class AuthenticationRepositoryImpl extends AuthenticationRepository {
         clientSecret: Env.clientSecret,
         grantType: _grantType,
       ));
-      await _secureStorage.save(
-        value: response.toApiToken(),
-        key: SecureStorageKey.apiToken,
-      );
+      await _tokenDataSource.setToken(response.toApiToken());
       return response.toLoginModel();
     } catch (exception) {
       throw NetworkExceptions.fromDioException(exception);
diff --git a/lib/repositories/survey_repository.dart b/lib/repositories/survey_repository.dart
@@ -1,7 +1,18 @@
+import 'package:flutter_riverpod/flutter_riverpod.dart';
+import 'package:survey_flutter/api/data_sources/token_data_source.dart';
 import 'package:survey_flutter/api/exception/network_exceptions.dart';
 import 'package:survey_flutter/api/survey_api_service.dart';
+import 'package:survey_flutter/di/provider/dio_provider.dart';
 import 'package:survey_flutter/model/surveys_container_model.dart';
 
+final surveyRepositoryProvider = Provider<SurveyRepository>((ref) {
+  return SurveyRepositoryImpl(
+    SurveyApiService(DioProvider().getAuthorizedDio(
+      tokenDataSource: ref.watch(tokenDataSourceProvider),
+    )),
+  );
+});
+
 abstract class SurveyRepository {
   Future<SurveysContainerModel> getSurveys({
     required int pageNumber,
diff --git a/test/api/data_sources/token_data_source_test.dart b/test/api/data_sources/token_data_source_test.dart
diff --git a/test/api/repositories/authentication_repository_test.dart b/test/api/repositories/authentication_repository_test.dart
diff --git a/test/mocks/generate_mocks.dart b/test/mocks/generate_mocks.dart
