refactor: switch to HttpOnly cookie (#660)

* Switch to httpOnly cookie * create endpoint to retrieve temporary collaboration token * cleanups
2025-11-18 18:31:20 +10:00 · 2025-01-22 22:11:11 +00:00
parent f2235fd2a2
commit 990612793f
29 changed files with 240 additions and 276 deletions
--- a/apps/client/src/features/auth/services/auth-service.ts
+++ b/apps/client/src/features/auth/services/auth-service.ts
@ -1,51 +1,49 @@
 import api from "@/lib/api-client";
 import {
  IChangePassword,
+  ICollabToken,
  IForgotPassword,
  ILogin,
  IPasswordReset,
-  IRegister,
  ISetupWorkspace,
-  ITokenResponse,
  IVerifyUserToken,
 } from "@/features/auth/types/auth.types";

-export async function login(data: ILogin): Promise<ITokenResponse> {
-  const req = await api.post<ITokenResponse>("/auth/login", data);
-  return req.data;
+export async function login(data: ILogin): Promise<void> {
+  await api.post<void>("/auth/login", data);
 }

-/*
-export async function register(data: IRegister): Promise<ITokenResponse> {
-  const req = await api.post<ITokenResponse>("/auth/register", data);
-  return req.data;
-}*/
+export async function logout(): Promise<void> {
+  await api.post<void>("/auth/logout");
+}

 export async function changePassword(
-  data: IChangePassword
+  data: IChangePassword,
 ): Promise<IChangePassword> {
  const req = await api.post<IChangePassword>("/auth/change-password", data);
  return req.data;
 }

 export async function setupWorkspace(
-  data: ISetupWorkspace
-): Promise<ITokenResponse> {
-  const req = await api.post<ITokenResponse>("/auth/setup", data);
+  data: ISetupWorkspace,
+): Promise<any> {
+  const req = await api.post<any>("/auth/setup", data);
  return req.data;
 }

 export async function forgotPassword(data: IForgotPassword): Promise<void> {
-  await api.post<any>("/auth/forgot-password", data);
+  await api.post<void>("/auth/forgot-password", data);
 }

-export async function passwordReset(
-  data: IPasswordReset
-): Promise<ITokenResponse> {
-  const req = await api.post<any>("/auth/password-reset", data);
-  return req.data;
+export async function passwordReset(data: IPasswordReset): Promise<void> {
+  await api.post<void>("/auth/password-reset", data);
 }

 export async function verifyUserToken(data: IVerifyUserToken): Promise<any> {
  return api.post<any>("/auth/verify-token", data);
 }
+
+export async function getCollabToken(): Promise<ICollabToken> {
+  const req = await api.post<ICollabToken>("/auth/collab-token");
+  return req.data;
+}