coryHawkvelt/gatehouse-ui
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix auth headers on login

Browse Source 
Ensure Authorization header is preserved and credentials are included across all API calls after login by updating the global request flow to always include the auth token and cookies, preventing API requests from failing due to missing authentication.

X-Lovable-Edit-ID: edt-e27762ef-c64c-401b-9944-0d5bcb8ea624
This commit is contained in:
gpt-engineer-app[bot]
2026-01-15 23:15:04 +00:00
parent 53d4e97bf7 65c2a78552
commit 7e92c7bea1
1 changed files with 12 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/lib/api.ts
+12 -9
View File
@@ -136,9 +136,13 @@ export const tokenManager = {
return token;
},
setToken: (token: string, expiresAt: string): void => {
setToken: (token: string, expiresAt?: string | null): void => {
localStorage.setItem(TOKEN_KEY, token);
localStorage.setItem(TOKEN_EXPIRY_KEY, expiresAt);
if (expiresAt) {
localStorage.setItem(TOKEN_EXPIRY_KEY, expiresAt);
} else {
localStorage.removeItem(TOKEN_EXPIRY_KEY);
}
},
clearToken: (): void => {
@@ -242,8 +246,8 @@ export const api = {
}, false); // Login doesn't require auth
// Only store token if login is complete (no TOTP required)
if (response.token && response.expires_at && !response.requires_totp) {
tokenManager.setToken(response.token, response.expires_at);
if (response.token && !response.requires_totp) {
tokenManager.setToken(response.token, response.expires_at ?? null);
}
return response;
@@ -307,9 +311,8 @@ export const api = {
credentials: 'include', // Required for TOTP session tracking
}, false);
// Store token after successful TOTP verification
if (response.token && response.expires_at) {
tokenManager.setToken(response.token, response.expires_at);
if (response.token) {
tokenManager.setToken(response.token, response.expires_at ?? null);
}
return response;
@@ -400,8 +403,8 @@ export const api = {
}, false);
// Store token after successful passkey login
if (response.token && response.expires_at) {
tokenManager.setToken(response.token, response.expires_at);
if (response.token) {
tokenManager.setToken(response.token, response.expires_at ?? null);
}
return response;