feat(auth): migrate serialized auth cookies

trakt · Jan 10, 2025 · 1013056 · 1013056
1 parent 1e97b23
commit 1013056
Showing 1 changed file with 29 additions and 1 deletion.
diff --git a/projects/client/src/lib/features/auth/handle.ts b/projects/client/src/lib/features/auth/handle.ts
@@ -1,4 +1,4 @@
-import { type Handle } from '@sveltejs/kit';
+import { type Handle, type RequestEvent } from '@sveltejs/kit';
 import { AuthEndpoint } from './AuthEndpoint.ts';
 import { key } from './environment.ts';
 import type {
@@ -10,6 +10,15 @@ import { encrypt } from './utils/encrypt.ts';
 
 const AUTH_COOKIE_NAME = 'trakt-auth';
 
+function getLegacyAuthCookie(event: RequestEvent) {
+  try {
+    const serializedToken = event.cookies.get(AUTH_COOKIE_NAME) ?? '';
+    return JSON.parse(serializedToken) as SerializedAuthResponse;
+  } catch (error) {
+    return null;
+  }
+}
+
 export const handle: Handle = async ({ event, resolve }) => {
   const setAuth = (auth: SerializedAuthResponse | Nil) => {
     event.locals.auth = auth;
@@ -70,6 +79,25 @@ export const handle: Handle = async ({ event, resolve }) => {
     });
   }
 
+  //TODO: remove this migration after March 1st 2025
+  const legacyAuthCookie = getLegacyAuthCookie(event);
+  if (legacyAuthCookie != null) {
+    setAuth(legacyAuthCookie);
+
+    event.cookies.set(
+      AUTH_COOKIE_NAME,
+      await encrypt(key, legacyAuthCookie),
+      {
+        httpOnly: true,
+        secure: true,
+        maxAge: legacyAuthCookie.expiresAt ?? 0,
+        path: '/',
+      },
+    );
+
+    return await resolve(event);
+  }
+
   /**
    * TODO: refresh exchange flow here
    * https://trakt.docs.apiary.io/#reference/authentication-oauth/get-token/exchange-refresh_token-for-access_token