UNPKG

supakit

Version:

A Supabase auth helper for SvelteKit. Relies on browser cookies.

github.com/j4w8n/supakit

j4w8n/supakit

133 lines (132 loc) 4.28 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
import { getCookieOptions } from '../config/index.js'; import { browser } from '../utils.js'; import { serialize } from 'cookie'; let token = ''; let name = ''; let cached_session = null; const getCSRF = () => { return { token, name }; }; const setCSRF = () => { token = crypto.randomUUID(); name = crypto.randomUUID(); return { token, name }; }; const isAuthToken = (name) => { const regex = /^sb-.*-auth-token$/; return regex.test(name); }; export const CookieStorage = { async getItem(key) { if (!browser()) return null; if (isAuthToken(key) && cached_session) return JSON.stringify(cached_session); let csrf = getCSRF(); const getCookie = async () => { try { const res = await fetch('/supakit', { method: 'GET', headers: { 'x-csrf-token': csrf.token, 'x-csrf-name': csrf.name, 'x-storage-key': key } }); if (res.status === 200) { const json = res.body ? await res.json() : { cookie: null }; if (isAuthToken(key)) cached_session = json.cookie; return json.cookie; } else { return null; } } catch (err) { console.error('Error getting cookie from server', err); return null; } }; if (csrf.token !== '') { return await getCookie(); } else { csrf = setCSRF(); /** * If this is the first visit or the page refreshes, * set a temp non-httpOnly cookie for use with initial endpoint calls. */ const cookie_options = getCookieOptions(); document.cookie = serialize(`sb-${csrf.name}-csrf`, csrf.token, { ...cookie_options, httpOnly: false, maxAge: 5, sameSite: 'strict', secure: true }); try { const res = await fetch('/supakitCSRF', { method: 'POST', body: JSON.stringify(csrf) }); if (res.status === 200) { return await getCookie(); } else { return null; } } catch (err) { console.error('Error setting CSRF cookie', err); throw err; } } }, async setItem(key, value) { if (!browser()) return; if (isAuthToken(key)) cached_session = JSON.parse(value); const csrf = getCSRF(); try { const res = await fetch('/supakit', { method: 'POST', body: JSON.stringify({ key, value }), headers: { 'x-csrf-token': csrf.token, 'x-csrf-name': csrf.name } }); if (res.status !== 200) console.error('Error setting cookie', res.statusText); } catch (err) { console.error('Error setting cookie', err); return; } }, async removeItem(key) { if (!browser()) return; if (isAuthToken(key)) cached_session = null; const csrf = getCSRF(); try { const res = await fetch('/supakit', { method: 'DELETE', body: JSON.stringify({ key }), headers: { 'x-csrf-token': csrf.token, 'x-csrf-name': csrf.name } }); if (res.status !== 204) console.error('Error deleting cookie', res.statusText); } catch (err) { console.error('Error deleting cookie', err); return; } } };