Kain344/History-user
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: cors

Browse Source
This commit is contained in:
taDuc
2026-05-18 23:41:13 +07:00
parent 663347889b
commit e7c8322c63
2 changed files with 12 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/config/config.ts
+7 -4
View File
@@ -24,6 +24,10 @@ const refreshApi = axios.create({
let isRefreshing = false let isRefreshing = false
let queue: any[] = [] let queue: any[] = []
function shouldRedirectToSigninOnRefreshFailure(status?: number): boolean {
return status === 401 || status === 404
}
const processQueue = (error?: any) => { const processQueue = (error?: any) => {
queue.forEach((p) => { queue.forEach((p) => {
if (error) p.reject(error) if (error) p.reject(error)
@@ -121,7 +125,7 @@ async function performRefreshAndRetry(originalRequest: any): Promise<AxiosRespon
return refreshApi.post("/auth/refresh", {}) return refreshApi.post("/auth/refresh", {})
} }
let refreshRes: any = await tryCookieRefresh() const refreshRes: any = await tryCookieRefresh()
const nextTokens = extractTokensFromResponsePayload(refreshRes?.data) const nextTokens = extractTokensFromResponsePayload(refreshRes?.data)
if (nextTokens) setStoredTokens(nextTokens) if (nextTokens) setStoredTokens(nextTokens)
@@ -137,9 +141,8 @@ async function performRefreshAndRetry(originalRequest: any): Promise<AxiosRespon
return api(originalRequest) return api(originalRequest)
} catch (refreshErr: any) { } catch (refreshErr: any) {
processQueue(refreshErr) processQueue(refreshErr)
// Only force logout when refresh token/session is truly invalid (401). // Treat missing/invalid refresh endpoints or sessions as logged-out state.
// CRITICAL: We only redirect if it's a 401, which means the HttpOnly cookie is missing or invalid. if (shouldRedirectToSigninOnRefreshFailure(refreshErr?.response?.status)) {
if (refreshErr?.response?.status === 401) {
clearStoredTokens() clearStoredTokens()
if (typeof window !== "undefined") { if (typeof window !== "undefined") {
window.location.href = "/signin" window.location.href = "/signin"
src/uhm/api/config.ts
+5 -13
View File
@@ -28,20 +28,12 @@ export function stripGoongApiKeyFromUrl(rawUrl: string): string {
export function buildGoongProxyUrl(rawUrl: string): string { export function buildGoongProxyUrl(rawUrl: string): string {
const sanitizedUrl = stripGoongApiKeyFromUrl(rawUrl); const sanitizedUrl = stripGoongApiKeyFromUrl(rawUrl);
const templateTokens: string[] = []; const proxyTarget = sanitizedUrl
const tokenizedUrl = sanitizedUrl.replace(/\{[^}]+\}/g, (match) => { .trim()
const tokenId = `__UHM_GOONG_URL_TOKEN_${templateTokens.length}__`; .replace(/^https?:\/\//i, "")
templateTokens.push(match); .replace(/^\/+/, "");
return tokenId;
});
let encodedUrl = encodeURIComponent(tokenizedUrl); return `${GOONG_PROXY_BASE_PATH}/${proxyTarget}`;
templateTokens.forEach((token, index) => {
const encodedTokenId = encodeURIComponent(`__UHM_GOONG_URL_TOKEN_${index}__`);
encodedUrl = encodedUrl.replace(encodedTokenId, token);
});
return `${GOONG_PROXY_BASE_PATH}/${encodedUrl}`;
} }
export const GOONG_GLYPHS_PROXY_URL = buildGoongProxyUrl(GOONG_GLYPHS_UPSTREAM_URL); export const GOONG_GLYPHS_PROXY_URL = buildGoongProxyUrl(GOONG_GLYPHS_UPSTREAM_URL);