refactor: auth stuff

wp-content/themes/ccat/server/api/switch-back.post.ts

@@ -2,8 +2,7 @@ import { defineEventHandler } from "h3";
 
 export default defineEventHandler(async (event) => {
   try {
-    // TODO: Switch back to the previous user.
-    await clearUserSession(event);
+    await handleSwitchBack(event);
     return { success: true };
   }
   catch (error) {

wp-content/themes/ccat/server/graphqlMiddleware.serverOptions.ts

@@ -32,44 +32,15 @@ export default defineGraphqlServerOptions({
     return { headers: { ...headers, Authorization: `Bearer ${session.secure.authToken}` } };
   },
 
-  onServerResponse(event, response, _operation, operationName) {
-    // Handle login mutation
-    if (operationName === "login") {
-      const loginData = response._data as LoginRootMutation;
-      if (loginData?.login) {
-        const { authToken, refreshToken, user } = loginData.login;
-        setUserSession(event, {
-          user: {
-            id: user?.id,
-            email: user?.email,
-          },
-          secure: {
-            authToken,
-            refreshToken,
-          },
-        });
-      }
+  async onServerResponse(event, response, _operation, operationName) {
+    switch (operationName) {
+      case "login":
+        await handleLogin(event, response._data!.data as LoginRootMutation);
+        break;
+      case "userSwitchTo":
+        await handleSwitchTo(event, response._data!.data as UserSwitchToRootMutation);
+        break;
     }
-
-    // Handle user switch mutations
-    if (operationName === "userSwitchTo") {
-      const switchData = response._data as UserSwitchToRootMutation;
-      if (switchData?.userSwitchTo?.authToken) {
-        const { authToken, refreshToken, user } = switchData.userSwitchTo;
-        setUserSession(event, {
-          user: {
-            id: user?.id,
-            email: user?.email,
-          },
-          secure: {
-            authToken,
-            refreshToken,
-          },
-        });
-      }
-    }
-
-    // Return the original response data
     return response._data!;
   },
 });

wp-content/themes/ccat/server/utils/auth.ts

@@ -0,0 +1,65 @@
+import type { LoginRootMutation, UserSwitchToRootMutation } from "#graphql-operations";
+import type { H3Event } from "h3";
+import { pick } from "es-toolkit/compat";
+
+export async function handleLogin(event: H3Event, loginData?: LoginRootMutation) {
+  if (!loginData?.login?.user) {
+    return;
+  }
+  const { authToken, refreshToken, user } = loginData.login;
+  await setUserSession(event, {
+    user: {
+      id: user.id,
+      email: user.email,
+    },
+    secure: {
+      authToken,
+      refreshToken,
+    },
+    loggedInAt: new Date().toISOString(),
+    isSwitchedTo: false,
+  });
+}
+
+export async function handleLogout(event: H3Event) {
+  await clearUserSession(event);
+}
+
+export async function handleSwitchTo(event: H3Event, data?: UserSwitchToRootMutation) {
+  if (!data?.userSwitchTo?.user) {
+    return;
+  }
+  const session = await getUserSession(event);
+  const { authToken, refreshToken, user } = data.userSwitchTo;
+  await setUserSession(event, {
+    user: {
+      id: user.id,
+      email: user.email,
+    },
+    secure: {
+      authToken,
+      refreshToken,
+      previous: {
+        user: session.user,
+        loggedInAt: session.loggedInAt,
+        secure: pick(session.secure, ["authToken", "refreshToken"]),
+      },
+    },
+    loggedInAt: new Date().toISOString(),
+    isSwitchedTo: true,
+  });
+}
+
+export async function handleSwitchBack(event: H3Event) {
+  const session = await getUserSession(event);
+  if (!session.secure?.previous) {
+    return;
+  }
+  const { user, loggedInAt, secure } = session.secure.previous;
+  await setUserSession(event, {
+    user,
+    secure,
+    loggedInAt,
+    isSwitchedTo: false,
+  });
+}