Handle stale auth better #2342
Handle stale auth better #2342
Conversation
ChristopherChudzicki
force-pushed
the
cc/handle-expiring-auth
branch
from
e4294c4 to
c4da25f
Compare
ChristopherChudzicki
added
the
Needs Review
There was a problem hiding this comment.
This works great for tabs in the same window, though can you help me understand why it does not work across windows and where the difference is.
I'd expect that irrespective of different tab or window; the window receives focus, React Query determines that the query is set to refetchOnWindowFocus: "always" or that the cache is stale and then goes ahead to refetch.
Testing further, it does work across windows, but very unreliably. I wondered if it was the browser being conservative issuing focus events in relation to some focus stealing prevention rules, though I reliably get focus and visibilitychange events. I'm none the wiser.
Generally very nice changes, especially around the login href/redirect hooks.
| @@ -19,7 +19,6 @@ const makeQueryClient = (): QueryClient => { | |||
| return new QueryClient({ | |||
| defaultOptions: { | |||
| queries: { | |||
| refetchOnWindowFocus: false, | |||
| staleTime: Infinity, | |||
There was a problem hiding this comment.
Should we set some reasonable staleTime? Defaulting refetchOnWindowFocus to true here has no effect if the data is never stale.
There was a problem hiding this comment.
Meant to comment on this... I removed the false since it has no effect with staleTime set to Infinity. (refetchOnWindowFocus: false | true ... neither has an effect with infinite staletime, just "always").,
I'm curious if you ever found it to work across windows. Having read a bit more on this, I don't think it should... Despite its name, the default implementation of MDN says:
(Emphasis mine, since I misread it at first. Only on mobile does switching apps fire the event.) React query does make it easy to change the implementation to use focus. We could do that. I guess they droppedfocus because of some bugs.
I can see how devtool refocus fetching would be very annoying for developers 😁 The issues with focus event seem mostly to be about too much refetching, which doesn't really seem like a problem for one endpoint (users/me). OTOH, refetchOnWindowFocus detection mechanism is a global setting. And it's nice to keep the defaults... I'm sort of inclined to add a reasonable staletime, like 10 or 15 minutes, to the user query (or maybe all of them?) and leave the default implementation (visibilitychange). That wouldn't help the situation of logging out in one window and having incorrect state in the other, but it would at least guarantee fresh info if you left the tab open for 2 days while using some other app or window, then coming back to Learn. |
What are the relevant tickets?
Closes https://github.com/mitodl/hq/issues/7736
Description (What does it do?)
This PR makes a few frontend changes to improve handling of users whose credentials have expired. Primarily the changes are around ensuring that
users/meapi data is not stale.users/mequery (upon which auth is based) now refetches every time you re-focus on Learn's browser tab.How can this be tested?
Test
refetchOnWindowFocus:Test fresh auth checking:
The other changes in this PR aim to better handle cases where auth is stale due to expiring session. I'm not sure the best way to test this locally. What I've done is use two tabs, log out in one, and navigate in the other. But
refetchOnWindowFocusprevents that situation from actually resulting in stale auth.So my suggestion is:
refetchOnWindowFocusline inusers/queries.ts