ars/iiEsaywebUIapp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(folders): Preserve feature state on server-side errors

Browse Source
This commit is contained in:
cogwheel0
2025-12-06 10:16:44 +05:30
parent 951a568fc1
commit 4e105270b8
4 changed files with 101 additions and 21 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
lib/core/auth/api_auth_interceptor.dart
View File

@@ -35,6 +35,13 @@ class ApiAuthInterceptor extends Interceptor {
'/api/v1/configs/models',
};
// Endpoints for features that can be disabled server-side.
// A 403 on these indicates the feature is disabled, not an auth failure.
static const Set<String> _featureEndpoints = {
'/api/v1/folders/',
'/api/v1/folders',
};
ApiAuthInterceptor({
String? authToken,
this.onAuthTokenInvalid,
@@ -79,6 +86,20 @@ class ApiAuthInterceptor extends Interceptor {
return _optionalAuthEndpoints.contains(path);
}
/// Check if endpoint is for a feature that can be disabled server-side.
/// A 403 on these indicates feature disabled, not an auth failure.
bool _isFeatureEndpoint(String path) {
// Direct match for exact paths like /api/v1/folders or /api/v1/folders/
if (_featureEndpoints.contains(path)) {
return true;
}
// Check for folder sub-paths (e.g., /api/v1/folders/{id})
if (path.startsWith('/api/v1/folders/')) {
return true;
}
return false;
}
@override
void onRequest(RequestOptions options, RequestInterceptorHandler handler) {
final path = options.path;
@@ -153,9 +174,15 @@ class ApiAuthInterceptor extends Interceptor {
}
} else if (statusCode == 403) {
// 403 on protected endpoints indicates insufficient permissions or invalid token
// BUT 403 on feature endpoints indicates the feature is disabled server-side
final requiresAuth = _requiresAuth(path);
final optionalAuth = _hasOptionalAuth(path);
if (requiresAuth && !optionalAuth) {
final isFeatureEndpoint = _isFeatureEndpoint(path);
if (isFeatureEndpoint) {
DebugLogger.auth(
'403 Forbidden on feature endpoint $path - feature likely disabled server-side',
);
} else if (requiresAuth && !optionalAuth) {
_notifyAuthFailure(
'403 Forbidden on protected endpoint $path - notifying app without clearing token',
);