Hello. Im following the new docs on how to implement role base authorisation using react sdk. I am h...

jono9450

10/12/2022, 4:49 AM

Hello. Im following the new docs on how to implement role base authorisation using react sdk. I am having an issue with the

InvalidClaimHandler

and the property

invalidClaims

setting to "message":"expired" after 5mins. I can logout and then login again and they role works fine till the maxAgeInSeconds is reached. Any information on how to refresh the claims? or what causes them to expired?

rp_st

10/12/2022, 5:03 AM

Hey!

rp_st

10/12/2022, 5:03 AM

The verifySession should refresh then claim on its own. Are you not seeing that happen?

__jono

10/13/2022, 12:01 AM

Intresting, Only seeing the refresh called if i manually call the

Session.attemptRefreshingSession

in a useEffect. Using this HOC from the docs

Copy code

const StoreAccessRoute = (props: React.PropsWithChildren<any>) => {
  return (
    <SessionAuth
      overrideGlobalClaimValidators={(globalValidators) => [
        ...globalValidators,
        UserRoleClaim.validators.includes('storeAccess'),
      ]}
    >
      <InvalidClaimHandler>{props.children}</InvalidClaimHandler>
    </SessionAuth>
  )
}
function InvalidClaimHandler(props: React.PropsWithChildren<any>) {
  let sessionContext = useSessionContext()
  if (sessionContext.loading) {
    return props.children
  }
  if (
    sessionContext.invalidClaims.some((i) => i.validatorId === UserRoleClaim.id)
  ) {
    return (
      <PendingApproval
        isLoading={false}
        checkRole={() => console.log('checking')}
      />
    )
  }

  // We show the protected route since all claims validators have
  // passed implying that the user is an admin.
  return props.children
}

And manually refreshing the token higher up in the tree before this hoc is called still gives the error. If I have been trying the manual implementation from the docs like so

Copy code

function ProtectedComponent({ children }: React.PropsWithChildren<any>) {
  let claimValue = useClaimValue(UserRoleClaim)
  if (claimValue.loading || !claimValue.doesSessionExist) {
    return <PageLoader />
  }
  let roles = claimValue.value
  if (roles !== undefined && roles.includes('storeAccess')) {
    return children
  } else {
    return (
      <PendingApproval
        checkRole={() => console.log('checking')}
        isLoading={claimValue.loading}
      />
    )
  }
}

It behaves as expected and can revoke and add roles and permissions.

rp_st

10/13/2022, 4:05 AM

Hmmm. So the session.attemptRefreshingSession is not responsible for refreshing the claims.

rp_st

10/13/2022, 4:06 AM

I’m a little confused as to what behaviour you are seeing. Could you please clarify?

rp_st

10/13/2022, 10:09 AM

@__jono just to clarify, you are getting an invalid claim error on the frontend that says expired claim correct? If so, then we have found an issue with the roles and permissions claim on the frontend which we are fixing.

__jono

10/13/2022, 10:10 PM

Hey sorry yeah thats correct, I was struggling to explain the issue. My bad. But yeah thats correct, using the useSessionContext api i was having issues with the claims expiring after 5mins after login but using other apis i was not having this issue

rp_st

10/14/2022, 4:07 AM

Right. Can you delete node modules and package lock and reinstall our frontend SDK? We just released a fix for this

2 Views

Previous Next

SuperTokens.com

SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).