immich/web/src/lib/utils/auth.ts

import { browser } from '$app/environment';
import { serverInfo } from '$lib/stores/server-info.store';
import { user } from '$lib/stores/user.store';
import { getMyUserInfo, getServerInfo } from '@immich/sdk';
import { redirect } from '@sveltejs/kit';
import { get } from 'svelte/store';
import { AppRoute } from '../constants';

export interface AuthOptions {
  admin?: true;
  public?: true;
}

export const loadUser = async () => {
  try {
    let loaded = get(user);
    if (!loaded && hasAuthCookie()) {
      loaded = await getMyUserInfo();
      user.set(loaded);
    }
    return loaded;
  } catch {
    return null;
  }
};

const hasAuthCookie = (): boolean => {
  if (!browser) {
    return false;
  }

  for (const cookie of document.cookie.split('; ')) {
    const [name] = cookie.split('=');
    if (name === 'immich_is_authenticated') {
      return true;
    }
  }

  return false;
};

export const authenticate = async (options?: AuthOptions) => {
  const { public: publicRoute, admin: adminRoute } = options || {};
  const user = await loadUser();

  if (publicRoute) {
    return;
  }

  if (!user) {
    redirect(302, AppRoute.AUTH_LOGIN);
  }

  if (adminRoute && !user.isAdmin) {
    redirect(302, AppRoute.PHOTOS);
  }
};

export const requestServerInfo = async () => {
  if (get(user)) {
    const data = await getServerInfo();
    serverInfo.set(data);
  }
};
refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`import { browser } from '$app/environment';`
refactor(web): use new open api client (#7097) * refactor(web): use new open api client * refactor: remove activity api * refactor: trash, oauth, and partner apis * refactor: job api * refactor: face, library, system config * refactor: user api * refactor: album api 2024-02-13 23:07:37 +01:00			`import { serverInfo } from '$lib/stores/server-info.store';`
refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`import { user } from '$lib/stores/user.store';`
refactor(web): use new open api client (#7097) * refactor(web): use new open api client * refactor: remove activity api * refactor: trash, oauth, and partner apis * refactor: job api * refactor: face, library, system config * refactor: user api * refactor: album api 2024-02-13 23:07:37 +01:00			`import { getMyUserInfo, getServerInfo } from '@immich/sdk';`
			`import { redirect } from '@sveltejs/kit';`
			`import { get } from 'svelte/store';`
			`import { AppRoute } from '../constants';`
feat(web)!: SPA (#5069) * feat(web): SPA * chore: remove unnecessary prune * feat(web): merge with immich-server * Correct method name * fix: bugs, docs, workflows, etc. * chore: keep dockerignore for dev * chore: remove license * fix: expose 2283 --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-11-18 05:13:36 +01:00
			`export interface AuthOptions {`
			`admin?: true;`
refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`public?: true;`
feat(web)!: SPA (#5069) * feat(web): SPA * chore: remove unnecessary prune * feat(web): merge with immich-server * Correct method name * fix: bugs, docs, workflows, etc. * chore: keep dockerignore for dev * chore: remove license * fix: expose 2283 --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-11-18 05:13:36 +01:00			`}`

refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`export const loadUser = async () => {`
feat(web)!: SPA (#5069) * feat(web): SPA * chore: remove unnecessary prune * feat(web): merge with immich-server * Correct method name * fix: bugs, docs, workflows, etc. * chore: keep dockerignore for dev * chore: remove license * fix: expose 2283 --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-11-18 05:13:36 +01:00			`try {`
refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`let loaded = get(user);`
			`if (!loaded && hasAuthCookie()) {`
refactor(web): use new open api client (#7097) * refactor(web): use new open api client * refactor: remove activity api * refactor: trash, oauth, and partner apis * refactor: job api * refactor: face, library, system config * refactor: user api * refactor: album api 2024-02-13 23:07:37 +01:00			`loaded = await getMyUserInfo();`
refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`user.set(loaded);`
			`}`
			`return loaded;`
feat(web)!: SPA (#5069) * feat(web): SPA * chore: remove unnecessary prune * feat(web): merge with immich-server * Correct method name * fix: bugs, docs, workflows, etc. * chore: keep dockerignore for dev * chore: remove license * fix: expose 2283 --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-11-18 05:13:36 +01:00			`} catch {`
			`return null;`
			`}`
			`};`

refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`const hasAuthCookie = (): boolean => {`
			`if (!browser) {`
			`return false;`
			`}`

			`for (const cookie of document.cookie.split('; ')) {`
			`const [name] = cookie.split('=');`
			`if (name === 'immich_is_authenticated') {`
			`return true;`
			`}`
			`}`

			`return false;`
			`};`

feat(web)!: SPA (#5069) * feat(web): SPA * chore: remove unnecessary prune * feat(web): merge with immich-server * Correct method name * fix: bugs, docs, workflows, etc. * chore: keep dockerignore for dev * chore: remove license * fix: expose 2283 --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-11-18 05:13:36 +01:00			`export const authenticate = async (options?: AuthOptions) => {`
refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`const { public: publicRoute, admin: adminRoute } = options \|\| {};`
			`const user = await loadUser();`
feat(web)!: SPA (#5069) * feat(web): SPA * chore: remove unnecessary prune * feat(web): merge with immich-server * Correct method name * fix: bugs, docs, workflows, etc. * chore: keep dockerignore for dev * chore: remove license * fix: expose 2283 --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-11-18 05:13:36 +01:00
refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`if (publicRoute) {`
			`return;`
			`}`
feat: use <a> tag for albums in list view (#5645) * fix: multiple improvements * pr feedback * optimize 2023-12-12 03:35:57 +01:00
feat(web)!: SPA (#5069) * feat(web): SPA * chore: remove unnecessary prune * feat(web): merge with immich-server * Correct method name * fix: bugs, docs, workflows, etc. * chore: keep dockerignore for dev * chore: remove license * fix: expose 2283 --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-11-18 05:13:36 +01:00			`if (!user) {`
chore: svelte-kit-2 (#6103) * chore: upgrade svelte * chore: type imports * chore: types 2024-01-20 19:47:41 +01:00			`redirect(302, AppRoute.AUTH_LOGIN);`
feat(web)!: SPA (#5069) * feat(web): SPA * chore: remove unnecessary prune * feat(web): merge with immich-server * Correct method name * fix: bugs, docs, workflows, etc. * chore: keep dockerignore for dev * chore: remove license * fix: expose 2283 --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-11-18 05:13:36 +01:00			`}`

refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`if (adminRoute && !user.isAdmin) {`
chore: svelte-kit-2 (#6103) * chore: upgrade svelte * chore: type imports * chore: types 2024-01-20 19:47:41 +01:00			`redirect(302, AppRoute.PHOTOS);`
feat(web)!: SPA (#5069) * feat(web): SPA * chore: remove unnecessary prune * feat(web): merge with immich-server * Correct method name * fix: bugs, docs, workflows, etc. * chore: keep dockerignore for dev * chore: remove license * fix: expose 2283 --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2023-11-18 05:13:36 +01:00			`}`
feat(web): automatically update user info (#5647) * use svelte store * fix: websocket error when not authenticated * more routes 2023-12-12 17:35:28 +01:00			`};`
feat: use <a> tag for albums in list view (#5645) * fix: multiple improvements * pr feedback * optimize 2023-12-12 03:35:57 +01:00
feat(web): add warning when setting a quota superior to the disk size (#6737) * refactor: inline warning * fix: do not use onmount * chore: remove outdated comment * wording --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2024-01-30 18:21:45 +01:00			`export const requestServerInfo = async () => {`
refactor: authentication on public routes (#6765) * refactor: authentication on public routes * fix: remove public user * pr feedback * pr feedback * pr feedback * pr feedback * remove unused method * fix: tests * fix: useless methods * fix: tests * pr feedback * pr feedback * chore: cleanup --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com> 2024-02-13 02:47:26 +01:00			`if (get(user)) {`
refactor(web): use new open api client (#7097) * refactor(web): use new open api client * refactor: remove activity api * refactor: trash, oauth, and partner apis * refactor: job api * refactor: face, library, system config * refactor: user api * refactor: album api 2024-02-13 23:07:37 +01:00			`const data = await getServerInfo();`
feat(web): add warning when setting a quota superior to the disk size (#6737) * refactor: inline warning * fix: do not use onmount * chore: remove outdated comment * wording --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com> 2024-01-30 18:21:45 +01:00			`serverInfo.set(data);`
			`}`
			`};`