diff --git a/packages/auth/ambient.d.ts b/packages/auth/ambient.d.ts index b4e7a73a07c2..afc9ba1e9364 100644 --- a/packages/auth/ambient.d.ts +++ b/packages/auth/ambient.d.ts @@ -22,6 +22,8 @@ declare global { __REDWOOD__APP_TITLE: string } + var __REDWOOD__SERVER__AUTH_STATE__: AuthProviderState + namespace NodeJS { interface Global { /** URL or absolute path to the GraphQL serverless function */ diff --git a/packages/auth/src/AuthProvider/ServerAuthProvider.tsx b/packages/auth/src/AuthProvider/ServerAuthProvider.tsx index 5dc7907f83ba..91725c507a93 100644 --- a/packages/auth/src/AuthProvider/ServerAuthProvider.tsx +++ b/packages/auth/src/AuthProvider/ServerAuthProvider.tsx @@ -1,13 +1,61 @@ +import type { ReactNode } from 'react' import React from 'react' import type { AuthProviderState } from './AuthProviderState' import { defaultAuthProviderState } from './AuthProviderState' -export const ServerAuthContext = React.createContext< - AuthProviderState & { - encryptedSession: string | null - cookieHeader?: string +export type ServerAuthState = AuthProviderState & { + // Used by AuthProvider in getToken. We can probably remove this + encryptedSession?: string | null + cookieHeader?: string +} + +/** + * On the server, it resolve to the defaultAuthProviderState first + */ +export const ServerAuthContext = React.createContext( + globalThis?.__REDWOOD__SERVER__AUTH_STATE__ || { + ...defaultAuthProviderState, + encryptedSession: null, } ->({ ...defaultAuthProviderState, encryptedSession: null }) +) + +/*** + * Note: This only gets rendered on the server and serves two purposes: + * 1) On the server, it sets the auth state + * 2) On the client, it restores the auth state from the initial server render + */ +export const ServerAuthProvider = ({ + value, + children, +}: { + value: ServerAuthState + children?: ReactNode[] +}) => { + // @NOTE: we "Sanitize" to remove encryptedSession and cookieHeader + // not totally necessary, but it's nice to not have them in the DOM + // @MARK: needs discussion! + const stringifiedAuthState = `__REDWOOD__SERVER__AUTH_STATE__ = ${JSON.stringify( + sanitizeServerAuthState(value) + )};` + + return ( + <> +