@trackunit/react-core-contexts 2.1.31 → 2.1.33

package/index.cjs.js

@@ -103,14 +103,28 @@ const createErrorLink = ({ errorHandler, getToken, }) => {
     });
 };
 
+const DEFAULT_AUTH_GRACE_MS = 30000;
 /**
  * Wraps an SSE subscription link and provides the same error monitoring as the
  * HTTP error link — capturing GraphQL errors, traceIds, FORCE_RELOAD_BROWSER,
  * and UNAUTHENTICATED codes — for long-lived subscription Observables.
+ *
+ * UNAUTHENTICATED errors are deferred by a grace period (default 30s) to allow
+ * Okta's autoRenew to refresh the token. If a successful response arrives
+ * within the window the capture is cancelled; if the timer fires, a single
+ * captureException is sent — an actionable signal that token refresh failed.
  */
-const createSubscriptionErrorLink = ({ errorHandler, getToken, }) => {
+const createSubscriptionErrorLink = ({ errorHandler, getToken, graceMs = DEFAULT_AUTH_GRACE_MS, }) => {
     return new client.ApolloLink((operation, forward) => {
         return new client.Observable(observer => {
+            let authGraceTimer = null;
+            let authErrorReported = false;
+            const clearGraceTimer = () => {
+                if (authGraceTimer !== null) {
+                    clearTimeout(authGraceTimer);
+                    authGraceTimer = null;
+                }
+            };
             const subscription = forward(operation).subscribe({
                 next: response => {
                     const { errors } = response;
@@ -137,15 +151,23 @@ const createSubscriptionErrorLink = ({ errorHandler, getToken, }) => {
                         const invalidToken = errors.some(x => x.extensions?.code === "UNAUTHENTICATED" ||
                             x.message.includes("Invalid token specified") ||
                             x.message.includes("Access denied! You need to be authorized to perform this action!"));
-                        if (invalidToken && getToken()) {
-                            errorHandler.captureException(new Error(JSON.stringify({
-                                category: "GraphQL",
-                                info: "GraphQL Subscription Error - invalidToken",
-                                level: "warning",
-                                data: { log: JSON.stringify(errors) },
-                            })), { level: "warning", fingerprint: ["GraphQL Subscription Error - invalidToken"] });
+                        if (invalidToken && getToken() && authGraceTimer === null && !authErrorReported) {
+                            authGraceTimer = setTimeout(() => {
+                                authGraceTimer = null;
+                                authErrorReported = true;
+                                errorHandler.captureException(new Error(JSON.stringify({
+                                    category: "GraphQL",
+                                    info: "GraphQL Subscription Error - invalidToken",
+                                    level: "warning",
+                                    data: { log: JSON.stringify(errors) },
+                                })), { level: "warning", fingerprint: ["GraphQL Subscription Error - invalidToken"] });
+                            }, graceMs);
                         }
                     }
+                    else {
+                        clearGraceTimer();
+                        authErrorReported = false;
+                    }
                     observer.next(response);
                 },
                 error: err => {
@@ -168,7 +190,10 @@ const createSubscriptionErrorLink = ({ errorHandler, getToken, }) => {
                 },
                 complete: () => observer.complete(),
             });
-            return () => subscription.unsubscribe();
+            return () => {
+                clearGraceTimer();
+                subscription.unsubscribe();
+            };
         });
     });
 };

package/index.esm.js

@@ -101,14 +101,28 @@ const createErrorLink = ({ errorHandler, getToken, }) => {
     });
 };
 
+const DEFAULT_AUTH_GRACE_MS = 30000;
 /**
  * Wraps an SSE subscription link and provides the same error monitoring as the
  * HTTP error link — capturing GraphQL errors, traceIds, FORCE_RELOAD_BROWSER,
  * and UNAUTHENTICATED codes — for long-lived subscription Observables.
+ *
+ * UNAUTHENTICATED errors are deferred by a grace period (default 30s) to allow
+ * Okta's autoRenew to refresh the token. If a successful response arrives
+ * within the window the capture is cancelled; if the timer fires, a single
+ * captureException is sent — an actionable signal that token refresh failed.
  */
-const createSubscriptionErrorLink = ({ errorHandler, getToken, }) => {
+const createSubscriptionErrorLink = ({ errorHandler, getToken, graceMs = DEFAULT_AUTH_GRACE_MS, }) => {
     return new ApolloLink((operation, forward) => {
         return new Observable(observer => {
+            let authGraceTimer = null;
+            let authErrorReported = false;
+            const clearGraceTimer = () => {
+                if (authGraceTimer !== null) {
+                    clearTimeout(authGraceTimer);
+                    authGraceTimer = null;
+                }
+            };
             const subscription = forward(operation).subscribe({
                 next: response => {
                     const { errors } = response;
@@ -135,15 +149,23 @@ const createSubscriptionErrorLink = ({ errorHandler, getToken, }) => {
                         const invalidToken = errors.some(x => x.extensions?.code === "UNAUTHENTICATED" ||
                             x.message.includes("Invalid token specified") ||
                             x.message.includes("Access denied! You need to be authorized to perform this action!"));
-                        if (invalidToken && getToken()) {
-                            errorHandler.captureException(new Error(JSON.stringify({
-                                category: "GraphQL",
-                                info: "GraphQL Subscription Error - invalidToken",
-                                level: "warning",
-                                data: { log: JSON.stringify(errors) },
-                            })), { level: "warning", fingerprint: ["GraphQL Subscription Error - invalidToken"] });
+                        if (invalidToken && getToken() && authGraceTimer === null && !authErrorReported) {
+                            authGraceTimer = setTimeout(() => {
+                                authGraceTimer = null;
+                                authErrorReported = true;
+                                errorHandler.captureException(new Error(JSON.stringify({
+                                    category: "GraphQL",
+                                    info: "GraphQL Subscription Error - invalidToken",
+                                    level: "warning",
+                                    data: { log: JSON.stringify(errors) },
+                                })), { level: "warning", fingerprint: ["GraphQL Subscription Error - invalidToken"] });
+                            }, graceMs);
                         }
                     }
+                    else {
+                        clearGraceTimer();
+                        authErrorReported = false;
+                    }
                     observer.next(response);
                 },
                 error: err => {
@@ -166,7 +188,10 @@ const createSubscriptionErrorLink = ({ errorHandler, getToken, }) => {
                 },
                 complete: () => observer.complete(),
             });
-            return () => subscription.unsubscribe();
+            return () => {
+                clearGraceTimer();
+                subscription.unsubscribe();
+            };
         });
     });
 };

package/package.json

@@ -1,20 +1,20 @@
 {
   "name": "@trackunit/react-core-contexts",
-  "version": "2.1.31",
+  "version": "2.1.33",
   "repository": "https://github.com/Trackunit/manager",
   "license": "SEE LICENSE IN LICENSE.txt",
   "engines": {
     "node": ">=24.x"
   },
   "dependencies": {
-    "@trackunit/iris-app-api": "2.0.27",
-    "@trackunit/iris-app-runtime-core-api": "1.16.39",
-    "@trackunit/react-core-hooks": "1.17.44",
-    "@trackunit/i18n-library-translation": "2.0.32",
-    "@trackunit/react-components": "2.1.31",
-    "@trackunit/iris-app-runtime-core": "1.17.40",
+    "@trackunit/iris-app-api": "2.0.28",
+    "@trackunit/iris-app-runtime-core-api": "1.16.40",
+    "@trackunit/react-core-hooks": "1.17.45",
+    "@trackunit/i18n-library-translation": "2.0.33",
+    "@trackunit/react-components": "2.1.32",
+    "@trackunit/iris-app-runtime-core": "1.17.41",
     "graphql-sse": "^2.5.4",
-    "@trackunit/react-core-contexts-api": "1.17.39"
+    "@trackunit/react-core-contexts-api": "1.17.40"
   },
   "peerDependencies": {
     "@apollo/client": "^3.13.8",

package/src/errorLink/subscriptionErrorLink.d.ts

@@ -4,8 +4,14 @@ import { ErrorHandlingContextValue } from "@trackunit/iris-app-runtime-core-api"
  * Wraps an SSE subscription link and provides the same error monitoring as the
  * HTTP error link — capturing GraphQL errors, traceIds, FORCE_RELOAD_BROWSER,
  * and UNAUTHENTICATED codes — for long-lived subscription Observables.
+ *
+ * UNAUTHENTICATED errors are deferred by a grace period (default 30s) to allow
+ * Okta's autoRenew to refresh the token. If a successful response arrives
+ * within the window the capture is cancelled; if the timer fires, a single
+ * captureException is sent — an actionable signal that token refresh failed.
  */
-export declare const createSubscriptionErrorLink: ({ errorHandler, getToken, }: {
+export declare const createSubscriptionErrorLink: ({ errorHandler, getToken, graceMs, }: {
     errorHandler: ErrorHandlingContextValue;
     getToken: () => string | undefined;
+    graceMs?: number;
 }) => ApolloLink;