sveltekit-auth-example 2.0.1 → 2.0.2

package/src/app.d.ts

@@ -5,50 +5,52 @@
 // and what to do when importing types
 declare namespace App {
 	interface Locals {
-    user: User
-  }
+		user: User
+	}
 
 	// interface Platform {}
 
-  interface PrivateEnv { // $env/static/private
-    DATABASE_URL: string
-    DOMAIN: string
-    JWT_SECRET: string
-    SENDGRID_KEY: string
-    SENDGRID_SENDER: string
-  } 
-
-	interface PublicEnv { // $env/static/public
-    PUBLIC_GOOGLE_CLIENT_ID: string
-  }
+	interface PrivateEnv {
+		// $env/static/private
+		DATABASE_URL: string
+		DOMAIN: string
+		JWT_SECRET: string
+		SENDGRID_KEY: string
+		SENDGRID_SENDER: string
+	}
+
+	interface PublicEnv {
+		// $env/static/public
+		PUBLIC_GOOGLE_CLIENT_ID: string
+	}
 }
 
 interface AuthenticationResult {
-  statusCode: NumericRange<400, 599>
-  status: string
-  user: User
-  sessionId: string
+	statusCode: NumericRange<400, 599>
+	status: string
+	user: User
+	sessionId: string
 }
 
 interface Credentials {
-  email: string
-  password: string
+	email: string
+	password: string
 }
 
 interface UserProperties {
-  id: number
-  expires?: string // ISO-8601 datetime
-  role: 'student' | 'teacher' | 'admin'
-  password?: string
-  firstName?: string
-  lastName?: string
-  email?: string
-  phone?: string
+	id: number
+	expires?: string // ISO-8601 datetime
+	role: 'student' | 'teacher' | 'admin'
+	password?: string
+	firstName?: string
+	lastName?: string
+	email?: string
+	phone?: string
 }
 
 type User = UserProperties | undefined | null
 
 interface UserSession {
-  id: string,
-  user: User
+	id: string
+	user: User
 }

package/src/app.html

@@ -1,13 +1,18 @@
-<!DOCTYPE html>
+<!doctype html>
 <html lang="en">
 	<head>
 		<meta charset="utf-8" />
 		<link rel="icon" href="%sveltekit.assets%/favicon.png" sizes="any" />
 		<meta name="viewport" content="width=device-width, initial-scale=1" />
-		<script nonce="%sveltekit.nonce%" src="https://accounts.google.com/gsi/client" async defer></script>
+		<script
+			nonce="%sveltekit.nonce%"
+			src="https://accounts.google.com/gsi/client"
+			async
+			defer
+		></script>
 		%sveltekit.head%
 	</head>
 	<body>
 		<div id="svelte">%sveltekit.body%</div>
 	</body>
-</html>
+</html>

package/src/hooks.server.ts

@@ -3,28 +3,28 @@ import { query } from '$lib/server/db'
 
 // Attach authorization to each server request (role may have changed)
 async function attachUserToRequestEvent(sessionId: string, event: RequestEvent) {
-  const sql = `SELECT * FROM get_session($1);`
-  const { rows } = await query(sql, [sessionId])
-  if (rows?.length > 0) {
-    event.locals.user = <User> rows[0].get_session
-  }
+	const sql = `SELECT * FROM get_session($1);`
+	const { rows } = await query(sql, [sessionId])
+	if (rows?.length > 0) {
+		event.locals.user = <User>rows[0].get_session
+	}
 }
 
 // Invoked for each endpoint called and initially for SSR router
 export const handle: Handle = async ({ event, resolve }) => {
-  const { cookies } = event
-  const sessionId = cookies.get('session')
+	const { cookies } = event
+	const sessionId = cookies.get('session')
 
-  // before endpoint or page is called
-  if (sessionId) {
-    await attachUserToRequestEvent(sessionId, event)
-  }
+	// before endpoint or page is called
+	if (sessionId) {
+		await attachUserToRequestEvent(sessionId, event)
+	}
 
-  if (!event.locals.user) cookies.delete('session', { path: '/' })
+	if (!event.locals.user) cookies.delete('session', { path: '/' })
 
-  const response = await resolve(event)
+	const response = await resolve(event)
 
-  // after endpoint or page is called
+	// after endpoint or page is called
 
-  return response
+	return response
 }

package/src/lib/focus.ts

@@ -1,8 +1,8 @@
 export const focusOnFirstError = (form: HTMLFormElement) => {
-  for(const field of form.elements) {
-    if (field instanceof HTMLInputElement && !field.checkValidity()) {
-      field.focus()
-      break
-    }
-  }
+	for (const field of form.elements) {
+		if (field instanceof HTMLInputElement && !field.checkValidity()) {
+			field.focus()
+			break
+		}
+	}
 }

package/src/lib/google.ts

@@ -4,58 +4,57 @@ import { PUBLIC_GOOGLE_CLIENT_ID } from '$env/static/public'
 import { googleInitialized, loginSession } from '../stores'
 
 export function renderGoogleButton() {
-  const btn = document.getElementById('googleButton')
-  if (btn) {
-    google.accounts.id.renderButton(btn, {
-      type: 'standard',
-      theme: 'filled_blue',
-      size: 'large',
-      width: 367
-    })
-  }
+	const btn = document.getElementById('googleButton')
+	if (btn) {
+		google.accounts.id.renderButton(btn, {
+			type: 'standard',
+			theme: 'filled_blue',
+			size: 'large',
+			width: 367
+		})
+	}
 }
 
 export function initializeGoogleAccounts() {
-  let initialized = false
-  const unsubscribe = googleInitialized.subscribe(value => {
-		initialized = value;
+	let initialized = false
+	const unsubscribe = googleInitialized.subscribe((value) => {
+		initialized = value
 	})
 
-  if (!initialized) {
-    google.accounts.id.initialize({
-      client_id: PUBLIC_GOOGLE_CLIENT_ID,
-      callback: googleCallback
-    })
-
-    googleInitialized.set(true)
-  }
-  unsubscribe()
-
-  async function googleCallback(response: google.accounts.id.CredentialResponse) {
-    const res = await fetch('/auth/google', {
-      method: 'POST',
-      headers: {
-        'Content-Type': 'application/json'
-      },
-      body: JSON.stringify({ token: response.credential })
-    })
-  
-    if (res.ok) {
-      const fromEndpoint = await res.json()
-      loginSession.set(fromEndpoint.user) // update loginSession store
-      const { role } = fromEndpoint.user
-
-      let referrer
-      const unsubscribe = page.subscribe(p => {
-        referrer = p.url.searchParams.get('referrer');
-      })
-      unsubscribe()
-
-      if (referrer) return goto(referrer)
-      if (role === 'teacher') return goto('/teachers')
-      if (role === 'admin') return goto('/admin')
-      if (location.pathname === '/login') goto('/') // logged in so go home
-    }
-  }
+	if (!initialized) {
+		google.accounts.id.initialize({
+			client_id: PUBLIC_GOOGLE_CLIENT_ID,
+			callback: googleCallback
+		})
+
+		googleInitialized.set(true)
+	}
+	unsubscribe()
+
+	async function googleCallback(response: google.accounts.id.CredentialResponse) {
+		const res = await fetch('/auth/google', {
+			method: 'POST',
+			headers: {
+				'Content-Type': 'application/json'
+			},
+			body: JSON.stringify({ token: response.credential })
+		})
+
+		if (res.ok) {
+			const fromEndpoint = await res.json()
+			loginSession.set(fromEndpoint.user) // update loginSession store
+			const { role } = fromEndpoint.user
+
+			let referrer
+			const unsubscribe = page.subscribe((p) => {
+				referrer = p.url.searchParams.get('referrer')
+			})
+			unsubscribe()
+
+			if (referrer) return goto(referrer)
+			if (role === 'teacher') return goto('/teachers')
+			if (role === 'admin') return goto('/admin')
+			if (location.pathname === '/login') goto('/') // logged in so go home
+		}
+	}
 }
-

package/src/lib/server/db.ts

@@ -1,14 +1,15 @@
 /* eslint-disable @typescript-eslint/no-explicit-any */
-import type { QueryResult} from 'pg'
+import type { QueryResult } from 'pg'
 import pg from 'pg'
 import { DATABASE_URL } from '$env/static/private'
 
 const pool = new pg.Pool({
-  max: 10, // default
-  connectionString: DATABASE_URL,
-  ssl: { // If your postgresql.conf does not have `ssl = on`, remove the entire ssl property or you will get an error
-    rejectUnauthorized: false
-  }
+	max: 10, // default
+	connectionString: DATABASE_URL,
+	ssl: {
+		// If your postgresql.conf does not have `ssl = on`, remove the entire ssl property or you will get an error
+		rejectUnauthorized: false
+	}
 })
 
 type PostgresQueryResult = (sql: string, params?: any[]) => Promise<QueryResult<any>>

package/src/lib/server/sendgrid.ts

@@ -3,15 +3,15 @@ import sgMail from '@sendgrid/mail'
 import { env } from '$env/dynamic/private'
 
 export const sendMessage = async (message: Partial<MailDataRequired>) => {
-  const { SENDGRID_SENDER, SENDGRID_KEY } = env
-  try {
-    sgMail.setApiKey(SENDGRID_KEY)
-    const completeMessage = <MailDataRequired> {
-      from: SENDGRID_SENDER, // default sender can be altered
-      ...message
-    }
-    await sgMail.send(completeMessage)
-  } catch (errSendingMail) {
-    console.error(errSendingMail)
-  }
+	const { SENDGRID_SENDER, SENDGRID_KEY } = env
+	try {
+		sgMail.setApiKey(SENDGRID_KEY)
+		const completeMessage = <MailDataRequired>{
+			from: SENDGRID_SENDER, // default sender can be altered
+			...message
+		}
+		await sgMail.send(completeMessage)
+	} catch (errSendingMail) {
+		console.error(errSendingMail)
+	}
 }

package/src/routes/+error.svelte

@@ -1,5 +1,5 @@
 <script lang="ts" context="module">
-  import { page } from '$app/stores'
+	import { page } from '$app/stores'
 </script>
 
 <h1>{$page.status}</h1>

package/src/routes/+layout.server.ts

@@ -1,8 +1,8 @@
 import type { LayoutServerLoad } from './$types'
 
 export const load: LayoutServerLoad = ({ locals }) => {
-  const { user } = locals // locals.user set by hooks.server.ts/handle(), undefined if not logged in
-  return {
-    user
-  }
-}
+	const { user } = locals // locals.user set by hooks.server.ts/handle(), undefined if not logged in
+	return {
+		user
+	}
+}

package/src/routes/+layout.svelte

@@ -1,21 +1,21 @@
 <script lang="ts">
-  import { onMount } from 'svelte'
-  import type { LayoutServerData } from './$types'
-  import { goto, beforeNavigate } from '$app/navigation'
-  import { loginSession, toast } from '../stores'
-  import { initializeGoogleAccounts } from '$lib/google'
+	import { onMount } from 'svelte'
+	import type { LayoutServerData } from './$types'
+	import { goto, beforeNavigate } from '$app/navigation'
+	import { loginSession, toast } from '../stores'
+	import { initializeGoogleAccounts } from '$lib/google'
 
-  import 'bootstrap/scss/bootstrap.scss' // preferred way to load Bootstrap SCSS for hot module reloading
+	import 'bootstrap/scss/bootstrap.scss' // preferred way to load Bootstrap SCSS for hot module reloading
 
 	export let data: LayoutServerData
 
-  // If returning from different website, runs once (as it's an SPA) to restore user session if session cookie is still valid
-  const { user } = data
-  $loginSession = user
+	// If returning from different website, runs once (as it's an SPA) to restore user session if session cookie is still valid
+	const { user } = data
+	$loginSession = user
 
-  let Toast: any
+	let Toast: any
 
-  beforeNavigate( () => {
+	beforeNavigate(() => {
 		let expirationDate = $loginSession?.expires ? new Date($loginSession.expires) : undefined
 
 		if (expirationDate && expirationDate < new Date()) {
@@ -24,17 +24,17 @@
 		}
 	})
 
-  onMount(async () => {
-    initializeGoogleAccounts()
+	onMount(async () => {
+		initializeGoogleAccounts()
 
-    await import('bootstrap/js/dist/collapse') // lots of ways to load Bootstrap but prefer this approach to avoid SSR issues
-    await import('bootstrap/js/dist/dropdown')
-    Toast = (await import('bootstrap/js/dist/toast')).default
+		await import('bootstrap/js/dist/collapse') // lots of ways to load Bootstrap but prefer this approach to avoid SSR issues
+		await import('bootstrap/js/dist/dropdown')
+		Toast = (await import('bootstrap/js/dist/toast')).default
 
-    if (!$loginSession) google.accounts.id.prompt()
+		if (!$loginSession) google.accounts.id.prompt()
 	})
 
-  async function logout() {
+	async function logout() {
 		// Request server delete httpOnly cookie called loginSession
 		const url = '/auth/logout'
 		const res = await fetch(url, {
@@ -46,95 +46,128 @@
 		} else console.error(`Logout not successful: ${res.statusText} (${res.status})`)
 	}
 
-  const openToast = (open: boolean) => {
-    if (open) {
-      const toastDiv = <HTMLDivElement> document.getElementById('authToast')
-      const t = new Toast(toastDiv)
-      t.show()
-    }
-  }
+	const openToast = (open: boolean) => {
+		if (open) {
+			const toastDiv = <HTMLDivElement>document.getElementById('authToast')
+			const t = new Toast(toastDiv)
+			t.show()
+		}
+	}
 
-  $: openToast($toast.isOpen)
+	$: openToast($toast.isOpen)
 </script>
 
 <nav class="navbar navbar-expand-lg navbar-light bg-light">
-  <div class="container">
-    <a class="navbar-brand" href="/">SvelteKit-Auth-Example</a>
-    <button class="navbar-toggler" type="button" data-bs-toggle="collapse" data-bs-target="#navbarMain" aria-controls="navbarMain" aria-expanded="false" aria-label="Toggle navigation">
-      <span class="navbar-toggler-icon"></span>
-    </button>
-    <div class="collapse navbar-collapse" id="navbarMain">
-
-      <ul class="navbar-nav me-5">
-        <li class="nav-item"><a class="nav-link active" aria-current="page" href="/">Home</a></li>
-        <li class="nav-item"><a class="nav-link" href="/info">Info</a></li>
-
-        {#if $loginSession}
-          {#if $loginSession.role == 'admin'}
-            <li class="nav-item"><a class="nav-link" href="/admin">Admin</a></li>
-          {/if}
-          {#if $loginSession.role != 'student'}
-            <li class="nav-item"><a class="nav-link" href="/teachers">Teachers</a></li>
-          {/if}
-        {/if}
-      </ul>
-      <ul class="navbar-nav">
-        {#if $loginSession}
-          <li class="nav-item dropdown">
-            <a class="nav-link dropdown-toggle" href={'#'} role="button" data-bs-toggle="dropdown" aria-expanded="false">
-              <svg xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" class="avatar" viewBox="0 0 16 16">
-                <path d="M11 6a3 3 0 1 1-6 0 3 3 0 0 1 6 0z"/>
-                <path fill-rule="evenodd" d="M0 8a8 8 0 1 1 16 0A8 8 0 0 1 0 8zm8-7a7 7 0 0 0-5.468 11.37C3.242 11.226 4.805 10 8 10s4.757 1.225 5.468 2.37A7 7 0 0 0 8 1z"/>
-              </svg>
-              {$loginSession.firstName}
-            </a>
-            <ul class="dropdown-menu">
-              <li>
-                <a class="dropdown-item" href="/profile">Profile</a>
-              </li>
-              <li>
-                <a on:click|preventDefault={logout} class="dropdown-item" class:d-none={!$loginSession || $loginSession.id === 0} href={'#'}>Logout</a>
-              </li>
-            </ul>
-          </li>
-        {:else}
-          <li class="nav-item">
-            <a class="nav-link" href="/login">Login</a>
-          </li>
-        {/if}
-      </ul>
-    </div>
-  </div>
+	<div class="container">
+		<a class="navbar-brand" href="/">SvelteKit-Auth-Example</a>
+		<button
+			class="navbar-toggler"
+			type="button"
+			data-bs-toggle="collapse"
+			data-bs-target="#navbarMain"
+			aria-controls="navbarMain"
+			aria-expanded="false"
+			aria-label="Toggle navigation"
+		>
+			<span class="navbar-toggler-icon"></span>
+		</button>
+		<div class="collapse navbar-collapse" id="navbarMain">
+			<ul class="navbar-nav me-5">
+				<li class="nav-item"><a class="nav-link active" aria-current="page" href="/">Home</a></li>
+				<li class="nav-item"><a class="nav-link" href="/info">Info</a></li>
+
+				{#if $loginSession}
+					{#if $loginSession.role == 'admin'}
+						<li class="nav-item"><a class="nav-link" href="/admin">Admin</a></li>
+					{/if}
+					{#if $loginSession.role != 'student'}
+						<li class="nav-item"><a class="nav-link" href="/teachers">Teachers</a></li>
+					{/if}
+				{/if}
+			</ul>
+			<ul class="navbar-nav">
+				{#if $loginSession}
+					<li class="nav-item dropdown">
+						<a
+							class="nav-link dropdown-toggle"
+							href={'#'}
+							role="button"
+							data-bs-toggle="dropdown"
+							aria-expanded="false"
+						>
+							<svg
+								xmlns="http://www.w3.org/2000/svg"
+								width="16"
+								height="16"
+								fill="currentColor"
+								class="avatar"
+								viewBox="0 0 16 16"
+							>
+								<path d="M11 6a3 3 0 1 1-6 0 3 3 0 0 1 6 0z" />
+								<path
+									fill-rule="evenodd"
+									d="M0 8a8 8 0 1 1 16 0A8 8 0 0 1 0 8zm8-7a7 7 0 0 0-5.468 11.37C3.242 11.226 4.805 10 8 10s4.757 1.225 5.468 2.37A7 7 0 0 0 8 1z"
+								/>
+							</svg>
+							{$loginSession.firstName}
+						</a>
+						<ul class="dropdown-menu">
+							<li>
+								<a class="dropdown-item" href="/profile">Profile</a>
+							</li>
+							<li>
+								<a
+									on:click|preventDefault={logout}
+									class="dropdown-item"
+									class:d-none={!$loginSession || $loginSession.id === 0}
+									href={'#'}>Logout</a
+								>
+							</li>
+						</ul>
+					</li>
+				{:else}
+					<li class="nav-item">
+						<a class="nav-link" href="/login">Login</a>
+					</li>
+				{/if}
+			</ul>
+		</div>
+	</div>
 </nav>
 
 <main class="container">
-  <slot/>
-
-  <div id="authToast" class="toast position-fixed top-0 end-0 m-3" role="alert" aria-live="assertive" aria-atomic="true">
-    <div class="toast-header bg-primary text-white">
-      <strong class="me-auto">{$toast.title}</strong>
-      <button type="button" class="btn-close" data-bs-dismiss="toast" aria-label="Close"></button>
-    </div>
-    <div class="toast-body">
-      {$toast.body}
-    </div>
-  </div>
-
+	<slot />
+
+	<div
+		id="authToast"
+		class="toast position-fixed top-0 end-0 m-3"
+		role="alert"
+		aria-live="assertive"
+		aria-atomic="true"
+	>
+		<div class="toast-header bg-primary text-white">
+			<strong class="me-auto">{$toast.title}</strong>
+			<button type="button" class="btn-close" data-bs-dismiss="toast" aria-label="Close"></button>
+		</div>
+		<div class="toast-body">
+			{$toast.body}
+		</div>
+	</div>
 </main>
 
 <style lang="scss" global>
-  // Make Retina displays crisper
-  * {
-    -webkit-font-smoothing: antialiased;
-    -moz-osx-font-smoothing: grayscale;
-  }
-
-  .toast {
-    z-index: 9999;
-  }
-
-  .avatar {
-    position: relative;
-    top: -1.5px;
-  }
-</style>
+	// Make Retina displays crisper
+	* {
+		-webkit-font-smoothing: antialiased;
+		-moz-osx-font-smoothing: grayscale;
+	}
+
+	.toast {
+		z-index: 9999;
+	}
+
+	.avatar {
+		position: relative;
+		top: -1.5px;
+	}
+</style>

package/src/routes/admin/+page.server.ts

@@ -5,7 +5,7 @@ export const load: PageServerLoad = async ({ locals }) => {
 	const { user } = locals
 	const authorized = ['admin']
 	if (!user || !authorized.includes(user.role)) {
-		redirect(302, '/login?referrer=/admin');
+		redirect(302, '/login?referrer=/admin')
 	}
 
 	return { message: 'Admin-only content from server.' }

package/src/routes/admin/+page.svelte

@@ -4,9 +4,9 @@
 </script>
 
 <svelte:head>
-  <title>Administration</title>
+	<title>Administration</title>
 </svelte:head>
 
 <h1>Admin</h1>
 <h4>Admin Role</h4>
-<p>{data.message}</p>
+<p>{data.message}</p>