spotube/lib/provider/authentication_provider.dart

import 'dart:async';
import 'dart:io';

import 'package:collection/collection.dart';
import 'package:dio/dio.dart';
import 'package:dio/io.dart';
import 'package:flutter_inappwebview/flutter_inappwebview.dart'
    hide X509Certificate;
import 'package:hooks_riverpod/hooks_riverpod.dart';
import 'package:spotube/collections/routes.dart';
import 'package:spotube/components/dialogs/prompt_dialog.dart';
import 'package:spotube/extensions/context.dart';
import 'package:spotube/utils/persisted_state_notifier.dart';
import 'package:spotube/utils/platform.dart';

class AuthenticationCredentials {
  String cookie;
  String accessToken;
  DateTime expiration;

  bool get isExpired => DateTime.now().isAfter(expiration);

  static final Dio dio = () {
    final dio = Dio();

    (dio.httpClientAdapter as IOHttpClientAdapter)
        .createHttpClient = () => HttpClient()
      ..badCertificateCallback = (X509Certificate cert, String host, int port) {
        return host.endsWith("spotify.com") && port == 443;
      };

    return dio;
  }();

  AuthenticationCredentials({
    required this.cookie,
    required this.accessToken,
    required this.expiration,
  });

  static Future<AuthenticationCredentials> fromCookie(String cookie) async {
    try {
      final spDc = cookie
          .split("; ")
          .firstWhereOrNull((c) => c.trim().startsWith("sp_dc="))
          ?.trim();
      final res = await dio.getUri(
        Uri.parse(
          "https://open.spotify.com/get_access_token?reason=transport&productType=web_player",
        ),
        options: Options(
          headers: {
            "Cookie": spDc ?? "",
            "User-Agent":
                "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36"
          },
          validateStatus: (status) => true,
        ),
      );
      final body = res.data;

      if ((res.statusCode ?? 500) >= 400) {
        throw Exception(
          "Failed to get access token: ${body['error'] ?? res.statusMessage}",
        );
      }

      return AuthenticationCredentials(
        cookie: "${res.headers["set-cookie"]?.join(";")}; $spDc",
        accessToken: body['accessToken'],
        expiration: DateTime.fromMillisecondsSinceEpoch(
          body['accessTokenExpirationTimestampMs'],
        ),
      );
    } catch (e) {
      if (rootNavigatorKey.currentContext != null) {
        showPromptDialog(
          context: rootNavigatorKey.currentContext!,
          title: rootNavigatorKey.currentContext!.l10n
              .error("Authentication Failure"),
          message: e.toString(),
          cancelText: null,
        );
      }
      rethrow;
    }
  }

  /// Returns the cookie value
  String? getCookie(String key) => cookie
      .split("; ")
      .firstWhereOrNull((c) => c.trim().startsWith("$key="))
      ?.trim()
      .split("=")
      .last
      .replaceAll(";", "");

  factory AuthenticationCredentials.fromJson(Map<String, dynamic> json) {
    return AuthenticationCredentials(
      cookie: json['cookie'] as String,
      accessToken: json['accessToken'] as String,
      expiration: DateTime.parse(json['expiration'] as String),
    );
  }

  Map<String, dynamic> toJson() {
    return {
      'cookie': cookie,
      'accessToken': accessToken,
      'expiration': expiration.toIso8601String(),
    };
  }

  AuthenticationCredentials copyWith({
    String? cookie,
    String? accessToken,
    DateTime? expiration,
  }) {
    return AuthenticationCredentials(
      cookie: cookie ?? this.cookie,
      accessToken: accessToken ?? this.accessToken,
      expiration: expiration ?? this.expiration,
    );
  }
}

class AuthenticationNotifier
    extends PersistedStateNotifier<AuthenticationCredentials?> {
  bool get isLoggedIn => state != null;

  AuthenticationNotifier() : super(null, "authentication", encrypted: true);

  Timer? _refreshTimer;

  @override
  FutureOr<void> onInit() async {
    super.onInit();
    if (isLoggedIn && state!.isExpired) {
      await refreshCredentials();
    }

    addListener((state) {
      _refreshTimer?.cancel();
      if (isLoggedIn && !state!.isExpired) {
        _refreshTimer = Timer(
          state.expiration.difference(DateTime.now()),
          () => refreshCredentials(),
        );
      }
    });
  }

  void setCredentials(AuthenticationCredentials credentials) {
    state = credentials;
  }

  Future<void> logout() async {
    state = null;
    if (kIsMobile) {
      WebStorageManager.instance().deleteAllData();
      CookieManager.instance().deleteAllCookies();
    }
  }

  Future<void> refreshCredentials() async {
    if (!isLoggedIn) {
      return;
    }

    state = await AuthenticationCredentials.fromCookie(state!.cookie);
  }

  @override
  FutureOr<AuthenticationCredentials?> fromJson(Map<String, dynamic> json) {
    return AuthenticationCredentials.fromJson(json);
  }

  @override
  Map<String, dynamic> toJson() {
    return state?.toJson() ?? {};
  }
}

final authenticationProvider =
    StateNotifierProvider<AuthenticationNotifier, AuthenticationCredentials?>(
  (ref) => AuthenticationNotifier(),
);