Better error handling in github auth provider

2026-03-05 00:08:14 +00:00 · 2020-04-23 12:16:17 -07:00
parent 37f849dde0
commit badd41f04a
2 changed files with 112 additions and 29 deletions
--- a/extensions/github-authentication/src/github.ts
+++ b/extensions/github-authentication/src/github.ts
@@ -6,7 +6,7 @@
 import * as vscode from 'vscode';
 import * as uuid from 'uuid';
 import { keychain } from './common/keychain';
-import { GitHubServer } from './githubServer';
+import { GitHubServer, NETWORK_ERROR } from './githubServer';
 import Logger from './common/logger';

 export const onDidChangeSessions = new vscode.EventEmitter<vscode.AuthenticationSessionsChangeEvent>();
@@ -38,13 +38,25 @@ export class GitHubAuthenticationProvider {
 	private _githubServer = new GitHubServer();

 	public async initialize(): Promise<void> {
-		this._sessions = await this.readSessions();
+		try {
+			this._sessions = await this.readSessions();
+		} catch (e) {
+			// Ignore, network request failed
+		}
+
+		await this.validateSessions();
 		this.pollForChange();
 	}

 	private pollForChange() {
 		setTimeout(async () => {
-			const storedSessions = await this.readSessions();
+			let storedSessions: vscode.AuthenticationSession[];
+			try {
+				storedSessions = await this.readSessions();
+			} catch (e) {
+				// Ignore, network request failed
+				return;
+			}

 			const added: string[] = [];
 			const removed: string[] = [];
@@ -53,6 +65,7 @@ export class GitHubAuthenticationProvider {
 				const matchesExisting = this._sessions.some(s => s.id === session.id);
 				// Another window added a session to the keychain, add it to our state as well
 				if (!matchesExisting) {
+					Logger.info('Adding session found in keychain');
 					this._sessions.push(session);
 					added.push(session.id);
 				}
@@ -62,6 +75,7 @@ export class GitHubAuthenticationProvider {
 				const matchesExisting = storedSessions.some(s => s.id === session.id);
 				// Another window has logged out, remove from our state
 				if (!matchesExisting) {
+					Logger.info('Removing session no longer found in keychain');
 					const sessionIndex = this._sessions.findIndex(s => s.id === session.id);
 					if (sessionIndex > -1) {
 						this._sessions.splice(sessionIndex, 1);
@@ -79,40 +93,62 @@ export class GitHubAuthenticationProvider {
 		}, 1000 * 30);
 	}

+	private async validateSessions(): Promise<void> {
+		const validationPromises = this._sessions.map(async session => {
+			try {
+				await this._githubServer.validateToken(await session.getAccessToken());
+				return session;
+			} catch (e) {
+				if (e === NETWORK_ERROR) {
+					return session;
+				}
+
+				return undefined;
+			}
+		});
+
+		const validSessions = (await Promise.all(validationPromises)).filter((x: vscode.AuthenticationSession | undefined): x is vscode.AuthenticationSession => !!x);
+		if (validSessions.length !== this._sessions.length) {
+			this._sessions = validSessions;
+			this.storeSessions();
+		}
+	}
+
 	private async readSessions(): Promise<vscode.AuthenticationSession[]> {
 		const storedSessions = await keychain.getToken();
 		if (storedSessions) {
 			try {
 				const sessionData: (SessionData | OldSessionData)[] = JSON.parse(storedSessions);
-				const sessionPromises = sessionData.map(async (session: SessionData | OldSessionData): Promise<vscode.AuthenticationSession | undefined> => {
-					try {
-						const needsUserInfo = isOldSessionData(session) || !session.account;
-						let userInfo: { id: string, accountName: string };
-						if (needsUserInfo) {
-							userInfo = await this._githubServer.getUserInfo(session.accessToken);
-						}
-
-						return {
-							id: session.id,
-							account: {
-								displayName: isOldSessionData(session)
-									? session.accountName
-									: session.account?.displayName ?? userInfo!.accountName,
-								id: isOldSessionData(session)
-									? userInfo!.id
-									: session.account?.id ?? userInfo!.id
-							},
-							scopes: session.scopes,
-							getAccessToken: () => Promise.resolve(session.accessToken)
-						};
-					} catch (e) {
-						return undefined;
+				const sessionPromises = sessionData.map(async (session: SessionData | OldSessionData): Promise<vscode.AuthenticationSession> => {
+					const needsUserInfo = isOldSessionData(session) || !session.account;
+					let userInfo: { id: string, accountName: string };
+					if (needsUserInfo) {
+						userInfo = await this._githubServer.getUserInfo(session.accessToken);
 					}
+
+					return {
+						id: session.id,
+						account: {
+							displayName: isOldSessionData(session)
+								? session.accountName
+								: session.account?.displayName ?? userInfo!.accountName,
+							id: isOldSessionData(session)
+								? userInfo!.id
+								: session.account?.id ?? userInfo!.id
+						},
+						scopes: session.scopes,
+						getAccessToken: () => Promise.resolve(session.accessToken)
+					};
 				});

-				return (await Promise.all(sessionPromises)).filter((x: vscode.AuthenticationSession | undefined): x is vscode.AuthenticationSession => !!x);
+				return Promise.all(sessionPromises);
 			} catch (e) {
+				if (e === NETWORK_ERROR) {
+					return [];
+				}
+
 				Logger.error(`Error reading sessions: ${e}`);
+				await keychain.deleteToken();
 			}
 		}