fix(auth): refresh token before API calls

2026-01-03 06:47:20 -03:00 · 2026-01-03 06:47:20 -03:00 · c9ffcedceb
commit c9ffcedceb
parent 960e2c4c8a
2 changed files with 12 additions and 0 deletions
--- a/.gitignore
+++ b/.gitignore
@ -12,3 +12,7 @@ frontend/dist/
 .coverage
 docs/*.md
 AGENTS.md
+
+# Local-only wallpapers (do not commit)
+media/atlas_bg.jpg
+media/titan-iac-bg.png
--- a/frontend/src/auth.js
+++ b/frontend/src/auth.js
@ -105,6 +105,14 @@ export async function logout() {

 export async function authFetch(url, options = {}) {
  const headers = new Headers(options.headers || {});
+  if (keycloak?.authenticated) {
+    try {
+      await keycloak.updateToken(30);
+      updateFromToken();
+    } catch {
+      // ignore refresh failures; the API will return 401 and the UI can prompt for login
+    }
+  }
  if (auth.token) headers.set("Authorization", `Bearer ${auth.token}`);
  return fetch(url, { ...options, headers });
 }