fix(auth): resolve login redirection and persistent session issues Send email (#3)

* fixes

* fix-2

* fix-3

* fix-4

* fix-4

* fix(auth): resolve login redirection and persistent session issues

This commit addresses the following:
- Adds @tanstack/react-query and react-error-boundary for state management and resilience.
- Refactors App.tsx to use React Router v6.4+ Data API (createBrowserRouter).
- Fixes an issue where successful login did not redirect to the dashboard.
- Modifies authMiddleware to drop the Secure flag on localhost to prevent proxy issues.
- Adds Cache-Control headers to /api/session to avoid browser caching of 401s.

Author: Syntax-Error-1337

env.example

@@ -0,0 +1,29 @@
+# ------------------------------------------------------------------
+# Environment Variables for Local Development
+# ------------------------------------------------------------------
+# Save or copy this file as `.dev.vars` to use these variables locally.
+# `wrangler dev` automatically reads `.dev.vars` for secrets and variables.
+#
+# Note: D1 Database connections (like database_id) are configured 
+# in `wrangler.toml`. To test locally while connecting to your remote 
+# Cloudflare D1 database and other cloud resources, run: 
+#       npm run dev:backend:remote 
+# (which executes `wrangler dev --remote`)
+# ------------------------------------------------------------------
+
+# [Required Secrets]
+# The password used to log into the admin dashboard
+ADMIN_PASSWORD="your_secure_admin_password_here"
+
+# A secure random string used for signing JWT tokens
+# You can generate one via: openssl rand -hex 32
+JWT_TOKEN="your_secure_jwt_secret_token_here"
+
+# [Optional Secrets]
+# Resend API Key for sending outbound emails (if you use this feature)
+RESEND_API_KEY="re_123456789"
+
+# [Variables]
+# You can also override variables defined in wrangler.toml here for local testing
+MAIL_DOMAIN="example.com"
+ADMIN_NAME="admin"

package-lock.json

@@ -23,12 +23,14 @@
     "@radix-ui/react-slot": "^1.2.4",
     "@radix-ui/react-tabs": "^1.1.13",
     "@tailwindcss/vite": "^4.1.18",
+    "@tanstack/react-query": "^5.90.21",
     "class-variance-authority": "^0.7.1",
     "clsx": "^2.1.1",
     "date-fns": "^4.1.0",
     "lucide-react": "^0.563.0",
     "react": "^19.2.0",
     "react-dom": "^19.2.0",
+    "react-error-boundary": "^6.1.1",
     "react-hot-toast": "^2.6.0",
     "react-router-dom": "^7.13.0",
     "tailwind-merge": "^3.4.0",
@@ -48,4 +50,4 @@
     "typescript-eslint": "^8.46.4",
     "vite": "^7.2.4"
   }
-}
+}

package.json

@@ -1,5 +1,7 @@
-import { BrowserRouter, Routes, Route, Navigate } from 'react-router-dom';
+import { createBrowserRouter, RouterProvider, Navigate, Outlet } from 'react-router-dom';
 import { Toaster } from 'react-hot-toast';
+import { QueryClient, QueryClientProvider } from '@tanstack/react-query';
+import { GlobalErrorBoundary } from '@/components/GlobalErrorBoundary';
 import { AuthProvider, useAuth } from '@/context/AuthContext';
 import Login from '@/pages/auth/Login';
 import Dashboard from '@/pages/dashboard';
@@ -9,6 +11,8 @@ import SentMailbox from "@/pages/mailbox/Sent";
 import Layout from '@/components/layout/Layout';
 import { Loader2 } from 'lucide-react';
 
+const queryClient = new QueryClient();
+
 const PrivateRoute = ({ children, roles = [] }: { children: React.ReactNode, roles?: string[] }) => {
   const { user, isLoading } = useAuth();
 
@@ -33,9 +37,9 @@ const PrivateRoute = ({ children, roles = [] }: { children: React.ReactNode, rol
   return <>{children}</>;
 };
 
-function AppRoutes() {
+const AuthenticatedRoute = () => {
   const { user, isLoading } = useAuth();
-
+  
   if (isLoading) {
     return (
       <div className="min-h-screen flex items-center justify-center bg-background">
@@ -44,31 +48,65 @@ function AppRoutes() {
     );
   }
 
-  return (
-    <Routes>
-      <Route path="/login" element={!user ? <Login /> : <Navigate to="/dashboard" />} />
+  if (!user) return <Navigate to="/login" replace />;
 
-      <Route element={user ? <Layout /> : <Navigate to="/login" />}>
-        <Route path="/dashboard" element={<Dashboard />} />
-        <Route path="/mailbox" element={<PrivateRoute roles={['admin', 'user', 'mailbox']}><Mailbox /></PrivateRoute>} />
-        <Route path="/compose" element={<PrivateRoute roles={['admin', 'user', 'mailbox']}><ComposePage /></PrivateRoute>} />
-        <Route path="/sent" element={<PrivateRoute roles={['admin', 'user', 'mailbox']}><SentMailbox /></PrivateRoute>} />
-        <Route path="/settings" element={<PrivateRoute roles={['admin', 'user']}><div className="p-8">Settings (Work in Progress)</div></PrivateRoute>} />
-        <Route index element={<Navigate to="/dashboard" />} />
-      </Route>
-
-      <Route path="*" element={<Navigate to={user ? "/dashboard" : "/login"} />} />
-    </Routes>
+  return (
+    <Layout>
+      <Outlet />
+    </Layout>
   );
-}
+};
+
+const router = createBrowserRouter([
+  {
+    path: "/login",
+    element: <Login />,
+  },
+  {
+    path: "/",
+    element: <AuthenticatedRoute />,
+    children: [
+      {
+        index: true,
+        element: <Navigate to="/dashboard" replace />,
+      },
+      {
+        path: "dashboard",
+        element: <Dashboard />,
+      },
+      {
+        path: "mailbox",
+        element: <PrivateRoute roles={['admin', 'user', 'mailbox']}><Mailbox /></PrivateRoute>,
+      },
+      {
+        path: "compose",
+        element: <PrivateRoute roles={['admin', 'user', 'mailbox']}><ComposePage /></PrivateRoute>,
+      },
+      {
+        path: "sent",
+        element: <PrivateRoute roles={['admin', 'user', 'mailbox']}><SentMailbox /></PrivateRoute>,
+      },
+      {
+        path: "settings",
+        element: <PrivateRoute roles={['admin', 'user']}><div className="p-8">Settings (Work in Progress)</div></PrivateRoute>,
+      }
+    ]
+  },
+  {
+    path: "*",
+    element: <Navigate to="/dashboard" replace />
+  }
+]);
 
 export default function App() {
   return (
-    <BrowserRouter>
-      <AuthProvider>
-        <AppRoutes />
-        <Toaster position="top-right" />
-      </AuthProvider>
-    </BrowserRouter>
+    <GlobalErrorBoundary>
+      <QueryClientProvider client={queryClient}>
+        <AuthProvider>
+          <RouterProvider router={router} />
+          <Toaster position="top-right" />
+        </AuthProvider>
+      </QueryClientProvider>
+    </GlobalErrorBoundary>
   );
 }

src/App.tsx

@@ -0,0 +1,51 @@
+import { ErrorBoundary } from 'react-error-boundary';
+import type { FallbackProps } from 'react-error-boundary';
+import { Button } from '@/components/ui/button';
+import { AlertCircle } from 'lucide-react';
+
+interface GlobalErrorBoundaryProps {
+  children: React.ReactNode;
+}
+
+function ErrorFallback({ error, resetErrorBoundary }: FallbackProps) {
+  return (
+    <div className="min-h-screen flex flex-col items-center justify-center bg-background p-4 text-center">
+      <div className="max-w-md space-y-6">
+        <div className="flex justify-center flex-col items-center space-y-4">
+          <div className="bg-destructive/10 p-4 rounded-full">
+            <AlertCircle className="h-12 w-12 text-destructive" />
+          </div>
+          <h1 className="text-3xl font-bold tracking-tight">Something went wrong</h1>
+        </div>
+        
+        <div className="bg-muted p-4 rounded-md text-left overflow-auto max-h-[300px]">
+          <p className="text-sm font-mono text-muted-foreground break-all">
+            {error instanceof Error ? error.message : String(error)}
+          </p>
+        </div>
+
+        <div className="flex gap-4 justify-center">
+          <Button onClick={resetErrorBoundary} variant="default">
+            Try again
+          </Button>
+          <Button onClick={() => window.location.href = '/'} variant="outline">
+            Go home
+          </Button>
+        </div>
+      </div>
+    </div>
+  );
+}
+
+export function GlobalErrorBoundary({ children }: GlobalErrorBoundaryProps) {
+  return (
+    <ErrorBoundary
+      FallbackComponent={ErrorFallback}
+      onReset={() => {
+        // Reset the state of your app so the error doesn't happen again
+      }}
+    >
+      {children}
+    </ErrorBoundary>
+  );
+}

src/components/GlobalErrorBoundary.tsx

@@ -15,7 +15,11 @@ import {
 } from 'lucide-react';
 import { cn } from '@/lib/utils';
 
-export default function Layout() {
+interface LayoutProps {
+    children?: React.ReactNode;
+}
+
+export default function Layout({ children }: LayoutProps) {
     const { user, logout } = useAuth();
     const [isSidebarOpen, setSidebarOpen] = useState(false);
     const toggleSidebar = () => setSidebarOpen(!isSidebarOpen);
@@ -100,7 +104,7 @@ export default function Layout() {
                 </header>
 
                 <div className="flex-1">
-                    <Outlet />
+                    {children || <Outlet />}
                 </div>
             </main>
         </div>

src/components/layout/Layout.tsx

@@ -35,14 +35,6 @@ export function AuthProvider({ children }: { children: ReactNode }) {
             } else {
                 setUser(null);
             }
-        } catch (error: any) {
-            // 401 Unauthorized is expected if not logged in
-            if (error.status === 401) {
-                setUser(null);
-            } else {
-                console.error('Session check failed:', error);
-                setUser(null);
-            }
         } finally {
             setIsLoading(false);
         }

src/context/AuthContext.tsx

@@ -1,4 +1,5 @@
 import { useState } from 'react';
+import { useNavigate } from 'react-router-dom';
 import { useAuth } from '@/context/AuthContext';
 import { Button } from '@/components/ui/button';
 import { Input } from '@/components/ui/input';
@@ -11,13 +12,15 @@ export default function Login() {
     const [username, setUsername] = useState('');
     const [password, setPassword] = useState('');
     const [isLoading, setIsLoading] = useState(false);
+    const navigate = useNavigate();
 
     const handleSubmit = async (e: React.FormEvent) => {
         e.preventDefault();
         setIsLoading(true);
         try {
             await login({ username, password });
             toast.success('Login successful');
+            navigate('/dashboard', { replace: true });
         } catch (error) {
             const msg = error instanceof Error ? error.message : 'Login failed';
             toast.error(msg);

src/pages/auth/Login.tsx

@@ -66,9 +66,8 @@ export class AssetManager {
 
     // Allow .html files to fall through to specific handlers or asset fetch
     // But map SPA routes to index.html
-
     if (pathname === '/admin.html' || pathname === '/admin') {
-      return await this.handleAdminPage(this.handlePathMapping(request, url), env, JWT_TOKEN);
+      return await this.handleAdminPage(mappedRequest, env, JWT_TOKEN);
     }
 
     if (pathname === '/mailbox.html' || pathname === '/html/mailbox.html') {
@@ -169,7 +168,11 @@ export class AssetManager {
   handlePathMapping(request, url) {
     let targetUrl = url.toString();
 
-    // Mapping logic for specific legacy/static references
+    const spaRoutes = ['/login', '/dashboard', '/mailbox', '/compose', '/sent', '/settings'];
+    if (spaRoutes.includes(url.pathname)) {
+      // SPA route: serve index.html
+      targetUrl = new URL('/index.html', url).toString();
+    }
     if (url.pathname === '/admin') {
       targetUrl = new URL('/html/admin.html', url).toString();
     }