0.0.4 • Published 7 months ago
@mrsamdev/axios-token-refresh v0.0.4
@mrsamdev/axios-token-refresh
A robust Axios plugin that handles token refresh logic when API calls fail due to authentication issues. It automatically queues pending requests and retries them once a new token is obtained.
Note: This is a basic wrapper around Axios interceptors, mainly for personal use. If you're using it in production, make sure to review security, error handling, and performance aspects.
Features
- 🔄 Automatic token refresh on 401 errors
- ⏱️ Request queueing during token refresh
- 🔁 Automatic retry of queued requests after successful token refresh
- 🔧 Customizable conditions for token refresh
- 📊 Status change notifications during token refresh
- ⏰ Configurable timeout for token refresh operations
- 🔑 Customizable auth header formatting
- 📦 Supports ESM and CommonJS
- 🔒 TypeScript support with full type definitions
Installation
pnpm add @mrsamdev/axios-token-refreshor
npm install @mrsamdev/axios-token-refreshor
yarn add @mrsamdev/axios-token-refreshUsage
Basic Example
import axios from "axios";
import { createRefreshTokenPlugin } from "@mrsamdev/axios-token-refresh";
// Create an axios instance
const apiClient = axios.create({
baseURL: "https://api.example.com",
headers: {
"Content-Type": "application/json",
},
});
// Configure the refresh token plugin
const refreshPlugin = createRefreshTokenPlugin({
// Function to refresh the token
refreshTokenFn: async () => {
// Implement your token refresh logic here
const response = await axios.post("https://api.example.com/refresh-token", {
refresh_token: localStorage.getItem("refreshToken"),
});
const newToken = response.data.access_token;
localStorage.setItem("token", newToken);
return newToken;
},
// Function to get the current token
getAuthToken: () => localStorage.getItem("token"),
// Optional: Custom condition for when to refresh token
shouldRefreshToken: (error) => error.response && error.response.status === 401,
// Optional: Status change callback
onStatusChange: (status, error) => {
console.log(`Token refresh status: ${status}`);
if (error) {
console.error("Token refresh error:", error);
}
// status can be: "refreshing", "success", "failed", "error"
},
});
// Apply the plugin to your axios instance
refreshPlugin(apiClient);
// Now use your apiClient for all API calls
export default apiClient;Advanced Configuration
You can customize when token refresh is triggered with the shouldRefreshToken option:
const refreshPlugin = createRefreshTokenPlugin({
// ... other options
// Custom options added in latest version
authHeaderFormatter: (token) => `Custom ${token}`, // Default: `Bearer ${token}`
refreshTimeout: 15000, // 15 seconds timeout (default: 10000ms)
shouldRefreshToken: (error) => {
// Custom logic to determine when to refresh the token
return (
// Refresh on 401 Unauthorized
(error.response && error.response.status === 401) ||
// Refresh on specific error message
(error.response && error.response.data && error.response.data.error === "token_expired") ||
// Refresh on network errors when token exists
(error.message === "Network Error" && localStorage.getItem("token"))
);
},
});TypeScript Usage
For TypeScript projects, you can take advantage of the built-in type definitions:
import axios, { AxiosError } from "axios";
import { createRefreshTokenPlugin, RefreshTokenPluginOptions } from "@mrsamdev/axios-token-refresh";
// Create plugin with full type support
const options: RefreshTokenPluginOptions = {
refreshTokenFn: async () => {
// Implementation with full type checking
return "new-token";
},
getAuthToken: () => localStorage.getItem("token"),
shouldRefreshToken: (error: AxiosError) => {
return !!error.response && error.response.status === 401;
},
};
const refreshPlugin = createRefreshTokenPlugin(options);API Reference
createRefreshTokenPlugin(options)
Creates an Axios interceptor plugin that handles token refresh.
Options
| Option | Type | Required | Default | Description |
|---|---|---|---|---|
refreshTokenFn | () => Promise<string \| null> | Yes | - | Async function that refreshes the token and returns the new token. |
getAuthToken | () => string \| null | Yes | - | Function that returns the current auth token. |
shouldRefreshToken | (error: AxiosError, originalRequest: object) => boolean | No | Checks for 401 status or network errors | Function that determines if token refresh should be triggered. |
onStatusChange | (status: string, error?: Error) => void | No | Console log function | Callback for token refresh status updates with error details. Status can be "refreshing", "success", "failed", or "error". |
authHeaderFormatter | (token: string) => string | No | (token) => Bearer ${token} | Function to format the authorization header value. |
refreshTimeout | number | No | 10000 (10 seconds) | Timeout for token refresh operation in milliseconds. |
How It Works
- When an API call fails, the interceptor checks if the error meets the criteria for token refresh.
- If token refresh is needed, it queues the failed request and starts the token refresh process (if not already in progress).
- If the token refresh doesn't complete within the specified timeout, all requests are rejected with a timeout error.
- Once the token is refreshed, all queued requests are automatically retried with the new token.
- If token refresh fails, all queued requests are rejected with detailed error information.
Error Handling
The plugin now provides more detailed error information when token refresh fails:
- Token refresh timeouts
- Errors in the refresh token function
- Errors in the interceptor itself
All errors are properly propagated to your application through:
- The onStatusChange callback (with error details)
- The rejected promises of pending requests
Compatibility
This plugin is compatible with Axios v0.21.0 and above.
License
MIT