fix(oauth): fix oauth to use correct subblock value setter + remove unused local storage code (#628)

* fix(oauth): fixed oauth state not persisting in credential selector * remove unused local storage code for oauth * fix lint * selector clearance issue fix * fix typing issue * fix lint * remove cred id from logs * fix lint * works --------- Co-authored-by: Vikhyath Mondreti <vikhyathmondreti@Vikhyaths-Air.attlocal.net>
2026-04-28 03:00:29 -04:00 · 2025-07-07 18:40:33 -07:00
parent b4eda8fe6a
commit 5cf7d025db
18 changed files with 405 additions and 329 deletions
--- a/apps/sim/app/api/auth/oauth/token/route.ts
+++ b/apps/sim/app/api/auth/oauth/token/route.ts
@@ -14,6 +14,8 @@ const logger = createLogger('OAuthTokenAPI')
 export async function POST(request: NextRequest) {
  const requestId = crypto.randomUUID().slice(0, 8)

+  logger.info(`[${requestId}] OAuth token API POST request received`)
+
  try {
    // Parse request body
    const body = await request.json()
@@ -38,6 +40,7 @@ export async function POST(request: NextRequest) {
    const credential = await getCredential(requestId, credentialId, userId)

    if (!credential) {
+      logger.error(`[${requestId}] Credential not found: ${credentialId}`)
      return NextResponse.json({ error: 'Credential not found' }, { status: 404 })
    }

@@ -45,7 +48,8 @@ export async function POST(request: NextRequest) {
      // Refresh the token if needed
      const { accessToken } = await refreshTokenIfNeeded(requestId, credential, credentialId)
      return NextResponse.json({ accessToken }, { status: 200 })
-    } catch (_error) {
+    } catch (error) {
+      logger.error(`[${requestId}] Failed to refresh access token:`, error)
      return NextResponse.json({ error: 'Failed to refresh access token' }, { status: 401 })
    }
  } catch (error) {
--- a/apps/sim/app/api/auth/oauth/utils.ts
+++ b/apps/sim/app/api/auth/oauth/utils.ts
@@ -89,6 +89,7 @@ export async function getOAuthToken(userId: string, providerId: string): Promise
  // Check if the token is expired and needs refreshing
  const now = new Date()
  const tokenExpiry = credential.accessTokenExpiresAt
+  // Only refresh if we have an expiration time AND it's expired AND we have a refresh token
  const needsRefresh = tokenExpiry && tokenExpiry < now && !!credential.refreshToken

  if (needsRefresh) {
@@ -166,7 +167,9 @@ export async function refreshAccessTokenIfNeeded(
  // Check if we need to refresh the token
  const expiresAt = credential.accessTokenExpiresAt
  const now = new Date()
-  const needsRefresh = !expiresAt || expiresAt <= now
+  // Only refresh if we have an expiration time AND it's expired
+  // If no expiration time is set (newly created credentials), assume token is valid
+  const needsRefresh = expiresAt && expiresAt <= now

  const accessToken = credential.accessToken

@@ -233,7 +236,9 @@ export async function refreshTokenIfNeeded(
  // Check if we need to refresh the token
  const expiresAt = credential.accessTokenExpiresAt
  const now = new Date()
-  const needsRefresh = !expiresAt || expiresAt <= now
+  // Only refresh if we have an expiration time AND it's expired
+  // If no expiration time is set (newly created credentials), assume token is valid
+  const needsRefresh = expiresAt && expiresAt <= now

  // If token is still valid, return it directly
  if (!needsRefresh || !credential.refreshToken) {