Authentication
Most of the applications we had the chance to work on required some sort of authentication and having a bad approach to do it can lead to a lot of problems. The starter kit comes with the basics and mostly what you need to start with authentication in your application.
As Authentication is global to the application, we end up using Zustand to manage the authentication state of the application.
Zustand is a state management library that is very simple to use and highly performant. It is also easy to integrate with React and works better than a simple context API, as it offers additional features such as selectors to prevent unnecessary re-renders.
Zustand works very well with TypeScript and can be easily used outside the React tree, which means more flexibility.
Authentication Store
As mentioned earlier, we use Zustand to manage the authentication state of the application. The authentication store is located in src/store/auth and is utilized for managing the authentication state of the application.
import { create } from 'zustand';
import { createSelectors } from '../utils';import type { TokenType } from './utils';import { getToken, removeToken, setToken } from './utils';
interface AuthState { token: TokenType | null; status: 'idle' | 'signOut' | 'signIn'; signIn: (data: TokenType) => void; signOut: () => void; hydrate: () => void;}
const _useAuth = create<AuthState>((set, get) => ({ status: 'idle', token: null, signIn: (token) => { setToken(token); set({ status: 'signIn', token }); }, signOut: () => { removeToken(); set({ status: 'signOut', token: null }); }, hydrate: () => { try { const userToken = getToken(); if (userToken !== null) { get().signIn(userToken); } else { get().signOut(); } } catch (e) { // catch error here // Maybe sign_out user! } },}));
export const useAuth = createSelectors(_useAuth);
export const signOut = () => _useAuth.getState().signOut();export const signIn = (token: TokenType) => _useAuth.getState().signIn(token);export const hydrateAuth = () => _useAuth.getState().hydrate();The store is composed of 2 states and 3 actions:
-
status: The status of the authentication. It can beidle,signOutorsignIn.idle: Still not sure if the user is authenticated or not (when we are fetching tokens from the storage)signOut: The user is not authenticatedsignIn: The user is authenticated
-
useToken: The token of the user. It is used to authenticate the user to the API. It is stored in the storage of the device and we use it to hydrate the authentication status state when the application is started.For the Demo app
useTokenis a simple object that contains theaccessTokenand therefreshToken. You can add more fields if you update theTokenTypetype insrc/core/auth/utils.ts. -
signIn: TThe function performs user sign-in. It accepts a token as a parameter, sets the token state, stores it locally, and updates the status tosignIn. -
signOut: The action to sign out the user. It sets the token state tonulland removes it from the storage as well as setting the status tosignOut. -
hydrate: The action to hydrate the authentication status state. We call this action when the application is started to check if the user is authenticated or not. It fetches the token from the storage and sets the status tosignInif the token is notnullorsignOutif the token isnull.
Use Authentication store
You guessed it, you only need to import the store from @/core and use it in your component or even call store actions from outside React.
import { useAuth, hydrate } from '@/core';
hydrate(); // call this when the application is started to check if the user is authenticated or not
const App = () => { const status = useAuth.use.status(); const signOut = useAuth.use.signOut();
return ( <View> <Text>{status}</Text> <Button title="Sign Out" onPress={signOut} /> </View> );};Use Case
Let’s imagine we have a simple application that has a login navigator and a home navigator. The home navigator is only accessible if the user is authenticated, while the login navigator is accessible if the user is not authenticated.
In this case, you only need to retrieve the status from the authentication store and display the appropriate navigation based on the status.
/* eslint-disable react/no-unstable-nested-components */import { Link, Redirect, SplashScreen, Tabs } from 'expo-router';import React, { useCallback, useEffect } from 'react';
import { useAuth, useIsFirstTime } from '@/core';import { Pressable, Text } from '@/ui';import { Feed as FeedIcon, Settings as SettingsIcon, Style as StyleIcon,} from '@/ui/icons';
export default function TabLayout() { const status = useAuth.use.status(); const [isFirstTime] = useIsFirstTime(); const hideSplash = useCallback(async () => { await SplashScreen.hideAsync(); }, []); useEffect(() => { if (status !== 'idle') { setTimeout(() => { hideSplash(); }, 1000); } }, [hideSplash, status]);
if (isFirstTime) { return <Redirect href="/onboarding" />; } if (status === 'signOut') { return <Redirect href="/login" />; } return ( <Tabs> <Tabs.Screen name="index" options={{ title: 'Feed', tabBarIcon: ({ color }) => <FeedIcon color={color} />, headerRight: () => <CreateNewPostLink />, tabBarTestID: 'feed-tab', }} />
<Tabs.Screen name="style" options={{ title: 'Style', headerShown: false, tabBarIcon: ({ color }) => <StyleIcon color={color} />, tabBarTestID: 'style-tab', }} /> <Tabs.Screen name="settings" options={{ title: 'Settings', headerShown: false, tabBarIcon: ({ color }) => <SettingsIcon color={color} />, tabBarTestID: 'settings-tab', }} /> </Tabs> );}
const CreateNewPostLink = () => { return ( <Link href="/feed/add-post" asChild> <Pressable> <Text className="px-3 text-primary-300">Create</Text> </Pressable> </Link> );};