Redirect to reset_app after singin in native apps

Author: AliOsm

app/components/menu.rb

@@ -22,13 +22,34 @@ def view_template
 
       if hotwire_native_app? || (@controller_name == "pages" && @action_name == "show")
         if user_signed_in?
-          menu_link(path: destroy_user_session_path, text: t("navbar.sign_out"), icon: Hero::ArrowLeftStartOnRectangle.new(variant: :outline, class: "size-5 ltr:transform ltr:-scale-x-100"))
-          Separator(class: "my-2")
+          Link(
+            variant: :link,
+            href: destroy_user_session_path,
+            class: "flex items-center justify-start gap-x-2 text-xl text-muted-foreground",
+            data: {
+              controller: "bridge--sign-out",
+              bridge__sign_out_path_value: api_v1_auth_path,
+              action: [
+                ("click->ruby-ui--sheet-content#close" if hotwire_native_app?),
+                "bridge--sign-out#signOut"
+              ],
+              turbo_method: :delete
+            }
+          ) do
+            Hero::ArrowLeftStartOnRectangle(variant: :outline, class: "size-5 ltr:transform ltr:-scale-x-100")
+
+            plain t("navbar.sign_out")
+          end
         else
-          menu_link(path: new_user_session_path, text: t("navbar.sign_in"), icon: Hero::ArrowLeftStartOnRectangle.new(variant: :outline, class: "size-5 ltr:transform ltr:-scale-x-100"))
-          Separator(class: "my-2")
+          menu_link(
+            path: new_user_session_path,
+            text: t("navbar.sign_in"),
+            icon: Hero::ArrowLeftOnRectangle.new(variant: :outline, class: "size-5 ltr:transform ltr:-scale-x-100"),
+          )
         end
 
+        Separator(class: "my-2")
+
         if hotwire_native_app?
           menu_link(
             path: new_contact_path,

app/controllers/api/v1/auths_controller.rb

@@ -0,0 +1,9 @@
+class Api::V1::AuthsController < ApplicationController
+  skip_before_action :verify_authenticity_token, only: [ :destroy ]
+
+  def destroy
+    sign_out(current_user)
+
+    render json: {}
+  end
+end

app/controllers/application_controller.rb

@@ -5,11 +5,21 @@ class ApplicationController < ActionController::Base
   # Only allow browsers supporting TailwindCSS v4.
   allow_browser versions: { chrome: 111, safari: 16.4, firefox: 128 }, block: :handle_outdated_browser
 
+  before_action if: -> { devise_controller? && hotwire_native_app? } do
+    request.env["warden"].params["hotwire_native_form"] = true
+  end
+
   before_action :check_rack_mini_profiler
   before_action { Rails.error.set_context(request_url: request.original_url, params: params, session: session.inspect) }
 
   private
 
+  def after_sign_in_path_for(resource_or_scope)
+    return "/reset_app" if hotwire_native_app?
+
+    super
+  end
+
   def check_rack_mini_profiler
     Rack::MiniProfiler.authorize_request if current_user&.admin?
   end

app/controllers/hotwire/ios/path_configurations_controller.rb

@@ -0,0 +1,63 @@
+class Hotwire::Ios::PathConfigurationsController < ApplicationController
+  def show
+    render json: {
+      settings: {
+        register_with_account: false,
+        require_authentication: false,
+        tabs: [
+          {
+            title: "الرئيسية",
+            path: "/",
+            ios_system_image_name: "house"
+          },
+          {
+            title: "التصنيفات",
+            path: "/categories",
+            ios_system_image_name: "square.grid.2x2"
+          },
+          {
+            title: "المؤلفون",
+            path: "/authors",
+            ios_system_image_name: "person.3"
+          },
+          {
+            title: "الكتب",
+            path: "/books",
+            ios_system_image_name: "books.vertical"
+          }
+        ]
+      },
+      rules: [
+        {
+          patterns: [
+            "/new$",
+            "/edit$",
+            "/users/sign_up",
+            "/users/sign_in"
+          ],
+          properties: {
+            context: "modal"
+          }
+        },
+        {
+          patterns: [ "^/unauthorized" ],
+          properties: {
+            view_controller: "unauthorized"
+          }
+        },
+        {
+          patterns: [ "^/reset_app$" ],
+          properties: {
+            view_controller: "reset_app"
+          }
+        },
+        {
+          patterns: [ "/?sign_in_token=.*" ],
+          properties: {
+            presentation: "replace"
+          }
+        }
+      ]
+    }
+  end
+end

app/controllers/native/sessions_controller.rb

@@ -8,6 +8,6 @@ def handoff
 
     sign_in(user)
 
-    redirect_to after_sign_in_path_for(user)
+    redirect_to "/reset_app"
   end
 end

app/controllers/site_controller.rb

@@ -0,0 +1,8 @@
+class SiteController < ApplicationController
+  def reset_app
+    # Hotwire Native needs an empty page to route authentication and reset the app.
+    # We can't head: 200 because we also need the Turbo JavaScript in <head>.
+
+    render Views::Site::ResetApp.new
+  end
+end

app/controllers/static_controller.rb

@@ -1,4 +1,6 @@
 class StaticController < ApplicationController
+  include Devise::Controllers::Rememberable
+
   CATEGORY_IDS = {
     faith: [ 24, 34, 35, 36, 37, 38, 39, 40, 54 ],
     quran: [ 1, 17, 20, 21, 22, 88, 101 ],
@@ -10,6 +12,15 @@ class StaticController < ApplicationController
   }
 
   def home
+    if params[:sign_in_token].present?
+      user = User.find_signed(params[:sign_in_token], purpose: "native_handoff")
+
+      if user.present?
+        sign_in(user)
+        remember_me(user)
+      end
+    end
+
     results = search
 
     if results.present? && params[:qid].blank? && request.headers["X-Sec-Purpose"] != "prefetch"

app/controllers/users/omniauth_callbacks_controller.rb

@@ -1,5 +1,7 @@
 module Users
   class OmniauthCallbacksController < Devise::OmniauthCallbacksController
+    include Devise::Controllers::Rememberable
+
     def google_oauth2 = process_oauth_callback("Google")
 
     private
@@ -16,13 +18,15 @@ def process_oauth_callback(provider)
 
     def handle_successful_authentication(user, provider)
       sign_out_all_scopes
-      sign_in(user)
 
       if native_oauth_request?
-        token = user.signed_id(purpose: "native_handoff", expires_in: 5.minutes)
+        token = user.signed_id(purpose: "native_handoff", expires_in: 30.seconds)
 
-        redirect_to handoff_native_session_url(token:)
+        redirect_to root_path(sign_in_token: token, locale: nil)
       else
+        sign_in(user)
+        remember_me(user)
+
         flash[:notice] = t("devise.omniauth_callbacks.success", kind: provider) if is_navigational_format?
 
         redirect_to after_sign_in_path_for(user)

app/javascript/controllers/bridge/sign_out_controller.js

@@ -0,0 +1,18 @@
+import { BridgeComponent } from "@hotwired/hotwire-native-bridge"
+
+// Connects to data-controller="bridge--sign-out"
+export default class extends BridgeComponent {
+  static component = "sign-out"
+
+  static values = {
+    path: String,
+  }
+
+  signOut(event) {
+    event.preventDefault()
+    event.stopImmediatePropagation()
+
+    const path = this.pathValue
+    this.send("signOut", { path }, () => {})
+  }
+}

app/javascript/controllers/index.js

@@ -19,6 +19,9 @@ application.register("bridge--menu-button", Bridge__MenuButtonController)
 import Bridge__ShareController from "./bridge/share_controller"
 application.register("bridge--share", Bridge__ShareController)
 
+import Bridge__SignOutController from "./bridge/sign_out_controller"
+application.register("bridge--sign-out", Bridge__SignOutController)
+
 import Bridge__ThemeController from "./bridge/theme_controller"
 application.register("bridge--theme", Bridge__ThemeController)