Retribusi/public/dashboard/js/auth.js

// public/dashboard/js/auth.js
// Handles login flow and auth helpers (JWT in localStorage)

import { apiLogin } from './api.js';

const TOKEN_KEY = 'token';
const USER_KEY = 'user';

export const Auth = {
  isAuthenticated() {
    return !!localStorage.getItem(TOKEN_KEY);
  },

  saveToken(token) {
    localStorage.setItem(TOKEN_KEY, token);
  },

  saveUser(user) {
    localStorage.setItem(USER_KEY, JSON.stringify(user || {}));
  },

  logout() {
    localStorage.removeItem(TOKEN_KEY);
    localStorage.removeItem(USER_KEY);
    sessionStorage.removeItem('auth_redirect_done');
    window.location.href = '../index.php';
  }
};

async function handleLoginSubmit(event) {
  event.preventDefault();

  const form = event.currentTarget;
  const usernameInput = form.querySelector('#username');
  const passwordInput = form.querySelector('#password');
  const errorBox = document.getElementById('login-error');
  const submitBtn = form.querySelector('button[type="submit"]');

  if (errorBox) {
    errorBox.classList.remove('visible');
    errorBox.textContent = '';
  }

  submitBtn.disabled = true;
  submitBtn.textContent = 'Masuk...';

  try {
    const username = usernameInput.value.trim();
    const password = passwordInput.value;

    const data = await apiLogin(username, password);
    const token = data.token;
    const user = data.user;

    if (!token) {
      throw new Error('Token tidak ditemukan dalam response login.');
    }

    Auth.saveToken(token);
    Auth.saveUser(user);

    window.location.href = 'dashboard.html';
  } catch (err) {
    console.error('Login failed', err);
    if (errorBox) {
      errorBox.textContent = err.message || 'Login gagal. Silakan coba lagi.';
      errorBox.classList.add('visible');
    }
  } finally {
    submitBtn.disabled = false;
    submitBtn.textContent = 'Login';
  }
}

// Attach events on login page only
document.addEventListener('DOMContentLoaded', () => {
  const form = document.getElementById('login-form');
  if (form) {
    // Cek apakah sudah authenticated dan belum di dashboard untuk menghindari redirect loop
    // Hanya redirect jika benar-benar di login page (bukan dashboard)
    const currentPath = window.location.pathname;
    const isLoginPage = currentPath.includes('index.php') || (currentPath.endsWith('/') && !currentPath.includes('dashboard'));
    const isDashboardPage = currentPath.includes('dashboard.html') || currentPath.includes('event.html') || currentPath.includes('settings.html');
    
    if (Auth.isAuthenticated() && isLoginPage && !isDashboardPage) {
      const redirectKey = 'auth_redirect_done';
      if (!sessionStorage.getItem(redirectKey)) {
        sessionStorage.setItem(redirectKey, '1');
        window.location.href = 'dashboard.html';
        return;
      }
    }
    form.addEventListener('submit', handleLoginSubmit);
  }
});
Initial commit: Retribusi frontend dengan dashboard, event logs, dan settings 2025-12-18 11:21:40 +07:00			`// public/dashboard/js/auth.js`
			`// Handles login flow and auth helpers (JWT in localStorage)`

			`import { apiLogin } from './api.js';`

			`const TOKEN_KEY = 'token';`
			`const USER_KEY = 'user';`

			`export const Auth = {`
			`isAuthenticated() {`
			`return !!localStorage.getItem(TOKEN_KEY);`
			`},`

			`saveToken(token) {`
			`localStorage.setItem(TOKEN_KEY, token);`
			`},`

			`saveUser(user) {`
			`localStorage.setItem(USER_KEY, JSON.stringify(user \|\| {}));`
			`},`

			`logout() {`
			`localStorage.removeItem(TOKEN_KEY);`
			`localStorage.removeItem(USER_KEY);`
Fix logout: clear sessionStorage redirect flag 2025-12-18 11:38:13 +07:00			`sessionStorage.removeItem('auth_redirect_done');`
Initial commit: Retribusi frontend dengan dashboard, event logs, dan settings 2025-12-18 11:21:40 +07:00			`window.location.href = '../index.php';`
			`}`
			`};`

			`async function handleLoginSubmit(event) {`
			`event.preventDefault();`

			`const form = event.currentTarget;`
			`const usernameInput = form.querySelector('#username');`
			`const passwordInput = form.querySelector('#password');`
			`const errorBox = document.getElementById('login-error');`
			`const submitBtn = form.querySelector('button[type="submit"]');`

			`if (errorBox) {`
			`errorBox.classList.remove('visible');`
			`errorBox.textContent = '';`
			`}`

			`submitBtn.disabled = true;`
			`submitBtn.textContent = 'Masuk...';`

			`try {`
			`const username = usernameInput.value.trim();`
			`const password = passwordInput.value;`

			`const data = await apiLogin(username, password);`
			`const token = data.token;`
			`const user = data.user;`

			`if (!token) {`
			`throw new Error('Token tidak ditemukan dalam response login.');`
			`}`

			`Auth.saveToken(token);`
			`Auth.saveUser(user);`

			`window.location.href = 'dashboard.html';`
			`} catch (err) {`
			`console.error('Login failed', err);`
			`if (errorBox) {`
			`errorBox.textContent = err.message \|\| 'Login gagal. Silakan coba lagi.';`
			`errorBox.classList.add('visible');`
			`}`
			`} finally {`
			`submitBtn.disabled = false;`
			`submitBtn.textContent = 'Login';`
			`}`
			`}`

			`// Attach events on login page only`
			`document.addEventListener('DOMContentLoaded', () => {`
			`const form = document.getElementById('login-form');`
			`if (form) {`
Fix ERR_TOO_MANY_REDIRECTS: hapus public/index.php dan tambah guard untuk prevent redirect loop 2025-12-18 11:34:20 +07:00			`// Cek apakah sudah authenticated dan belum di dashboard untuk menghindari redirect loop`
Fix redirect loop: tambah sessionStorage guard dan path check yang lebih ketat 2025-12-18 11:37:54 +07:00			`// Hanya redirect jika benar-benar di login page (bukan dashboard)`
Fix ERR_TOO_MANY_REDIRECTS: hapus public/index.php dan tambah guard untuk prevent redirect loop 2025-12-18 11:34:20 +07:00			`const currentPath = window.location.pathname;`
Fix redirect loop: tambah sessionStorage guard dan path check yang lebih ketat 2025-12-18 11:37:54 +07:00			`const isLoginPage = currentPath.includes('index.php') \|\| (currentPath.endsWith('/') && !currentPath.includes('dashboard'));`
			`const isDashboardPage = currentPath.includes('dashboard.html') \|\| currentPath.includes('event.html') \|\| currentPath.includes('settings.html');`

			`if (Auth.isAuthenticated() && isLoginPage && !isDashboardPage) {`
			`const redirectKey = 'auth_redirect_done';`
			`if (!sessionStorage.getItem(redirectKey)) {`
			`sessionStorage.setItem(redirectKey, '1');`
			`window.location.href = 'dashboard.html';`
			`return;`
			`}`
Initial commit: Retribusi frontend dengan dashboard, event logs, dan settings 2025-12-18 11:21:40 +07:00			`}`
			`form.addEventListener('submit', handleLoginSubmit);`
			`}`
			`});`