[PR #842] [MERGED] Fix unnecessary auth queries flooding console on login page #1789

New Issue

Closed

opened 2026-03-22 17:43:52 -05:00 by GiteaMirror · 0 comments

GiteaMirror commented 2026-03-22 17:43:52 -05:00

Owner

Copy Link

📋 Pull Request Information

Original PR: https://github.com/moghtech/komodo/pull/842
Author: @MP-Tool
Created: 9/12/2025
Status: ✅ Merged
Merged: 9/12/2025
Merged by: @mbecker20

Base: 1.19.4 ← Head: fix/unnecessary-auth-api-queries

---

📝 Commits (4)

• dfbf006 Refactor authentication error handling to use serror::Result and status codes
• e23d193 Enable user query only when JWT is present
• 07e0380 Enable query execution in useRead only if JWT is present
• 6855f3e Revert backend auth changes - keep PR focused on frontend only

📊 Changes

1 file changed (+7 additions, -0 deletions)

View changed files

📝 frontend/src/lib/hooks.ts (+7 -0)

📄 Description

Problem:

After implementing the improved HTTP status codes in the previous PR #841, I noticed that the frontend was still making unnecessary API calls when users weren't logged in. Every time someone visits the login page or any protected route without authentication, the frontend automatically tries to fetch user data and core info, resulting in a bunch of 400/401 errors flooding the browser console.

This isn't just annoying for developers - it also means we're hitting the backend with pointless requests that we know will fail. The main culprits were:

• useUser() hook fetching /auth/GetUser even without JWT tokens
• useRead() hook fetching /read/GetCoreInfo and other resources without authentication

Solution:

I've added authentication guards to the main query hooks to prevent these unnecessary API calls:

1. useUser Hook: Now checks if a JWT token exists before making the request
2. useRead Hook: Same deal - only fires when the user is actually authenticated

The fix uses React Query's enabled option to conditionally run queries:

enabled: hasJwt && (config?.enabled !== false)

This means:

• No more spam in the browser console when visiting the login page
• Fewer pointless requests to the backend
• Cleaner developer experience
• Everything still works perfectly when users are logged in

The changes are backward compatible and don't break any existing functionality - they just prevent queries from running when they're guaranteed to fail anyway.

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/moghtech/komodo/pull/842 **Author:** [@MP-Tool](https://github.com/MP-Tool) **Created:** 9/12/2025 **Status:** ✅ Merged **Merged:** 9/12/2025 **Merged by:** [@mbecker20](https://github.com/mbecker20) **Base:** `1.19.4` ← **Head:** `fix/unnecessary-auth-api-queries` --- ### 📝 Commits (4) - [`dfbf006`](https://github.com/moghtech/komodo/commit/dfbf00679ab3528a6afb917d5bfd178e7048d907) Refactor authentication error handling to use serror::Result and status codes - [`e23d193`](https://github.com/moghtech/komodo/commit/e23d1933023bae08f924fca8bc00ac56583f53c1) Enable user query only when JWT is present - [`07e0380`](https://github.com/moghtech/komodo/commit/07e03803880ba10fdd5ee522c5d533e484212252) Enable query execution in useRead only if JWT is present - [`6855f3e`](https://github.com/moghtech/komodo/commit/6855f3e4d6c76f5e50a703936c7487ac0b140bc5) Revert backend auth changes - keep PR focused on frontend only ### 📊 Changes **1 file changed** (+7 additions, -0 deletions) <details> <summary>View changed files</summary> 📝 `frontend/src/lib/hooks.ts` (+7 -0) </details> ### 📄 Description ## Problem: After implementing the improved HTTP status codes in the previous PR #841, I noticed that the frontend was still making unnecessary API calls when users weren't logged in. Every time someone visits the login page or any protected route without authentication, the frontend automatically tries to fetch user data and core info, resulting in a bunch of 400/401 errors flooding the browser console. This isn't just annoying for developers - it also means we're hitting the backend with pointless requests that we know will fail. The main culprits were: - `useUser()` hook fetching `/auth/GetUser` even without JWT tokens - `useRead()` hook fetching `/read/GetCoreInfo` and other resources without authentication ## Solution: I've added authentication guards to the main query hooks to prevent these unnecessary API calls: 1. **useUser Hook**: Now checks if a JWT token exists before making the request 2. **useRead Hook**: Same deal - only fires when the user is actually authenticated The fix uses React Query's `enabled` option to conditionally run queries: ```typescript enabled: hasJwt && (config?.enabled !== false) ``` This means: - No more spam in the browser console when visiting the login page - Fewer pointless requests to the backend - Cleaner developer experience - Everything still works perfectly when users are logged in The changes are backward compatible and don't break any existing functionality - they just prevent queries from running when they're guaranteed to fail anyway. --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

GiteaMirror added the pull-request label 2026-03-22 17:43:52 -05:00

GiteaMirror closed this issue 2026-03-22 17:43:52 -05:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

2.2.0

gh-pages-docs

legacy-v1-frontend

copilot/secure-local-authentication

v0

legacy

v2.1.2

v2.1.1

v2.1.0

v2.0.0

v2.0.0-dev-124

v2.0.0-dev-123

v2.0.0-dev-120

v2.0.0-dev-118

v2.0.0-dev-114

v2.0.0-dev-112

v2.0.0-dev-111

v2.0.0-dev-102

v2.0.0-dev-98

v2.0.0-dev-90

v2.0.0-dev-86

v2.0.0-dev-72

v2.0.0-dev-59

v2.0.0-dev-53

v2.0.0-dev-50

v2.0.0-dev-36

v1.19.5

v2.0.0-dev-35

v1.19.4

v1.19.3

v1.19.2

v1.19.1

v1.19.1-dev-14

v1.19.0

v1.19.0-dev-9

v1.18.4

1.18.5-dev-5

v1.18.3

v1.18.2

v1.18.1

v1.18.0

v1.17.5

v1.17.4

v1.17.3

v1.17.4-dev-1

v1.17.2

v1.17.2-dev-1

v1.17.1

v1.17.0

v1.17.0-dev-7

v1.17.0-dev-4

v1.17.0-dev-3

v1.17.0-dev-5

v1.17.0-dev-6

v1.17.0-dev-2

v1.17.0-dev-1

v1.16.12

v1.16.11

v1.16.10

v1.16.9

v1.16.8

v1.16.7

v1.16.6

v1.16.5

v1.16.4

v1.16.3

v1.16.2

v1.16.1

v1.16.0

v1.15.12

v1.15.11

v1.15.10

v1.15.9

v1.15.8

v1.15.7

v1.15.6

v1.15.5

v1.15.4

v1.15.3

v1.15.2

v1.15.1

v1.15.0

v1.14.2

v1.14.1

v1.14.0

v1.14.0-rc1

v1.13.4

v1.13.3

v1.13.2

v1.13.1

v1.13.0

v1.12.0

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.3

v1.7.0

v1.6.0

v1.5.0

v1.4.0

v1.2.0

v1.1.0

v1.0.0

v0.3.4

v0.3.3

v0.3.2

v0.3.0

v0.2.14

v0.2.13

v0.2.12

v0.2.11

v0.2.10

v0.2.9

v0.2.7

v0.2.6

v0.2.5

v0.2.4

v0.2.1

v0.2.0

v0.1.17

v0.1.16

v0.1.15

v0.1.11

v0.1.10

v0.1.9

Labels

Clear labels

1.19.0

1.19.1

1.19.2

1.19.3

1.19.4

2.0.0

bug

documentation

done

enhancement

help wanted

info

pull-request

Mirrored from GitHub Pull Request

question

security

seen 👀

setup

thinking 🤔

ui

v2

No Label pull-request

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/komodo#1789