rohskiddo/UMBRA
1
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity

Fix login error vanishing: exclude auth endpoints from 401 interceptor

Browse Source 
The global axios 401 interceptor was firing window.location.href =
'/login' on every 401 response, including POST /auth/login with wrong
credentials. This caused a full page reload to /login, which remounted
the entire React tree and reset all LockScreen state (loginError,
username, password) before the user could see the error alert.

Fix: skip the redirect for /auth/* endpoints, which legitimately
return 401 for invalid credentials. The interceptor still redirects
to /login for expired sessions on protected API calls.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
Kyle 2026-02-28 01:43:18 +08:00
parent 5426657b2e
commit c4c06be148
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
frontend/src/lib/api.ts
View File

@ -13,7 +13,11 @@ api.interceptors.response.use(
(response) => response, (response) => response,
(error) => { (error) => {
if (error.response?.status === 401) { if (error.response?.status === 401) {
window.location.href = '/login'; const url = error.config?.url || '';
// Don't redirect on auth endpoints — they legitimately return 401
if (!url.startsWith('/auth/')) {
window.location.href = '/login';
}
} }
return Promise.reject(error); return Promise.reject(error);
} }