리다이렉트 책임 단일화 및 인증 흐름 추적 로그 추가

2026-02-19 13:49:35 +09:00
parent 43a4909ddf
commit b43ace8b2d
3 changed files with 168 additions and 137 deletions
--- a/userfront/lib/core/services/auth_proxy_service.dart
+++ b/userfront/lib/core/services/auth_proxy_service.dart
@@ -287,18 +287,26 @@ class AuthProxyService {
    final url = Uri.parse(
      '$_baseUrl/api/v1/auth/consent',
    ).replace(queryParameters: {'consent_challenge': consentChallenge});
-    final response = await http.get(
-      url,
-      headers: {'Content-Type': 'application/json'},
-    );
-
-    if (response.statusCode == 200) {
-      return jsonDecode(response.body);
-    } else {
-      final errorBody = jsonDecode(response.body);
-      throw Exception(
-        errorBody['error'] ?? tr('err.userfront.auth_proxy.consent_fetch'),
+    final client = createHttpClient(withCredentials: true);
+    try {
+      final response = await client.get(
+        url,
+        headers: {'Content-Type': 'application/json'},
      );
+
+      if (response.statusCode == 200) {
+        return jsonDecode(response.body);
+      } else {
+        final errorBody = jsonDecode(response.body);
+        throw Exception(
+          errorBody['error'] ??
+              tr(
+                'err.userfront.auth_proxy.consent_fetch',
+              ),
+        );
+      }
+    } finally {
+      client.close();
    }
  }

@@ -312,19 +320,27 @@ class AuthProxyService {
      body['grant_scope'] = grantScope;
    }

-    final response = await http.post(
-      url,
-      headers: {'Content-Type': 'application/json'},
-      body: jsonEncode(body),
-    );
-
-    if (response.statusCode == 200) {
-      return jsonDecode(response.body);
-    } else {
-      final errorBody = jsonDecode(response.body);
-      throw Exception(
-        errorBody['error'] ?? tr('err.userfront.auth_proxy.consent_accept'),
+    final client = createHttpClient(withCredentials: true);
+    try {
+      final response = await client.post(
+        url,
+        headers: {'Content-Type': 'application/json'},
+        body: jsonEncode(body),
      );
+
+      if (response.statusCode == 200) {
+        return jsonDecode(response.body);
+      } else {
+        final errorBody = jsonDecode(response.body);
+        throw Exception(
+          errorBody['error'] ??
+              tr(
+                'err.userfront.auth_proxy.consent_accept',
+              ),
+        );
+      }
+    } finally {
+      client.close();
    }
  }

@@ -334,19 +350,27 @@ class AuthProxyService {
    final url = Uri.parse('$_baseUrl/api/v1/auth/consent/reject');
    final body = <String, dynamic>{'consent_challenge': consentChallenge};

-    final response = await http.post(
-      url,
-      headers: {'Content-Type': 'application/json'},
-      body: jsonEncode(body),
-    );
-
-    if (response.statusCode == 200) {
-      return jsonDecode(response.body);
-    } else {
-      final errorBody = jsonDecode(response.body);
-      throw Exception(
-        errorBody['error'] ?? tr('err.userfront.auth_proxy.consent_reject'),
+    final client = createHttpClient(withCredentials: true);
+    try {
+      final response = await client.post(
+        url,
+        headers: {'Content-Type': 'application/json'},
+        body: jsonEncode(body),
      );
+
+      if (response.statusCode == 200) {
+        return jsonDecode(response.body);
+      } else {
+        final errorBody = jsonDecode(response.body);
+        throw Exception(
+          errorBody['error'] ??
+              tr(
+                'err.userfront.auth_proxy.consent_reject',
+              ),
+        );
+      }
+    } finally {
+      client.close();
    }
  }