Skip to content

Instantly share code, notes, and snippets.

@tanthammar

tanthammar/session-timeout-alert-after-livewire-scripts.blade.php

Last active November 23, 2023 11:50
Show Gist options
  • Save tanthammar/02c615e73022c44dda6533ed9416ac29 to your computer and use it in GitHub Desktop.
Save tanthammar/02c615e73022c44dda6533ed9416ac29 to your computer and use it in GitHub Desktop.
Download ZIP
Laravel Livewire Turbolinks Blade component to keep session alive
Raw
session-timeout-alert-after-livewire-scripts.blade.php
{{-- You do not need to add this component if you are using the permanent option in the head component --}}
<script>
if (!window.sessionTimerPermanent) {
if (window.Turbolinks && window.Livewire) {
document.addEventListener('turbolinks:load', () => {
window.livewire.hook('afterDomUpdate', startSessionTimer)
}, {once: true})
}
if (!window.Turbolinks && window.Livewire) {
window.livewire.hook('afterDomUpdate', startSessionTimer)
}
}
</script>
Raw
session-timeout-alert-head.blade.php
@props([ 'permanent' => false, 'expiresIn' => 10 ])
@php
$session = config('session.lifetime');
@endphp
<script>
let sessionTimer = null
function clearTimer() {
clearTimeout(sessionTimer)
sessionTimer = null
}
function handleSessionWarning() {
alert('Your session will expire in {{ $expiresIn }} minutes, due to inactivity! Click OK to avoid being logged out.')
{{-- checkAuth() // runs automatically on window.focus after clicking the alert. Uncomment if you want to handleSessionWarning in a different way. --}}
}
function startSessionTimer() {
clearTimer()
sessionTimer = setTimeout(handleSessionWarning, 1000 * 60 * {{ $session - $expiresIn }})
}
function checkAuth() {
if (document.hasFocus()) { //remove this if you want to keep the session alive even if the window is out of focus
// console.info('fetching')
fetch('/check-auth')
.then(response => response.text())
.then(auth => {
if (auth !== 'true') {
window.location.href = "{{ route('login') }}"
}
@if(!$permanent)
startSessionTimer()
@endif
})
}
}
@if($permanent)
window.sessionTimerPermanent = true
setInterval(checkAuth, 1000 * 60 * {{ $session - 2 }})
@else
window.sessionTimerPermanent = false
if (window.Turbolinks) {
document.addEventListener('turbolinks:load', startSessionTimer)
}
@endif
window.addEventListener('focus', checkAuth)
</script>
Raw
web.php
Route::get('check-auth', fn () => response(auth()->check() ? 'true' : 'false'))->middleware('auth');
@tanthammar
Copy link
Author

tanthammar commented Jun 20, 2020
edited
Loading

  1. Option to keep session alive permanently. (has been tested with sleeping computer, macosx)
  2. Resets on Turbolinks and Livewire loaded events
  3. Alerts the User 10 minutes before session is ending
  4. Does not poll the server if the window is not in focus, (can be changed)
  5. If the window has been out of focus it checks if the session is active, else redirects to login
  6. Redirects to login if the session has expired.
  7. Uses config('session.lifetime') for the session timer
  8. You can use it without Turbolinks and Livewire

Use

In the head

<x-session-timeout-alert-head :permanent="false" :expiresIn="10" />
</head>

After livewire scripts, not needed if permanent=true, or the page doesn't use Turbolinks/Livewire

@livewireScripts
<x-session-timeout-alert-after-livewire-scripts />
</body>

@tanthammar
Copy link
Author

tanthammar commented Aug 21, 2020
edited
Loading

UPDATE: Livewire v1.3.1 has error handling.

If you do not wish to use the timer and simply want to redirect the user to the login page you can ignore all the code above and instead add this to your main layout.

     window.livewire.onError(statusCode => {
        if (statusCode === 419) {
            window.location.href = "{{ route('login') }}"
        }
     })

Source ->

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment