feat: add user synchronization with authentication token data

atyrode · atyrode · commit d9620cc3457d · 2025-05-02T20:40:03.000Z
- Implemented a new method in UserService to synchronize user data with information from the authentication token, creating or updating the user as necessary.
- Updated the user router to utilize this new synchronization method, enhancing user data management and ensuring consistency between the database and authentication token data.
diff --git a/src/backend/database/service/user_service.py b/src/backend/database/service/user_service.py
@@ -97,3 +97,61 @@ async def update_user(self, user_id: UUID, data: Dict[str, Any]) -> Optional[Dic
     async def delete_user(self, user_id: UUID) -> bool:
         """Delete a user"""
         return await self.repository.delete(user_id)
+    
+    async def sync_user_with_token_data(self, user_id: UUID, token_data: Dict[str, Any]) -> Optional[Dict[str, Any]]:
+        """
+        Synchronize user data in the database with data from the authentication token.
+        If the user doesn't exist, it will be created. If it exists but has different data,
+        it will be updated to match the token data.
+        
+        Args:
+            user_id: The user's UUID
+            token_data: Dictionary containing user data from the authentication token
+            
+        Returns:
+            The user data dictionary or None if operation failed
+        """
+        # Check if user exists
+        user_data = await self.get_user(user_id)
+        
+        # If user doesn't exist, create a new one
+        if not user_data:
+            try:
+                return await self.create_user(
+                    user_id=user_id,
+                    username=token_data.get("username", ""),
+                    email=token_data.get("email", ""),
+                    email_verified=token_data.get("email_verified", False),
+                    name=token_data.get("name"),
+                    given_name=token_data.get("given_name"),
+                    family_name=token_data.get("family_name"),
+                    roles=token_data.get("roles", [])
+                )
+            except ValueError as e:
+                # Handle case where user might have been created in a race condition
+                if "already exists" in str(e):
+                    user_data = await self.get_user(user_id)
+                else:
+                    raise e
+        
+        # Check if user data needs to be updated
+        update_data = {}
+        fields_to_check = [
+            "username", "email", "email_verified", 
+            "name", "given_name", "family_name"
+        ]
+        
+        for field in fields_to_check:
+            token_value = token_data.get(field)
+            if token_value is not None and user_data.get(field) != token_value:
+                update_data[field] = token_value
+        
+        # Handle roles separately as they might have a different structure
+        if "roles" in token_data and user_data.get("roles") != token_data["roles"]:
+            update_data["roles"] = token_data["roles"]
+        
+        # Update user if any field has changed
+        if update_data:
+            return await self.update_user(user_id, update_data)
+        
+        return user_data
diff --git a/src/backend/routers/user_router.py b/src/backend/routers/user_router.py
@@ -57,34 +57,34 @@ async def get_user_info(
     user: UserSession = Depends(require_auth),
     user_service: UserService = Depends(get_user_service),
 ):
-    """Get the current user's information"""
-
-    user_data = await user.get_user_data(user_service)
-
-    if not user_data:
-        try:
-            user = await user_service.create_user(
-                user_id=user.id,
-                username=user.username,
-                email=user.email,
-                email_verified=user.email_verified,
-                name=user.name,
-                given_name=user.given_name,
-                family_name=user.family_name,
-                roles=user.roles,
-            )
-        except Exception as e:
-            raise HTTPException(
-                status_code=500,
-                detail=f"Error creating user: {e}"
-            )
-        
+    """Get the current user's information and sync with token data"""
+    
+    # Create token data dictionary from UserSession properties
+    token_data = {
+        "username": user.username,
+        "email": user.email,
+        "email_verified": user.email_verified,
+        "name": user.name,
+        "given_name": user.given_name,
+        "family_name": user.family_name,
+        "roles": user.roles
+    }
+    
+    try:
+        # Sync user with token data
+        user_data = await user_service.sync_user_with_token_data(user.id, token_data)
+    except Exception as e:
+        raise HTTPException(
+            status_code=500,
+            detail=f"Error syncing user data: {e}"
+        )
+    
     if os.getenv("VITE_PUBLIC_POSTHOG_KEY"):
         telemetry = user_data.copy()
         telemetry["$current_url"] = FRONTEND_URL
         posthog.identify(distinct_id=user_data["id"], properties=telemetry)
-        
-    return user
+    
+    return user_data
 
 
 @user_router.get("/count")
