Replace unauthorized status with a redirect

common/spaces/http_space_primitives.ts

@@ -21,13 +21,13 @@ export class HttpSpacePrimitives implements SpacePrimitives {
       options.headers = { ...options.headers, ...{ "X-Sync-Mode": "true" } };
     }
 
-    const result = await fetch(url, { ...options });
+    const result = await fetch(url, {
-    if (
+      ...options,
-      this.getRealStatus(result) === 401
+    });
-    ) {
+    if (result.redirected) {
-      // Invalid credentials, reloading the browser should trigger authentication
+      // Got a redirect, we'll assume this is due to invalid credentials and redirecting to an auth page
-      console.log("Going to redirect after", url);
+      console.log("Got a redirect via the API so will redirect to URL", url);
-      location.href = "/.auth?refer=" + location.pathname;
+      location.href = result.url;
       throw new Error("Invalid credentials");
     }
     return result;

server/http_server.ts

@@ -218,8 +218,7 @@ export class HttpServer {
           }
           return;
         } else {
-          response.status = 401;
+          response.redirect("/.auth");
-          response.body = "Unauthorized";
           return;
         }
       } else {
@@ -232,8 +231,7 @@ export class HttpServer {
         if (!excludedPaths.includes(request.url.pathname)) {
           const authCookie = await cookies.get("auth");
           if (!authCookie) {
-            response.status = 401;
+            response.redirect("/.auth");
-            response.body = "Unauthorized, please authenticate";
             return;
           }
           const [username, hashedPassword] = authCookie.split(":");
@@ -243,8 +241,7 @@ export class HttpServer {
               hashedPassword,
             )
           ) {
-            response.status = 401;
+            response.redirect("/.auth");
-            response.body = "Invalid username/password, please reauthenticate";
             return;
           }
         }