On 3/8/25 2:26 AM, Muhammad Rizki wrote:
> Hello,
> This series fixes relative path, fixes social fields, add delete avatar
> method, change sidebar menu look, change toast message position and
> use richColors.
> 
> Give it a test and let me know if there's any issue, thanks.

I tried to apply it on mail-staging.gnuweeb.org. And it makes the
current active session no longer works. It shows "500 Internal Error".

Checking on network tab, the header it sends is:

     Authorization: Bearer null

Local storage inspection:

JSON.stringify(localStorage)
'{"gwm_token":"null","gwm_token_exp_at":"1742402878","gwm_uinfo":"{\\"id\\":2,\\"full_name\\":\\"Ammar Faizi\\",\\"gender\\":\\"m\\",\\"username\\":\\"ammarfaizi2\\",\\"ext_email\\":\\"ammarfaizi2@gmail.com\\",\\"role\\":\\"admin\\",\\"is_active\\":\\"1\\",\\"socials\\":{\\"github_username\\":\\"ammarfaizi2\\",\\"telegram_username\\":\\"ammarfaizi2\\",\\"twitter_username\\":\\"ammarfaizi2\\",\\"discord_username\\":\\"ammarfaizi2\\"},\\"photo\\":\\"https://mail.gnuweeb.org/api.php?action=fetch_photo&f=5oGoBUc31xCxK%2FFoBUk4B8Nt9ZcZ3f%2B7dwfDIPPf9vYTyh2ziSDL%2Bt1ZJ3lmjnHlQBBsTkAMkQsEGZ2n9sEdnREmFgolrSfQImYLIzLmQ%2Bo%3D\\"}"}'

Take a look at the "gwm_token" here, it's set to "null" as a string.
That seems off. How do you determine if "gwm_token" is empty?

Testing in incognito mode works fine, but for active sessions, it
breaks and doesn't recover automatically. Instead, it continuously
throws a 500 Internal Server Error.

The only way to fix it is by manually clearing localStorage, which
is far from ideal.

The app should immediately log the user out upon receiving a
"401 Unauthorized" response.

-- 
Ammar Faizi