feat(auth): Implement session expiration handling and improved login flow

This commit introduces a mechanism to detect and handle expired GitHub sessions and enhances the device authentication UI with countdown timers and better error categorization.

- **feat(auth)**: Added `SessionExpiredDialog` to notify users when their session is invalid or revoked.
- **feat(auth)**: Integrated `UnauthorizedInterceptor` (401 handler) into the Ktor `HttpClient` to automatically trigger session expiration events.
- **feat(auth)**: Added a countdown timer to the device login screen to show remaining time for code verification.
- **feat(auth)**: Introduced `SkipLogin` (Continue as Guest) option to the authentication flow.
- **feat(auth)**: Improved error handling in `AuthenticationViewModel` with specific recovery hints (e.g., connection issues, denied access).
- **refactor(core)**: Updated `AuthenticationState` and `TokenStore` to manage session expiration events and token lifecycle (including `saved_at` timestamp).
- **refactor(cache)**: Added `clearAll()` to `CacheManager` to ensure all local data is purged upon logout or session expiration.
- **i18n**: Added string resources for session expiration, auth hints, and logout notes.
- **chore**: Updated `LogoutDialog` to include a note about revoking access via GitHub settings.

Author: rainxchzed

composeApp/src/commonMain/kotlin/zed/rainxch/githubstore/Main.kt

@@ -16,6 +16,7 @@ import zed.rainxch.githubstore.app.deeplink.DeepLinkParser
 import zed.rainxch.githubstore.app.navigation.AppNavigation
 import zed.rainxch.githubstore.app.navigation.GithubStoreGraph
 import zed.rainxch.githubstore.app.components.RateLimitDialog
+import zed.rainxch.githubstore.app.components.SessionExpiredDialog
 
 @OptIn(ExperimentalMaterial3ExpressiveApi::class)
 @Composable
@@ -70,6 +71,18 @@ fun App(deepLinkUri: String? = null) {
             }
         }
 
+        if (state.showSessionExpiredDialog) {
+            SessionExpiredDialog(
+                onDismiss = {
+                    viewModel.onAction(MainAction.DismissSessionExpiredDialog)
+                },
+                onSignIn = {
+                    viewModel.onAction(MainAction.DismissSessionExpiredDialog)
+                    navBackStack.navigate(GithubStoreGraph.AuthenticationScreen)
+                }
+            )
+        }
+
         AppNavigation(
             navController = navBackStack
         )

composeApp/src/commonMain/kotlin/zed/rainxch/githubstore/MainAction.kt

@@ -2,4 +2,5 @@ package zed.rainxch.githubstore
 
 sealed interface MainAction {
     data object DismissRateLimitDialog : MainAction
+    data object DismissSessionExpiredDialog : MainAction
 }

composeApp/src/commonMain/kotlin/zed/rainxch/githubstore/MainState.kt

@@ -8,6 +8,7 @@ data class MainState(
     val isLoggedIn: Boolean = false,
     val rateLimitInfo: RateLimitInfo? = null,
     val showRateLimitDialog: Boolean = false,
+    val showSessionExpiredDialog: Boolean = false,
     val currentColorTheme: AppTheme = AppTheme.OCEAN,
     val isAmoledTheme: Boolean = false,
     val isDarkTheme: Boolean? = null,

composeApp/src/commonMain/kotlin/zed/rainxch/githubstore/MainViewModel.kt

@@ -89,6 +89,12 @@ class MainViewModel(
             }
         }
 
+        viewModelScope.launch {
+            authenticationState.sessionExpiredEvent.collect {
+                _state.update { it.copy(showSessionExpiredDialog = true) }
+            }
+        }
+
         viewModelScope.launch(Dispatchers.IO) {
             syncUseCase().onSuccess {
                 installedAppsRepository.checkAllForUpdates()
@@ -101,6 +107,9 @@ class MainViewModel(
             MainAction.DismissRateLimitDialog -> {
                 _state.update { it.copy(showRateLimitDialog = false) }
             }
+            MainAction.DismissSessionExpiredDialog -> {
+                _state.update { it.copy(showSessionExpiredDialog = false) }
+            }
         }
     }
 }

composeApp/src/commonMain/kotlin/zed/rainxch/githubstore/app/components/SessionExpiredDialog.kt

@@ -0,0 +1,77 @@
+package zed.rainxch.githubstore.app.components
+
+import androidx.compose.foundation.layout.Arrangement
+import androidx.compose.foundation.layout.Column
+import androidx.compose.material.icons.Icons
+import androidx.compose.material.icons.filled.LockOpen
+import androidx.compose.material3.AlertDialog
+import androidx.compose.material3.Button
+import androidx.compose.material3.Icon
+import androidx.compose.material3.MaterialTheme
+import androidx.compose.material3.Text
+import androidx.compose.material3.TextButton
+import androidx.compose.runtime.Composable
+import androidx.compose.ui.text.font.FontWeight
+import androidx.compose.ui.unit.dp
+import org.jetbrains.compose.resources.stringResource
+import zed.rainxch.githubstore.core.presentation.res.*
+
+@Composable
+fun SessionExpiredDialog(
+    onDismiss: () -> Unit,
+    onSignIn: () -> Unit
+) {
+    AlertDialog(
+        onDismissRequest = onDismiss,
+        icon = {
+            Icon(
+                imageVector = Icons.Default.LockOpen,
+                contentDescription = null,
+                tint = MaterialTheme.colorScheme.error
+            )
+        },
+        title = {
+            Text(
+                text = stringResource(Res.string.session_expired_title),
+                style = MaterialTheme.typography.headlineSmall,
+                fontWeight = FontWeight.Black,
+                color = MaterialTheme.colorScheme.onSurface
+            )
+        },
+        text = {
+            Column(
+                verticalArrangement = Arrangement.spacedBy(8.dp)
+            ) {
+                Text(
+                    text = stringResource(Res.string.session_expired_message),
+                    style = MaterialTheme.typography.bodyMedium,
+                    color = MaterialTheme.colorScheme.outline
+                )
+
+                Text(
+                    text = stringResource(Res.string.session_expired_hint),
+                    style = MaterialTheme.typography.bodySmall,
+                    color = MaterialTheme.colorScheme.primary
+                )
+            }
+        },
+        confirmButton = {
+            Button(onClick = onSignIn) {
+                Text(
+                    text = stringResource(Res.string.sign_in_again),
+                    style = MaterialTheme.typography.bodySmall,
+                    color = MaterialTheme.colorScheme.onPrimary
+                )
+            }
+        },
+        dismissButton = {
+            TextButton(onClick = onDismiss) {
+                Text(
+                    text = stringResource(Res.string.continue_as_guest),
+                    style = MaterialTheme.typography.bodySmall,
+                    color = MaterialTheme.colorScheme.onSurface
+                )
+            }
+        }
+    )
+}

core/data/src/commonMain/kotlin/zed/rainxch/core/data/cache/CacheManager.kt

@@ -85,6 +85,11 @@ class CacheManager(
         cacheDao.deleteByPrefix(prefix)
     }
 
+    suspend fun clearAll() {
+        memoryCache.clear()
+        cacheDao.deleteAll()
+    }
+
     suspend fun cleanupExpired() {
         val currentTime = now()
         val expiredKeys = memoryCache.entries

core/data/src/commonMain/kotlin/zed/rainxch/core/data/data_source/TokenStore.kt

@@ -9,4 +9,5 @@ interface TokenStore {
     fun blockingCurrentToken() : GithubDeviceTokenSuccessDto?
     suspend fun save(token: GithubDeviceTokenSuccessDto)
     suspend fun clear()
+    suspend fun isTokenExpired(): Boolean
 }

core/data/src/commonMain/kotlin/zed/rainxch/core/data/data_source/impl/DefaultTokenStore.kt

@@ -19,7 +19,10 @@ class DefaultTokenStore(
     private val json = Json { ignoreUnknownKeys = true }
 
     override suspend fun save(token: GithubDeviceTokenSuccessDto) {
-        val jsonString = json.encodeToString(GithubDeviceTokenSuccessDto.serializer(), token)
+        val stamped = token.copy(
+            savedAtEpochMillis = token.savedAtEpochMillis ?: System.currentTimeMillis()
+        )
+        val jsonString = json.encodeToString(GithubDeviceTokenSuccessDto.serializer(), stamped)
         dataStore.edit { preferences ->
             preferences[TOKEN_KEY] = jsonString
         }
@@ -50,8 +53,15 @@ class DefaultTokenStore(
         }.getOrNull()
     }
 
-
     override suspend fun clear() {
         dataStore.edit { it.remove(TOKEN_KEY) }
     }
+
+    override suspend fun isTokenExpired(): Boolean {
+        val token = currentToken() ?: return true
+        val savedAt = token.savedAtEpochMillis ?: return false
+        val expiresIn = token.expiresIn ?: return false
+        val expiresAtMillis = savedAt + (expiresIn * 1000L)
+        return System.currentTimeMillis() > expiresAtMillis
+    }
 }

core/data/src/commonMain/kotlin/zed/rainxch/core/data/di/SharedModule.kt

@@ -143,14 +143,17 @@ val networkModule = module {
         GitHubClientProvider(
             tokenStore = get(),
             rateLimitRepository = get(),
+            authenticationState = get(),
             proxyConfigFlow = ProxyManager.currentProxyConfig
         )
     }
 
     single<HttpClient> {
         createGitHubHttpClient(
             tokenStore = get(),
-            rateLimitRepository = get()
+            rateLimitRepository = get(),
+            authenticationState = get(),
+            scope = get()
         )
     }
 

core/data/src/commonMain/kotlin/zed/rainxch/core/data/dto/GithubDeviceTokenSuccessDto.kt

@@ -10,5 +10,6 @@ data class GithubDeviceTokenSuccessDto(
     @SerialName("expires_in") val expiresIn: Long? = null,
     @SerialName("scope") val scope: String? = null,
     @SerialName("refresh_token") val refreshToken: String? = null,
-    @SerialName("refresh_token_expires_in") val refreshTokenExpiresIn: Long? = null
+    @SerialName("refresh_token_expires_in") val refreshTokenExpiresIn: Long? = null,
+    @SerialName("saved_at") val savedAtEpochMillis: Long? = null
 )