Harden init resilience: nuclear reset, local-only startup, auth caching#112
Open
dougborg wants to merge 4 commits intoFoggedLens:mainfrom
Open
Harden init resilience: nuclear reset, local-only startup, auth caching#112dougborg wants to merge 4 commits intoFoggedLens:mainfrom
dougborg wants to merge 4 commits intoFoggedLens:mainfrom
Conversation
3 tasks
dougborg
force-pushed
the
fix/harden-init-resilience
branch
from
24064f3 to
ae0df2e
Compare
There was a problem hiding this comment.
Pull request overview
This PR hardens app startup to avoid the Android “stuck on splash/loading screen” scenario by eliminating network calls during initialization, adding background refresh paths for auth and suspected-locations data, and introducing a “nuclear reset” recovery after repeated init failures.
Changes:
- Split startup flows into local-only init (
initLocal()/restoreLoginLocal()) plus background refresh (refreshIfNeeded()), including a 10s timeout and display-name caching for auth. - Add init failure tracking with a nuclear reset (wipe all local data) after 2 consecutive init failures, and wrap
_init()in a top-level try/catch to avoid permanent loading screens. - Add new unit tests for
AuthService,AuthState, andSuspectedLocationState.
Reviewed changes
Copilot reviewed 9 out of 9 changed files in this pull request and generated 4 comments.
Show a summary per file
| File | Description |
|---|---|
| lib/app_state.dart | Sequential init now has failure tracking + nuclear reset and moves network work to post-init background tasks. |
| lib/services/auth_service.dart | Adds HTTP timeout, per-mode cached display name, local-only restore, and token-rejection handling. |
| lib/state/auth_state.dart | Uses local-only restore during init and adds background refresh method. |
| lib/services/suspected_location_service.dart | Adds initLocal() and background refreshIfNeeded() to avoid network during startup. |
| lib/state/suspected_location_state.dart | Adds local-only init and background refresh wrapper with loading state management. |
| lib/keys.dart | Returns empty strings when dart-defines are missing (test support) and logs warnings. |
| test/services/auth_service_test.dart | Adds coverage for auth restore, caching, per-mode isolation, and logout behavior. |
| test/state/auth_state_test.dart | Adds coverage for init/refresh/login/logout and upload-mode changes. |
| test/state/suspected_location_state_test.dart | Adds coverage for initLocal, refresh loading transitions, and selection behavior. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
dougborg
pushed a commit
to dougborg/deflock-app
that referenced
this pull request
Feb 12, 2026
- Fix stale nuclear reset counter: re-read from prefs after wipe - Remove fake loading state from refreshIfNeeded (background refresh) - Clear stale username when token expires between init and refresh - Fail fast in release builds when OAuth client IDs missing (keys.dart) - Update tests to match new behavior Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
dougborg
pushed a commit
to dougborg/deflock-app
that referenced
this pull request
Feb 25, 2026
- Fix stale nuclear reset counter: re-read from prefs after wipe - Remove fake loading state from refreshIfNeeded (background refresh) - Clear stale username when token expires between init and refresh - Fail fast in release builds when OAuth client IDs missing (keys.dart) - Update tests to match new behavior Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
dougborg
pushed a commit
to dougborg/deflock-app
that referenced
this pull request
Feb 25, 2026
- Fix stale nuclear reset counter: re-read from prefs after wipe - Remove fake loading state from refreshIfNeeded (background refresh) - Clear stale username when token expires between init and refresh - Fail fast in release builds when OAuth client IDs missing (keys.dart) - Update tests to match new behavior Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
dougborg
force-pushed
the
fix/harden-init-resilience
branch
from
c34c58a to
e91c5d6
Compare
dougborg
pushed a commit
to dougborg/deflock-app
that referenced
this pull request
Feb 25, 2026
- Fix stale nuclear reset counter: re-read from prefs after wipe - Remove fake loading state from refreshIfNeeded (background refresh) - Clear stale username when token expires between init and refresh - Fail fast in release builds when OAuth client IDs missing (keys.dart) - Update tests to match new behavior Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
dougborg
pushed a commit
to dougborg/deflock-app
that referenced
this pull request
Feb 25, 2026
- Fix stale nuclear reset counter: re-read from prefs after wipe - Remove fake loading state from refreshIfNeeded (background refresh) - Clear stale username when token expires between init and refresh - Fail fast in release builds when OAuth client IDs missing (keys.dart) - Update tests to match new behavior Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
dougborg
force-pushed
the
fix/harden-init-resilience
branch
2 times, most recently
from
baecebb to
beb8b03
Compare
Add initLocal() for fast local-only init (SharedPrefs + SQLite) and refreshIfNeeded() for background network fetch when data is stale. Add DI constructor to SuspectedLocationState for testability. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
dougborg
force-pushed
the
fix/harden-init-resilience
branch
3 times, most recently
from
ef9293b to
4b23b27
Compare
stopflock
reviewed
Feb 26, 2026
Collaborator
stopflock
left a comment
stopflock
left a comment
There was a problem hiding this comment.
Most "if it works im happy" - commented a couple places.
- Add 10-second timeout on _fetchUsername() HTTP call - Add injectable http.Client for testability (default: UserAgentClient) - Cache display name to SharedPreferences per upload mode - Add _TokenRejectedException for 401/403 handling - restoreLogin(): on 401/403 logout, on network error fall back to cache - Add restoreLoginLocal(): restore from cache only (no network) for init - AuthState.init() now uses restoreLoginLocal() for fast startup - Add AuthState.refreshIfNeeded() for background token validation - logout() clears cached display name - Remove dead validateToken() method; simplify onUploadModeChanged Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
- Nuclear reset: if init has failed >= 2 times, wipe all app data via NuclearResetService.clearEverything() before retrying - Nuclear reset now also clears flutter_secure_storage (OAuth tokens) - Increment failure count before init, clear on success - Keep init sequential (no Future.wait) to avoid race conditions - Use local-only init for suspected locations and auth (no network) - Fire-and-forget background refresh after init completes - On catch: set _isInitialized = true to prevent stuck loading screen - Fix stale nuclear reset counter: re-read from prefs after wipe Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
AuthService: restoreLogin caching/fallback, restoreLoginLocal, isLoggedIn, getAccessToken, logout, mode isolation AuthState: init uses local restore, refreshIfNeeded, login, logout, mode changes (including null/rejected token scenarios) SuspectedLocationState: initLocal (including error resilience), refreshIfNeeded, selection Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
dougborg
force-pushed
the
fix/harden-init-resilience
branch
from
4b23b27 to
9127b93
Compare
There was a problem hiding this comment.
Pull request overview
Copilot reviewed 9 out of 10 changed files in this pull request and generated 3 comments.
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Comment on lines
+188
to
+191
| // Only clear oauth2_client tokens if the helper was already initialized | ||
| // (i.e., an OAuth flow ran in this mode). If _helper is null, no tokens | ||
| // exist in the library's secure storage for the current mode. | ||
| await _helper?.removeAllTokens(); |
There was a problem hiding this comment.
logout() only calls removeAllTokens() when _helper is already initialized. Because _helper is now lazy, it's possible to log out without ever constructing the helper in the current run, leaving oauth2_client tokens in flutter_secure_storage. That can undermine logout semantics (next login()/getToken() may reuse the stored token). Consider always clearing oauth2_client tokens on logout (e.g., call _oauthHelper.removeAllTokens() and handle missing keys gracefully, or directly clear flutter_secure_storage entries used by oauth2_client).
Suggested change
| // Only clear oauth2_client tokens if the helper was already initialized | |
| // (i.e., an OAuth flow ran in this mode). If _helper is null, no tokens | |
| // exist in the library's secure storage for the current mode. | |
| await _helper?.removeAllTokens(); | |
| // Always clear oauth2_client tokens via the helper, even if it needs | |
| // to be lazily initialized, so that logout semantics are consistent | |
| // across app runs and modes. | |
| await _oauthHelper.removeAllTokens(); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
consumeDidNuclearReset()so the UI can inform the user.initLocal()+ backgroundrefreshIfNeeded()— no network during startup_fetchUsername(), per-mode display name caching (cached_display_name_production/_sandbox),restoreLoginLocal()for local-only init,_TokenRejectedExceptionfor 401/403 handling that clears stale tokensOAuth2Helper: helper is only constructed on firstlogin()/forceLogin()call, sokeys.dartis never touched during tests or local-only startupNuclearResetServicecleaned up (removed unused singleton pattern)Addresses feedback from #106 (items 1-3, 5). Item 4 (parallelization) is in PR #107.
Test plan
flutter analyze— no issuesflutter test— all 117 tests pass (33 new)🤖 Generated with Claude Code