refactor(sso): update ui, css theming, and login session expiry indicator

- Move sso-login css to a file
- Add session expire message
- Update GraphQL `UserMeType` to expose `loginExpire` field
    - Add test

Author: thenav56

apps/common/templates/common/sign_in.html

@@ -1,98 +1,82 @@
+{% load static %}
+
 <!DOCTYPE html>
 <html lang="en">
 <head>
-    <meta charset="UTF-8">
-    <title>Login Page</title>
-    <script src="//accounts.google.com/gsi/client" async></script>
-    <style>
-        body {
-            font-family: Arial, sans-serif;
-            background-color: #121212;
-            display: flex;
-            justify-content: center;
-            align-items: center;
-            height: 100vh;
-            margin: 0;
-        }
-
-        .container {
-            background-color: white;
-            padding: 20px;
-            border-radius: 10px;
-            box-shadow: 0 4px 8px rgba(0, 0, 0, 0.1);
-            text-align: center;
-        }
-
-        img {
-            border-radius: 50%;
-            width: 100px;
-            height: 100px;
-            object-fit: cover;
-            margin-top: 10px;
-        }
-
-        p {
-            color: #333;
-            margin: 10px 0;
-        }
-
-        a {
-            color: #007bff;
-            text-decoration: none;
-            font-weight: bold;
-        }
-
-        a:hover {
-            text-decoration: underline;
-        }
-
-        .g_id_signin {
-            margin-top: 20px;
-        }
-    </style>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Login Page</title>
+
+  <link rel="stylesheet" type="text/css" href="{% static "css/sso-login.css" %}"/>
+
+  <script src="//accounts.google.com/gsi/client" async></script>
+  <!-- <script src="{% static "js/autoreload-dev.js" %}" async></script> -->
 
 </head>
 <body>
 
 <div class="container">
+  {% if request.user.is_authenticated %}
+    <h1>Timur Backend</h1>
+    <p>
+        Welcome, {{ request.user.display_name }} 🙂
+        <br />
+        Your email is <strong>{{ request.user.email }}</strong>
+    </p>
+
+    <div class="card-container">
+      <a href="{{APP_FRONTEND_HOST}}" class="card">
+        Timur App
+      </a>
+
+      {% if request.user.is_staff %}
+        <a href="{{APP_DOMAIN}}/admin" class="card">
+          Admin Panel
+        </a>
+      {% endif %}
+
+      <a href="{% url 'account_logout' %}" class="danger-card card">
+          Logout
+      </a>
+    </div>
+
+  {% else %}
+    <h1>Welcome Back 🙂 to Timur</h1>
+    <p>Click below to sign in with Google</p>
+  {% endif %}
+
+  {% if login_expire_in_days %}
+    <p class="note {% if login_expire_in_days < login_expire_threshold %}warning{% endif %}">
+      Login session is valid for {{ login_expire_in_days }} day{{ login_expire_in_days|pluralize }}.
+    </p>
+  {% endif %}
 
-    {% if request.user.is_authenticated %}
-    <div>
-        <p>Hi {{ request.user.display_name }} 🙂</p>
-        <p>Your email is {{ request.user.email }}</p>
-        </br> Go to the <a href="{{APP_FRONTEND_HOST}}">Timur App</a>
-        {% if request.user.is_staff %}
-        </br> Go to the <a href="{{APP_DOMAIN}}/admin">Admin Panel</a>
-        {% endif %}
-        </br> <a href="{% url 'account_logout' %}">Logout</a>
+  {% if not request.user.is_authenticated or login_expire_in_days < login_expire_threshold %}
+
+    <a href="{{APP_DOMAIN}}/admin" class="card">
+      Sign in with Admin Panel
+    </a>
+
+    <!-- Reference: https://developers.google.com/identity/gsi/web/reference/html-reference --!>
+    <div id="g_id_onload"
+         data-client_id="{{ GOOGLE_OAUTH_CLIENT_ID }}"
+         data-context="use"
+         data-ux_mode="popup"
+         data-login_uri="{% url 'google_login_by_token' %}"
+         data-auto_prompt="false">
     </div>
-    {% else %}
-    <div>
-        <p>Hi there 🙂 </p>
-        <p>Click below to sign in with Google</p>
-
-        <div id="g_id_onload"
-             data-client_id="{{ GOOGLE_OAUTH_CLIENT_ID }}"
-             data-context="use"
-             data-ux_mode="popup"
-             data-login_uri="{% url 'google_login_by_token' %}"
-             data-auto_prompt="false">
-        </div>
-
-        <div class="g_id_signin"
-             data-type="standard"
-             data-shape="rectangular"
-             data-theme="filled_black"
-             data-text="continue_with"
-             data-size="large"
-             data-logo_alignment="left">
-        </div>
-
-        </br> Login using <a href="{{APP_DOMAIN}}/admin">admin panel</a> instead?
-        <p>{{ APP_ENVIRONMENT }}</p>
 
+    <div class="g_id_signin"
+         data-type="standard"
+         data-shape="rectangular"
+         data-theme="filled_black"
+         data-text="signin_with"
+         data-size="large"
+         data-logo_alignment="left">
     </div>
-    {% endif %}
+
+    <p class="note">{{ APP_ENVIRONMENT }}</p>
+  {% endif %}
 </div>
 
 </body>

apps/common/views.py

@@ -1,20 +1,44 @@
+import datetime
+import typing
+
+from django.contrib.sessions.models import Session
 from django.shortcuts import render
+from django.utils import timezone
 from django.views.decorators.csrf import csrf_exempt
 
 from main import config
 
+if typing.TYPE_CHECKING:
+    from django.http import HttpRequest
+
+
+def get_login_expire(request: "HttpRequest") -> datetime.datetime | None:
+    session_model_class = getattr(request.session, "model", None)
+    if session_model_class == Session:
+        session_key = request.session.session_key
+        if session := Session.objects.filter(session_key=session_key).first():
+            return session.expire_date
+    return None
+
 
 @csrf_exempt
-def dev_sign_in(request):
+def sso_sign_in(request):
     """
     For server-side development only, Used to simulate frontend sign_in
     """
     assert config.GOOGLE_SSO_ENABLED
     assert config.SOCIALACCOUNT_PROVIDERS
+
+    login_expire_in_days = None
+    if login_expire := get_login_expire(request):
+        login_expire_in_days = (login_expire - timezone.now()).days
+
     return render(
         request,
         "common/sign_in.html",
         context=dict(
             GOOGLE_OAUTH_CLIENT_ID=config.SOCIALACCOUNT_PROVIDERS["google"]["APP"]["client_id"],
+            login_expire_threshold=4,
+            login_expire_in_days=login_expire_in_days,
         ),
     )

apps/static/css/sso-login.css

@@ -0,0 +1,170 @@
+/* General body styles */
+:root {
+  --color-background: #d7d7d7;
+  --color-foreground: #ffffff;
+  --color-text: #333333;
+  --color-text-warning: #ffcc00;
+
+  --color-background-card: #e9e9e9;
+  --color-background-card-danger: #f9d9d9;
+
+  --font-size-sm: 12px;
+  --font-size-md: 14px;
+  --font-size-lg: 16px;
+  --font-size-xl: 20px;
+  --font-size-xxl: 24px;
+
+  --spacing-xs: 4px;
+  --spacing-sm: 6px;
+  --spacing-md: 12px;
+  --spacing-lg: 16px;
+  --spacing-xl: 24px;
+
+  --radius-md: 12px;
+  --radius-lg: 16px;
+}
+
+@media (prefers-color-scheme: dark) {
+  :root {
+    --color-background: #1e1e1e;
+    --color-foreground: #2a2a2a;
+    --color-text: #f0f0f0;
+    --color-text-warning: #ffcc00;
+
+    --color-background-card: #2f2f2f;
+    --color-background-card-danger: #552222;
+  }
+}
+
+html {
+  margin: 0;
+  padding: 0;
+}
+
+body {
+  margin: 0;
+  font-family: 'Roboto', sans-serif;
+  background-color: var(--color-background);  /* Default light background */
+  display: flex;
+  justify-content: center;
+  align-items: center;
+  height: 100vh;
+  color: var(--color-text);  /* Default dark text */
+  transition: background-color 0.3s ease, color 0.3s ease;
+}
+
+/* Light theme adjustments */
+
+.container {
+  background-color: var(--color-foreground);
+  display: flex;
+  flex-direction: column;
+  gap: var(--spacing-md);
+  padding: var(--spacing-xl);
+  margin: var(--spacing-lg);
+  border-radius: var(--radius-lg);
+  text-align: center;
+  width: 100%;
+
+  box-shadow: 0 12px 24px rgba(0, 0, 0, 0.1);
+  max-width: 380px;
+  transition: all 0.3s ease-in-out;
+}
+
+.container:hover {
+  box-shadow: 0 18px 36px rgba(0, 0, 0, 0.2);
+}
+
+.card-container {
+  display: flex;
+  flex-direction: column;
+  gap: var(--spacing-md);
+}
+
+.card {
+  background: var(--color-background-card);
+  border-radius: var(--radius-md);
+  display: flex;
+  justify-content: center;
+  align-items: center;
+  text-align: center;
+  padding: var(--spacing-md);
+
+  transition: box-shadow 0.3s ease-in-out, transform 0.3s ease-in-out;
+}
+
+.card:hover {
+  box-shadow: 0 12px 24px rgba(0, 0, 0, 0.15);
+  transform: translateY(-4px);
+}
+
+.card a {
+  font-size: var(--font-size-md);
+  text-align: center;
+}
+
+.danger-card, .card a {
+  background-color: var(--color-background-card-danger);
+}
+
+.note {
+  font-size: var(--font-size-md);
+}
+
+.warning {
+  color: var(--color-text-warning);
+  font-weight: bold;
+  font-size: var(--font-size-md);
+}
+
+/* Google login */
+
+.g_id_signin {
+  transition: transform 0.3s ease-in-out;
+}
+
+.g_id_signin div {
+  display: flex;
+  flex-direction: column;
+  justify-content: center;
+  align-items: center;
+}
+
+.g_id_signin:hover {
+  transform: translateY(-4px);
+}
+
+/* Global override for anchor .card (applies to both themes) */
+img {
+  width: 80px;
+  height: 80px;
+  border-radius: 50%;
+  object-fit: cover;
+  margin-bottom: 15px;
+  transition: transform 0.3s ease-in-out;
+}
+
+img:hover {
+  transform: scale(1.1);
+}
+
+h1 {
+  font-size: var(--font-size-xxl);
+  margin: 0;
+  font-weight: 600;
+}
+
+p {
+  font-size: var(--font-size-lg);
+}
+
+a {
+  color: var(--color-text);
+  text-decoration: none;
+  transition: color 0.3s;
+}
+
+a:hover {
+  color: var(--color-text);
+  text-decoration: none;
+}

apps/static/js/autoreload-dev.js

@@ -0,0 +1,6 @@
+window.setInterval(
+  () => {
+    window.location.reload();
+  },
+  1000,
+);