fix: clean up some logout messages

brandonkachen · brandonkachen · commit f92a445a2626 · 2025-08-25T17:04:52.000-07:00
diff --git a/backend/src/api/org.ts b/backend/src/api/org.ts
@@ -1,5 +1,6 @@
 import { findOrganizationForRepository } from '@codebuff/billing'
 import { z } from 'zod/v4'
+import { INVALID_AUTH_TOKEN_MESSAGE } from '@codebuff/common/constants'
 
 import { logger } from '../util/logger'
 import { extractAuthTokenFromHeader } from '../util/auth-helpers'
@@ -37,7 +38,7 @@ async function isRepoCoveredHandler(
     const userId = await getUserIdFromAuthToken(authToken)
 
     if (!userId) {
-      return res.status(401).json({ error: 'Invalid authentication token' })
+      return res.status(401).json({ error: INVALID_AUTH_TOKEN_MESSAGE })
     }
 
     // Check if repository is covered by an organization
diff --git a/backend/src/api/usage.ts b/backend/src/api/usage.ts
@@ -3,6 +3,7 @@ import db from '@codebuff/common/db'
 import * as schema from '@codebuff/common/db/schema'
 import { eq } from 'drizzle-orm'
 import { z } from 'zod/v4'
+import { INVALID_AUTH_TOKEN_MESSAGE } from '@codebuff/common/constants'
 
 import { checkAuth } from '../util/check-auth'
 import { logger } from '../util/logger'
@@ -61,7 +62,10 @@ async function usageHandler(
       : undefined
 
     if (!userId) {
-      return res.status(401).json({ message: 'Authentication failed' })
+      const message = authToken
+        ? INVALID_AUTH_TOKEN_MESSAGE
+        : 'Authentication failed'
+      return res.status(401).json({ message })
     }
 
     // If orgId is provided, return organization usage data
diff --git a/common/src/constants.ts b/common/src/constants.ts
@@ -10,6 +10,9 @@ export const AGENT_DEFINITION_FILE = 'agent-definition.d.ts'
 
 export const API_KEY_ENV_VAR = 'CODEBUFF_API_KEY'
 
+export const INVALID_AUTH_TOKEN_MESSAGE =
+  'Invalid auth token. You may have been logged out from the web portal. Please log in again.'
+
 // Enable async agents to run tool calls even when main user input is cancelled
 export const ASYNC_AGENTS_ENABLED = true
 
diff --git a/packages/internal/src/utils/auth.ts b/packages/internal/src/utils/auth.ts
@@ -2,6 +2,8 @@ import db from '@codebuff/common/db'
 import * as schema from '@codebuff/common/db/schema'
 import { eq } from 'drizzle-orm'
 
+import { INVALID_AUTH_TOKEN_MESSAGE } from '@codebuff/common/constants'
+
 // List of admin user emails - single source of truth
 const CODEBUFF_ADMIN_USER_EMAILS = [
   'venkateshrameshkumar+1@gmail.com',
@@ -81,7 +83,7 @@ export async function checkAuthToken({
       success: false,
       error: {
         type: 'invalid-token',
-        message: 'Invalid auth token',
+        message: INVALID_AUTH_TOKEN_MESSAGE,
       },
     }
   }
diff --git a/web/src/app/api/auth/cli/logout/route.ts b/web/src/app/api/auth/cli/logout/route.ts
@@ -3,6 +3,7 @@ import * as schema from '@codebuff/common/db/schema'
 import { and, eq } from 'drizzle-orm'
 import { NextResponse } from 'next/server'
 import { z } from 'zod/v4'
+import { INVALID_AUTH_TOKEN_MESSAGE } from '@codebuff/common/constants'
 
 import { logger } from '@/util/logger'
 
@@ -36,7 +37,12 @@ export async function POST(req: Request) {
       })
 
     if (validDeletion.length === 0) {
-      return NextResponse.json({ error: 'Invalid session' }, { status: 401 })
+      return NextResponse.json(
+        {
+          error: INVALID_AUTH_TOKEN_MESSAGE,
+        },
+        { status: 401 }
+      )
     }
 
     // Then reset sig_hash to null
