ershisan99/flashcards-api
1
0
Fork 0
mirror of https://github.com/ershisan99/flashcards-api.git synced 2025-12-16 20:59:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

add short lived access token

Browse Source
This commit is contained in:
andres
2023-08-12 18:47:40 +02:00
parent 43a2f11f80
commit f4c21e3c50
3 changed files with 10 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/modules/auth/auth.controller.ts
View File

@@ -190,7 +190,10 @@ export class AuthController {
): Promise<void> {
if (!req.cookies?.refreshToken) throw new UnauthorizedException()
const userId = req.user.id
const newTokens = await this.commandBus.execute(new RefreshTokenCommand(userId))
const shortAccessToken = req.headers['x-short-access-token'] === 'true'
const newTokens = await this.commandBus.execute(
new RefreshTokenCommand(userId, shortAccessToken)
)
res.cookie('refreshToken', newTokens.refreshToken, {
httpOnly: true,

2
src/modules/auth/auth.service.ts
View File

@@ -16,7 +16,7 @@ export class AuthService {
const accessSecretKey = process.env.ACCESS_JWT_SECRET_KEY
const refreshSecretKey = process.env.REFRESH_JWT_SECRET_KEY
const accessExpiresIn = rememberMe ? '1d' : '10m'
const accessExpiresIn = rememberMe ? '1d' : '10s'
const payload: { userId: string; date: Date } = {
userId,

8
src/modules/auth/use-cases/refresh-token-use-case.ts
View File

@@ -5,7 +5,7 @@ import * as jwt from 'jsonwebtoken'
import { AuthRepository } from '../infrastructure/auth.repository'
export class RefreshTokenCommand {
constructor(public readonly userId: string) {}
constructor(public readonly userId: string, public readonly shortAccessToken: boolean) {}
}
@CommandHandler(RefreshTokenCommand)
@@ -13,7 +13,7 @@ export class RefreshTokenHandler implements ICommandHandler<RefreshTokenCommand>
constructor(private readonly authRepository: AuthRepository) {}
async execute(command: RefreshTokenCommand) {
const { userId } = command
const { userId, shortAccessToken } = command
const accessSecretKey = process.env.ACCESS_JWT_SECRET_KEY
const refreshSecretKey = process.env.REFRESH_JWT_SECRET_KEY
@@ -22,7 +22,9 @@ export class RefreshTokenHandler implements ICommandHandler<RefreshTokenCommand>
userId,
date: new Date(),
}
const accessToken = jwt.sign(payload, accessSecretKey, { expiresIn: '10m' })
const accessToken = jwt.sign(payload, accessSecretKey, {
expiresIn: shortAccessToken ? '10s' : '10m',
})
const refreshToken = jwt.sign(payload, refreshSecretKey, {
expiresIn: '30d',
})