diff options
| author | Vidhu Kant Sharma <vidhukant@vidhukant.com> | 2025-04-14 01:48:12 +0530 |
|---|---|---|
| committer | Vidhu Kant Sharma <vidhukant@vidhukant.com> | 2025-04-14 01:48:12 +0530 |
| commit | 549f75c9e271ca9b8b8f919ee996526b31e659a8 (patch) | |
| tree | e73fd773c32e80ef94fb638bad9bc31c0d3ea2fc /src | |
| parent | 13bf1d14499e9cbb9d99c8bbc350e3cb5a7a4fd2 (diff) | |
Bug fix: refresh token not containing the version
Diffstat (limited to 'src')
| -rw-r--r-- | src/controller/auth.ts | 8 | ||||
| -rw-r--r-- | src/util/auth.ts | 2 |
2 files changed, 7 insertions, 3 deletions
diff --git a/src/controller/auth.ts b/src/controller/auth.ts index 13196fb..0135e13 100644 --- a/src/controller/auth.ts +++ b/src/controller/auth.ts @@ -34,6 +34,8 @@ const signup = async (req: Request, res: Response) => { "password": hash, }); + const refreshToken = getRefreshToken(user.id, user.refreshTokenVersion) + // @ts-ignore delete user["password"]; // @ts-ignore @@ -42,7 +44,7 @@ const signup = async (req: Request, res: Response) => { res.status(201).json({ user: user, accessToken: getAccessToken(user.id), - refreshToken: getRefreshToken(user.id, user.refreshTokenVersion) + refreshToken: refreshToken }); } catch (error) { res.status(500).json({ error: "Internal Server Error" }); @@ -62,6 +64,8 @@ const login = async (req: Request, res: Response) => { } if (isMatch) { + const refreshToken = getRefreshToken(user.id, user.refreshTokenVersion) + // @ts-ignore delete user["password"]; // @ts-ignore @@ -70,7 +74,7 @@ const login = async (req: Request, res: Response) => { res.status(200).json({ user: user, accessToken: getAccessToken(user.id), - refreshToken: getRefreshToken(user.id, user.refreshTokenVersion) + refreshToken: refreshToken }); } else { res.status(400).json({ error: "Invalid Credentials" }); diff --git a/src/util/auth.ts b/src/util/auth.ts index d892bc3..863b931 100644 --- a/src/util/auth.ts +++ b/src/util/auth.ts @@ -6,7 +6,7 @@ const getAccessToken = (userId: Number) => const getRefreshToken = (userId: Number, version: Number) => // @ts-ignore - jwt.sign({ userId: userId, version: version, }, process.env.REFRESH_TOKEN_SECRET, { expiresIn: "15d" }); + jwt.sign({ userId: userId, version: version, }, process.env.REFRESH_TOKEN_SECRET, { expiresIn: "15d" }); const verifyRefreshToken = (token: string) => { try { |