@greenpress/auth
Version:
Express Passport authentication service
50 lines (49 loc) • 2.22 kB
JavaScript
;
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
return new (P || (P = Promise))(function (resolve, reject) {
function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
step((generator = generator.apply(thisArg, _arguments || [])).next());
});
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.refreshToken = void 0;
const User = require('../models/user');
const { verifyRefreshToken } = require('../services/tokens');
function refreshToken(req, res) {
return __awaiter(this, void 0, void 0, function* () {
if (!req.headers.authorization) {
return res.status(401).end();
}
// get the last part from a authorization header string like "bearer token-value"
const token = req.headers.authorization.split(' ')[1];
const tenant = req.headers.tenant = req.headers.tenant || '0';
try {
const decoded = yield verifyRefreshToken(token, tenant);
const user = yield User.findOne({ _id: decoded.sub, tenant: decoded.tenant });
if (user.refreshTokenCreated.toJSON() !== decoded.created) {
throw new Error('refresh token not valid');
}
const newToken = user.getToken();
const refreshToken = user.getRefreshToken();
yield user.save();
return res.json({
payload: {
user: {
email: user.email,
name: user.name,
roles: user.roles,
},
token: newToken,
refreshToken,
}
}).end();
}
catch (e) {
res.status(401).end();
}
});
}
exports.refreshToken = refreshToken;