npm - @things-factory/auth-base - Versions diffs - 6.2.27 → 6.2.31 - Mend

@things-factory/auth-base 6.2.27 → 6.2.31

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (26) hide show

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@things-factory/auth-base",
-  "version": "6.2.27",
+  "version": "6.2.31",
   "main": "dist-server/index.js",
   "browser": "dist-client/index.js",
   "things-factory": true,
@@ -30,10 +30,10 @@
     "migration:create": "node ../../node_modules/typeorm/cli.js migration:create -d ./server/migrations"
   },
   "dependencies": {
-    "@things-factory/email-base": "^6.2.27",
+    "@things-factory/email-base": "^6.2.31",
     "@things-factory/env": "^6.2.27",
-    "@things-factory/i18n-base": "^6.2.27",
-    "@things-factory/shell": "^6.2.27",
+    "@things-factory/i18n-base": "^6.2.31",
+    "@things-factory/shell": "^6.2.31",
     "@things-factory/utils": "^6.2.27",
     "jsonwebtoken": "^9.0.0",
     "koa-passport": "^6.0.0",
@@ -42,5 +42,5 @@
     "passport-jwt": "^4.0.0",
     "passport-local": "^1.0.0"
   },
-  "gitHead": "6d414311ca45c329e93606fe46edd7ea53c819c5"
+  "gitHead": "0e904fde521867b12fb95fc24f98ca5e6bd53e6e"
 }

package/server/middlewares/jwt-authenticate-middleware.ts CHANGED Viewed

@@ -1,13 +1,17 @@
 import passport from 'koa-passport'
 import { ExtractJwt, Strategy as JWTstrategy } from 'passport-jwt'
+import { config } from '@things-factory/env'
 import { makeVerificationToken } from '../controllers/utils/make-verification-token'
 import { saveVerificationToken } from '../controllers/utils/save-verification-token'
 import { User, UserStatus } from '../service/user/user'
 import { VerificationTokenType } from '../service/verification-token/verification-token'
-import { clearAccessTokenCookie, getAccessTokenCookie } from '../utils/access-token-cookie'
+import { clearAccessTokenCookie, getAccessTokenCookie, setAccessTokenCookie } from '../utils/access-token-cookie'
 import { SECRET } from '../utils/get-secret'
+const sessionExpiryPolicy = config.get('session/expiryPolicy', 'fixed')
 passport.use(
   new JWTstrategy(
     {
@@ -65,6 +69,14 @@ export async function jwtAuthenticateMiddleware(context, next) {
       } else {
         context.state.user = userEntity
         context.state.decodedToken = decoded
+        if (sessionExpiryPolicy == 'rolling') {
+          /* To renew the expiry time on each request, a token is issued and the session is updated. */
+          const token = await userEntity.sign()
+          setAccessTokenCookie(context, token)
+        }
         await next()
       }
     }

package/server/service/user/user.ts CHANGED Viewed

@@ -28,6 +28,8 @@ import { getDomainsWithPrivilege } from '../../utils/get-user-domains'
 const ORMCONFIG = config.get('ormconfig', {})
 const DATABASE_TYPE = ORMCONFIG.type
+const sessionExpirySeconds = Number(config.get('session/expirySeconds')) || '7d'
 export enum UserStatus {
   INACTIVE = 'inactive',
   ACTIVATED = 'activated',
@@ -164,7 +166,7 @@ export class User {
   /* signing for jsonwebtoken */
   async sign(options?) {
-    var { expiresIn = '7d', subdomain } = options || {}
+    var { expiresIn = sessionExpirySeconds, subdomain } = options || {}
     var user = {
       id: this.id,

package/server/templates/account-unlock-email.ts CHANGED Viewed

@@ -3,10 +3,11 @@ export function getUnlockUserEmailForm({ name, resetUrl }) {
   <html lang="en">
     <head>
       <meta charset="utf-8" />
       <title>reset password</title>
       <meta name="description" content="Password Reset" />
       <meta name="author" content="hatiolab" />
+      <meta name="google" content="notranslate"/>
     </head>
     <body>

package/server/templates/invitation-email.ts CHANGED Viewed

@@ -3,10 +3,11 @@ export function getInvitationEmailForm({ email, acceptUrl }) {
   <html lang="en">
     <head>
       <meta charset="utf-8" />
       <title>Invitation from Operato</title>
       <meta name="description" content="Invitation" />
       <meta name="author" content="hatiolab" />
+      <meta name="google" content="notranslate"/>
     </head>
     <body>

package/server/templates/reset-password-email.ts CHANGED Viewed

@@ -3,10 +3,11 @@ export function getResetPasswordEmailForm({ name, resetUrl }) {
   <html lang="en">
     <head>
       <meta charset="utf-8" />
       <title>reset password</title>
       <meta name="description" content="Password Reset" />
       <meta name="author" content="hatiolab" />
+      <meta name="google" content="notranslate"/>
     </head>
     <body>

package/server/templates/verification-email.ts CHANGED Viewed

@@ -3,10 +3,11 @@ export function getVerificationEmailForm({ name, verifyUrl }) {
   <html lang="en">
     <head>
       <meta charset="utf-8" />
       <title>Verify your email</title>
       <meta name="description" content="Email Verification" />
       <meta name="author" content="hatiolab" />
+      <meta name="google" content="notranslate"/>
     </head>
     <body>