npm - propro-utils - Versions diffs - 1.3.9 → 1.3.11 - Mend

propro-utils 1.3.9 → 1.3.11

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/package.json +1 -1
package/src/server/index.js +9 -5
package/src/server/middleware/verifyToken.js +17 -1

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "propro-utils",
-  "version": "1.3.9",
+  "version": "1.3.11",
   "description": "Auth middleware for propro-auth",
   "main": "src/index.js",
   "scripts": {

package/src/server/index.js CHANGED Viewed

@@ -4,6 +4,7 @@ const {
   exchangeToken,
   VerifyAccount,
 } = require("./middleware/verifyToken");
+const {refreshTokenMiddleware} = require("./middleware");
 // Main middleware function
 function proproAuthMiddleware(options = {}) {
   const {
@@ -23,20 +24,22 @@ function proproAuthMiddleware(options = {}) {
       let token;
       if (req.headers.authorization?.startsWith("Bearer ")) {
         token = req.headers.authorization.split(" ")[1];
-      } else {
+      }  else if (req.cookies && req.cookies['x-access-token']) {
         // If not present in Authorization header, try to get it from cookies
         token = req.cookies['x-access-token'];
       }
       if (token) {
-        const verifiedToken = verifyJWT(token, secret);
+        console.log("verifying access token", token);
+        const verifiedToken = await verifyJWT(token, secret);
         if (verifiedToken) {
           req.account = verifiedToken;
-        } else {
+          return next();
+        } else if (req.cookies && req.cookies['x-refresh-token']) {
           // If token is invalid or expired, try to refresh it
           const refreshToken = req.cookies['x-refresh-token'];
           if (refreshToken) {
-            const newTokenData = await refreshToken(authUrl, refreshToken, clientId, clientSecret);
+            const newTokenData = await refreshTokenMiddleware(req, res, next);
             if (newTokenData) {
               // Set the new tokens in the cookies
               res.cookie("x-refresh-token", newTokenData.tokens.refresh.token, {
@@ -55,6 +58,7 @@ function proproAuthMiddleware(options = {}) {
         }
       } else {
         req.account = undefined;
+        res.status(401).send("Unauthorized: Invalid or expired token");
       }
       if (!["/api/auth", "/api/callback"].includes(req.path)) {
@@ -101,7 +105,7 @@ function proproAuthMiddleware(options = {}) {
       }
     } catch (error) {
       console.error("Error in proproAuthMiddleware:", error);
-      res.status(500).send("Internal Server Error");
+      res.status(401).send("Unauthorized: Invalid or expired token");
     }
   };
 }

package/src/server/middleware/verifyToken.js CHANGED Viewed

@@ -8,10 +8,26 @@ const tokenCache = new Map();
  * @param {string} secret - The secret used to sign the JWT.
  * @returns {object|null} - The decoded payload of the JWT if it is valid, or null if it is not valid.
  */
-function verifyJWT(token, secret) {
+async function verifyJWT(token, secret= "thisisasamplesecret") {
   try {
     return jwt.verify(token, secret);
   } catch (err) {
+    if (err.name === 'TokenExpiredError') {
+      const newTokenData = await callTokenEndpoint(token);
+      return newTokenData ? jwt.verify(newTokenData, secret) : null;
+    }
+    return null;
+  }
+}
+async function callTokenEndpoint(token) {
+  try {
+    const response = await axios.post('http://auth:8182/tokens', {
+      refreshToken: token,
+    });
+    return response.data.tokens ? response.data.tokens.access.token : null;
+  } catch (error) {
+    console.error('Error during token refresh:', error);
     return null;
   }
 }