3pp-mirror/rallly
1
0
Fork 0
mirror of https://github.com/lukevella/rallly.git synced 2025-05-03 20:26:03 +02:00
Code Issues Projects Releases Packages Wiki Activity

🐛 Handle expired jwt

Browse source
This commit is contained in:
Luke Vella 2025-03-10 12:10:35 +00:00
parent 701875a158
commit a13418306e
No known key found for this signature in database
GPG key ID: 469CAD687F0D784C
4 changed files with 27 additions and 15 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
apps/web/src/auth/edge/with-auth.ts
View file

@ -5,6 +5,7 @@ import NextAuth from "next-auth";
import { nextAuthConfig } from "@/next-auth.config"; import { nextAuthConfig } from "@/next-auth.config";
import { import {
deleteLegacyCookie,
getLegacySession, getLegacySession,
migrateLegacyJWT, migrateLegacyJWT,
} from "../legacy/next-auth-cookie-migration"; } from "../legacy/next-auth-cookie-migration";
@ -24,6 +25,7 @@ export const withAuth = (
} }
let isLegacySession = false; let isLegacySession = false;
let isExpiredLegacySession = false;
if (!session) { if (!session) {
try { try {
@ -32,7 +34,7 @@ export const withAuth = (
isLegacySession = true; isLegacySession = true;
} }
} catch (e) { } catch (e) {
console.error(e); isExpiredLegacySession = true;
} }
} }
@ -54,6 +56,7 @@ export const withAuth = (
const middlewareRes = await middleware(request); const middlewareRes = await middleware(request);
if (isLegacySession) { if (isLegacySession) {
console.warn("Found legacy session, migrating…");
try { try {
await migrateLegacyJWT(middlewareRes); await migrateLegacyJWT(middlewareRes);
} catch (e) { } catch (e) {
@ -61,6 +64,11 @@ export const withAuth = (
} }
} }
if (isExpiredLegacySession) {
console.warn("Found expired legacy session, deleting…");
deleteLegacyCookie(middlewareRes);
}
return middlewareRes; return middlewareRes;
}; };
}; };

14
apps/web/src/auth/legacy/helpers/jwt.ts
View file

@ -9,15 +9,11 @@ export async function decodeLegacyJWT(token: string): Promise<JWT | null> {
process.env.SECRET_PASSWORD, process.env.SECRET_PASSWORD,
"", "",
); );
try { const { payload } = await jwtDecrypt(token, encryptionSecret, {
const { payload } = await jwtDecrypt(token, encryptionSecret, { clockTolerance: 15,
clockTolerance: 15, });
});
return payload; return payload;
} catch (e) {
console.error(e);
return null;
}
} }
async function getDerivedEncryptionKey( async function getDerivedEncryptionKey(

2
apps/web/src/auth/legacy/next-auth-cookie-migration.ts
View file

@ -46,7 +46,7 @@ async function getLegacyJWT() {
return null; return null;
} }
function deleteLegacyCookie(res: NextResponse) { export function deleteLegacyCookie(res: NextResponse) {
const cookieStore = cookies(); const cookieStore = cookies();
const oldCookie = cookieStore.get(oldCookieName); const oldCookie = cookieStore.get(oldCookieName);
if (oldCookie) { if (oldCookie) {

16
apps/web/src/next-auth.ts
View file

@ -195,12 +195,20 @@ const {
}); });
const auth = cache(async () => { const auth = cache(async () => {
const session = await originalAuth(); try {
if (session) { const session = await originalAuth();
return session; if (session) {
return session;
}
} catch (e) {
console.error("FAILED TO GET SESSION");
} }
return getLegacySession(); try {
return await getLegacySession();
} catch (e) {
console.error("FAILED TO GET LEGACY SESSION");
}
}); });
const requireUser = async () => { const requireUser = async () => {