krgamestudios/auth-server
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Cookies are working

Browse Source
This commit is contained in:
Kayne Ruse
2022-07-26 10:06:46 +01:00
parent 678d55779d
commit 2b2e65d43e
5 changed files with 9 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files
server/auth/login.js
+1 -1
View File
@@ -52,7 +52,7 @@ const route = async (req, res) => {
const { accessToken, refreshToken } = tokenGenerateRefresh(account.index, account.email, account.username, account.type, account.admin, account.mod);
//set the cookie
res.cookie('refreshToken', refreshToken, { httpOnly: true, secure: true, sameSite: 'none', maxAge: 60 * 60 * 24 * 30 }); //30 days
res.cookie('refreshToken', refreshToken, { path: '/', httpOnly: true, secure: true, sameSite: 'none', maxAge: 60 * 60 * 24 * 30 * 1000 }); //30 days
//finally
res.status(200).send(accessToken);
server/auth/logout.js
+2 -1
View File
@@ -3,9 +3,10 @@ const tokenDestroy = require('../utilities/token-destroy');
//auth/logout
const route = (req, res) => {
//stored in the cookie
console.log(req.cookies.refreshToken)
tokenDestroy(req.cookies.refreshToken);
res.clearCookie('refreshToken');
return res.status(200).end();
};
server/auth/token.js
+2 -4
View File
@@ -4,16 +4,14 @@ const tokenRefresh = require('../utilities/token-refresh');
//auth/token
module.exports = async (req, res) => {
console.log(req.cookies);
return tokenRefresh(req.cookies.refreshToken || '', (err, accessToken, refreshToken) => {
if (err) {
return res.status(err).end();
}
//set the cookie
res.cookie('refreshToken', refreshToken, { httpOnly: true, secure: true, sameSite: 'none', maxAge: 60 * 60 * 24 * 30 }); //30 days
res.cookie('refreshToken', refreshToken, { path: '/', httpOnly: true, secure: true, sameSite: 'none', maxAge: 60 * 60 * 24 * 30 * 1000 }); //30 days
return res.status(200).send(accessToken);
return res.status(200).send({ accessToken });
});
};
server/server.js
+3 -3
View File
@@ -13,9 +13,9 @@ app.use(express.json());
app.use(cors({
credentials: true,
// origin: `${process.env.WEB_PROTOCOL}://${process.env.WEB_ADDRESS}`,
origin: true,
methods: ['HEAD', 'GET', 'POST', 'PUT', 'PATCH', 'DELETE', 'TRACE', 'OPTIONS']
origin: [`${process.env.WEB_PROTOCOL}://${process.env.WEB_ADDRESS}`],
allowedHeaders: ['Origin', 'X-Requested-With', 'Content-Type', 'Accept', 'Authorization', 'Set-Cookie'],
exposedHeaders: ['Origin', 'X-Requested-With', 'Content-Type', 'Accept', 'Authorization', 'Set-Cookie'],
}));
app.use(cookieParser());
server/utilities/token-generate-refresh.js
+1 -1
View File
@@ -13,7 +13,7 @@ module.exports = (index, email, username, type, admin, mod) => {
};
//these are strings
const accessToken = jwt.sign(content, process.env.SECRET_ACCESS, { expiresIn: '1s', issuer: 'auth' });
const accessToken = jwt.sign(content, process.env.SECRET_ACCESS, { expiresIn: '10m', issuer: 'auth' });
const refreshToken = jwt.sign(content, process.env.SECRET_REFRESH, { expiresIn: '30d', issuer: 'auth' });
tokens.create({ token: refreshToken, email: email });