Fix/refresh token mechanism

DO-2K23-26 · Nov 7, 2024 · 723737c · 723737c
1 parent 51b0095
commit 723737c
Show file tree

Hide file tree

Showing 4 changed files with 26 additions and 2 deletions.
diff --git a/apps/authentication/controllers/authentication_controller.ts b/apps/authentication/controllers/authentication_controller.ts
@@ -46,6 +46,9 @@ export default class AuthenticationController {
       message: 'update user connected',
     })
 
+    response.cookie('beep.access_token', tokens.accessToken)
+    response.cookie('beep.refresh_token', tokens.refreshToken)
+
     return response.send({
       user,
       tokens,
@@ -86,7 +89,11 @@ export default class AuthenticationController {
   }
 
   async refresh({ response, request, auth }: HttpContext) {
-    const { refreshToken } = request.only(['refreshToken'])
+    let { refreshToken } = request.only(['refreshToken'])
+
+    if (!refreshToken) {
+      refreshToken = request.cookie('beep.refresh_token')
+    }
 
     const payload = await this.authenticationService.verifyToken(refreshToken)
 
@@ -107,6 +114,9 @@ export default class AuthenticationController {
 
     const tokens = await auth.use('jwt').generate(user)
 
+    response.cookie('beep.access_token', tokens.accessToken)
+    response.cookie('beep.refresh_token', tokens.refreshToken)
+
     return response.send({
       ...tokens,
     })

diff --git a/apps/shared/middleware/auth_middleware.ts b/apps/shared/middleware/auth_middleware.ts
@@ -11,7 +11,7 @@ export default class AuthMiddleware {
   /**
    * The URL to redirect to, when authentication fails
    */
-  redirectTo = '/login'
+  redirectTo = '/authentication/signin'
 
   async userIsAudited(jwt: JwtPayloadContract) {
     if (!jwt.audited_account) {

diff --git a/apps/shared/middleware/set_authorization_middleware.ts b/apps/shared/middleware/set_authorization_middleware.ts
@@ -0,0 +1,13 @@
+import { HttpContext } from '@adonisjs/core/http'
+
+export default class SetAuthorizationHeader {
+  async handle({ request }: HttpContext, next: () => Promise<void>) {
+    const token = request.cookie('beep.access_token')
+
+    if (token) {
+      request.headers().authorization = `Bearer ${token}`
+    }
+
+    await next()
+  }
+}
diff --git a/start/kernel.ts b/start/kernel.ts
@@ -25,6 +25,7 @@ server.errorHandler(() => import('#apps/shared/exceptions/handler'))
 server.use([
   () => import('#apps/shared/middleware/container_bindings_middleware'),
   () => import('#apps/shared/middleware/force_json_response_middleware'),
+  () => import('#apps/shared/middleware/set_authorization_middleware'),
   () => import('@adonisjs/cors/cors_middleware'),
 ])