h/golib
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: h:hwsauth/v0.6.0
Branches Tags
h:master
h:tmdb/v0.10.0 h:hwsauth/v0.7.0 h:hws/v0.6.0 h:hlog/v0.11.0 h:ezconf/v0.2.1 h:ezconf/v0.2.0 h:hwsauth/v0.6.1 h:hwsauth/v0.6.0 h:hwsauth/v0.5.5 h:hws/v0.5.0 h:hwsauth/v0.5.4 h:hws/v0.4.4 h:hwsauth/v0.5.3 h:hws/v0.4.3 h:hws/v0.4.2 h:hws/v0.4.1 h:hws/v0.4.0 h:notify/v0.1.0 h:hws/v0.3.2 h:hwsauth/v0.5.2 h:hwsauth/v0.5.1 h:hws/v0.3.1 h:hwsauth/v0.5.0 h:hwsauth/v0.4.0 h:hws/v0.3.0 h:ezconf/v0.1.1 h:hlog/v0.10.4 h:tmdb/v0.9.2 h:hwsauth/v0.3.4 h:hws/v0.2.3 h:ezconf/v0.1.0 h:tmdb/v0.9.1 h:tmdb/v0.9.0 h:hwsauth/v0.3.3 h:jwt/v0.10.1 h:hwsauth/v0.3.2 h:hws/v0.2.2 h:hlog/v0.10.3 h:hlog/v0.10.2 h:hlog/v0.10.1 h:hws/v0.2.1 h:hwsauth/v0.3.1 h:hws/v0.2.0 h:hwsauth/v0.3.0 h:jwt/v0.10.0 h:hlog/v0.9.1 h:env/v0.9.1 h:hwsauth/v0.2.0 h:hwsauth/v0.1.0 h:hws/v0.1.0 h:env/v0.9.0 h:cookies/v0.9.0 h:jwt/v0.9.2 h:jwt/v0.9.1 h:tmdb/v0.8.0 h:jwt/v0.9.0 h:hlog/v0.9.0
..
compare: h:hwsauth/v0.6.1
Branches Tags
h:master
h:tmdb/v0.10.0 h:hwsauth/v0.7.0 h:hws/v0.6.0 h:hlog/v0.11.0 h:ezconf/v0.2.1 h:ezconf/v0.2.0 h:hwsauth/v0.6.1 h:hwsauth/v0.6.0 h:hwsauth/v0.5.5 h:hws/v0.5.0 h:hwsauth/v0.5.4 h:hws/v0.4.4 h:hwsauth/v0.5.3 h:hws/v0.4.3 h:hws/v0.4.2 h:hws/v0.4.1 h:hws/v0.4.0 h:notify/v0.1.0 h:hws/v0.3.2 h:hwsauth/v0.5.2 h:hwsauth/v0.5.1 h:hws/v0.3.1 h:hwsauth/v0.5.0 h:hwsauth/v0.4.0 h:hws/v0.3.0 h:ezconf/v0.1.1 h:hlog/v0.10.4 h:tmdb/v0.9.2 h:hwsauth/v0.3.4 h:hws/v0.2.3 h:ezconf/v0.1.0 h:tmdb/v0.9.1 h:tmdb/v0.9.0 h:hwsauth/v0.3.3 h:jwt/v0.10.1 h:hwsauth/v0.3.2 h:hws/v0.2.2 h:hlog/v0.10.3 h:hlog/v0.10.2 h:hlog/v0.10.1 h:hws/v0.2.1 h:hwsauth/v0.3.1 h:hws/v0.2.0 h:hwsauth/v0.3.0 h:jwt/v0.10.0 h:hlog/v0.9.1 h:env/v0.9.1 h:hwsauth/v0.2.0 h:hwsauth/v0.1.0 h:hws/v0.1.0 h:env/v0.9.0 h:cookies/v0.9.0 h:jwt/v0.9.2 h:jwt/v0.9.1 h:tmdb/v0.8.0 h:jwt/v0.9.0 h:hlog/v0.9.0

1 Commits
hwsauth/v0 ... hwsauth/v0

Author SHA1 Message Date
Haelnorr
05be28d7f3 fixed fatal bug after access token expires 2026-02-07 17:58:02 +11:00
2 changed files with 34 additions and 19 deletions
Expand all files Collapse all files

16
hwsauth/logout.go
View File

@@ -33,13 +33,17 @@ func (auth *Authenticator[T, TX]) Logout(tx TX, w http.ResponseWriter, r *http.R
if err != nil {
return errors.Wrap(err, "auth.getTokens")
}
err = aT.Revoke(jwt.DBTransaction(tx))
if err != nil {
return errors.Wrap(err, "aT.Revoke")
if aT != nil {
err = aT.Revoke(jwt.DBTransaction(tx))
if err != nil {
return errors.Wrap(err, "aT.Revoke")
}
}
err = rT.Revoke(jwt.DBTransaction(tx))
if err != nil {
return errors.Wrap(err, "rT.Revoke")
if rT != nil {
err = rT.Revoke(jwt.DBTransaction(tx))
if err != nil {
return errors.Wrap(err, "rT.Revoke")
}
}
cookies.DeleteCookie(w, "access", "/")
cookies.DeleteCookie(w, "refresh", "/")

37
hwsauth/reauthenticate.go
View File

@@ -34,7 +34,7 @@ func (auth *Authenticator[T, TX]) RefreshAuthTokens(tx TX, w http.ResponseWriter
rememberMe := map[string]bool{
"session": false,
"exp": true,
}[aT.TTL]
}[rT.TTL]
// issue new tokens for the user
err = jwt.SetTokenCookies(w, r, auth.tokenGenerator, rT.SUB, true, rememberMe, auth.SSL)
if err != nil {
@@ -55,13 +55,20 @@ func (auth *Authenticator[T, TX]) getTokens(
) (*jwt.AccessToken, *jwt.RefreshToken, error) {
// get the existing tokens from the cookies
atStr, rtStr := jwt.GetTokenCookies(r)
aT, err := auth.tokenGenerator.ValidateAccess(jwt.DBTransaction(tx), atStr)
if err != nil {
return nil, nil, errors.Wrap(err, "tokenGenerator.ValidateAccess")
var aT *jwt.AccessToken
var rT *jwt.RefreshToken
var err error
if atStr != "" {
aT, err = auth.tokenGenerator.ValidateAccess(jwt.DBTransaction(tx), atStr)
if err != nil {
return nil, nil, errors.Wrap(err, "tokenGenerator.ValidateAccess")
}
}
rT, err := auth.tokenGenerator.ValidateRefresh(jwt.DBTransaction(tx), rtStr)
if err != nil {
return nil, nil, errors.Wrap(err, "tokenGenerator.ValidateRefresh")
if rtStr != "" {
rT, err = auth.tokenGenerator.ValidateRefresh(jwt.DBTransaction(tx), rtStr)
if err != nil {
return nil, nil, errors.Wrap(err, "tokenGenerator.ValidateRefresh")
}
}
return aT, rT, nil
}
@@ -72,13 +79,17 @@ func revokeTokenPair(
aT *jwt.AccessToken,
rT *jwt.RefreshToken,
) error {
err := aT.Revoke(tx)
if err != nil {
return errors.Wrap(err, "aT.Revoke")
if aT != nil {
err := aT.Revoke(tx)
if err != nil {
return errors.Wrap(err, "aT.Revoke")
}
}
err = rT.Revoke(tx)
if err != nil {
return errors.Wrap(err, "rT.Revoke")
if rT != nil {
err := rT.Revoke(tx)
if err != nil {
return errors.Wrap(err, "rT.Revoke")
}
}
return nil
}