({
refreshToken,
}: {
refreshToken: string;
})
| 23 | } |
| 24 | |
| 25 | export async function reIssueAccessToken({ |
| 26 | refreshToken, |
| 27 | }: { |
| 28 | refreshToken: string; |
| 29 | }) { |
| 30 | const { decoded } = verifyJwt(refreshToken, "refreshTokenPublicKey"); |
| 31 | |
| 32 | if (!decoded || !get(decoded, "session")) return false; |
| 33 | |
| 34 | const session = await SessionModel.findById(get(decoded, "session")); |
| 35 | |
| 36 | if (!session || !session.valid) return false; |
| 37 | |
| 38 | const user = await findUser({ _id: session.user }); |
| 39 | |
| 40 | if (!user) return false; |
| 41 | |
| 42 | const accessToken = signJwt( |
| 43 | { ...user, session: session._id }, |
| 44 | "accessTokenPrivateKey", |
| 45 | { expiresIn: config.get("accessTokenTtl") } // 15 minutes |
| 46 | ); |
| 47 | |
| 48 | return accessToken; |
| 49 | } |
no test coverage detected