feat: start using refresh tokens and better session handler

2026-04-18 19:59:20 +00:00 · 2020-09-29 20:30:02 -03:00
parent 3a777dec39
commit c8b4b5bdfe
16 changed files with 209 additions and 46 deletions
--- a/backend/src/services/UserServices/AuthUserSerice.ts
+++ b/backend/src/services/UserServices/AuthUserSerice.ts
@@ -1,8 +1,9 @@
-import { sign } from "jsonwebtoken";
-
 import User from "../../models/User";
 import AppError from "../../errors/AppError";
-import authConfig from "../../config/auth";
+import {
+  createAccessToken,
+  createRefreshToken
+} from "../../helpers/CreateTokens";

 interface Request {
  email: string;
@@ -12,6 +13,7 @@ interface Request {
 interface Response {
  user: User;
  token: string;
+  refreshToken: string;
 }

 const AuthUserService = async ({
@@ -30,18 +32,13 @@ const AuthUserService = async ({
    throw new AppError("Incorrect user/password combination.", 401);
  }

-  const { secret, expiresIn } = authConfig;
-  const token = sign(
-    { usarname: user.name, profile: user.profile, id: user.id },
-    secret,
-    {
-      expiresIn
-    }
-  );
+  const token = createAccessToken(user);
+  const refreshToken = createRefreshToken(user);

  return {
    user,
-    token
+    token,
+    refreshToken
  };
 };