Add new token request (#1384)

* Add new token request This exists so that the user generates a new JWT token with the new adonisjs update on the server (that is now stored - hashed and using the adonis5-jwt package - which previously wasn't). This logic enhances security as we can delete the tokens on the jwt_tokens database in order to log-off users in case the APP_KEY is compromised (if we are hacked, for instance). After some time (maybe months after the migration) we can delete the old code on the server side that handles the deprecated JWT tokens (and possibly change the APP_KEY used to sign the old certificates - we can now probably use certs to sign the JWT - to enhance security as well). * Update src/api/server/ServerApi.ts Co-authored-by: MCMXC <16797721+mcmxcdev@users.noreply.github.com> * Update src/stores/UserStore.ts Co-authored-by: MCMXC <16797721+mcmxcdev@users.noreply.github.com> --------- Co-authored-by: MCMXC <16797721+mcmxcdev@users.noreply.github.com>
author: André Oliveira <37463445+SpecialAro@users.noreply.github.com> 2023-10-13 13:14:08 +0100
committer: GitHub <noreply@github.com> 2023-10-13 13:14:08 +0100
commit: a91fa7066a554fa5aabd9df5ca33365e6bc8663d (patch)
tree: 5c75b2b482536242dbcd983b1e0757c6e7b9942c /src/stores
parent: 6.5.2-nightly.2 [skip ci] (diff)
download: ferdium-app-a91fa7066a554fa5aabd9df5ca33365e6bc8663d.tar.gz
ferdium-app-a91fa7066a554fa5aabd9df5ca33365e6bc8663d.tar.zst
ferdium-app-a91fa7066a554fa5aabd9df5ca33365e6bc8663d.zip
1 files changed, 36 insertions, 0 deletions
diff --git a/src/stores/UserStore.ts b/src/stores/UserStore.ts
index 0616acdad..f98f7d340 100644
--- a/src/stores/UserStore.ts
+++ b/src/stores/UserStore.ts
@@ -50,6 +50,11 @@ export default class UserStore extends TypedStore {
    'getInfo',
  );
+  @observable requestNewTokenRequest: CachedRequest = new CachedRequest(
+    this.api.user,
+    'requestNewToken',
+  );
  @observable updateUserInfoRequest: Request = new Request(
    this.api.user,
    'updateInfo',
@@ -174,6 +179,11 @@ export default class UserStore extends TypedStore {
  @computed get data() {
    if (!this.isLoggedIn) return {};
+    const newTokenNeeded = this._shouldRequestNewToken(this.authToken);
+    if (newTokenNeeded) {
+      this._requestNewToken();
+    }
    return this.getUserInfoRequest.execute().result || {};
  }
@@ -367,6 +377,32 @@ export default class UserStore extends TypedStore {
  }
  // Helpers
+  _shouldRequestNewToken(authToken): boolean {
+    try {
+      const decoded = jwt.decode(authToken);
+      if (!decoded) {
+        throw new Error('Invalid token');
+      }
+      if (decoded.uid) {
+        return true;
+      }
+      return false;
+    } catch {
+      return true;
+    }
+  }
+  _requestNewToken(): void {
+    // Logic to request new token (use an endpoint for that)
+    const data = this.requestNewTokenRequest.execute().result;
+    if (data) {
+      this.authToken = data.token;
+      localStorage.setItem('authToken', data.token);
+    }
+  }
  _parseToken(authToken) {
    try {
      const decoded = jwt.decode(authToken);
author	André Oliveira <37463445+SpecialAro@users.noreply.github.com>	2023-10-13 13:14:08 +0100
committer	GitHub <noreply@github.com>	2023-10-13 13:14:08 +0100
commit	a91fa7066a554fa5aabd9df5ca33365e6bc8663d (patch)
tree	5c75b2b482536242dbcd983b1e0757c6e7b9942c /src/stores
parent	6.5.2-nightly.2 [skip ci] (diff)
download	ferdium-app-a91fa7066a554fa5aabd9df5ca33365e6bc8663d.tar.gz ferdium-app-a91fa7066a554fa5aabd9df5ca33365e6bc8663d.tar.zst ferdium-app-a91fa7066a554fa5aabd9df5ca33365e6bc8663d.zip

diff --git a/src/stores/UserStore.ts b/src/stores/UserStore.ts index 0616acdad..f98f7d340 100644 --- a/src/stores/UserStore.ts +++ b/src/stores/UserStore.ts
@@ -50,6 +50,11 @@ export default class UserStore extends TypedStore {
50	'getInfo',	50	'getInfo',
51	);	51	);
52		52
		53	@observable requestNewTokenRequest: CachedRequest = new CachedRequest(
		54	this.api.user,
		55	'requestNewToken',
		56	);
		57
53	@observable updateUserInfoRequest: Request = new Request(	58	@observable updateUserInfoRequest: Request = new Request(
54	this.api.user,	59	this.api.user,
55	'updateInfo',	60	'updateInfo',
@@ -174,6 +179,11 @@ export default class UserStore extends TypedStore {
174	@computed get data() {	179	@computed get data() {
175	if (!this.isLoggedIn) return {};	180	if (!this.isLoggedIn) return {};
176		181
		182	const newTokenNeeded = this._shouldRequestNewToken(this.authToken);
		183	if (newTokenNeeded) {
		184	this._requestNewToken();
		185	}
		186
177	return this.getUserInfoRequest.execute().result \|\| {};	187	return this.getUserInfoRequest.execute().result \|\| {};
178	}	188	}
179		189
@@ -367,6 +377,32 @@ export default class UserStore extends TypedStore {
367	}	377	}
368		378
369	// Helpers	379	// Helpers
		380	_shouldRequestNewToken(authToken): boolean {
		381	try {
		382	const decoded = jwt.decode(authToken);
		383	if (!decoded) {
		384	throw new Error('Invalid token');
		385	}
		386
		387	if (decoded.uid) {
		388	return true;
		389	}
		390
		391	return false;
		392	} catch {
		393	return true;
		394	}
		395	}
		396
		397	_requestNewToken(): void {
		398	// Logic to request new token (use an endpoint for that)
		399	const data = this.requestNewTokenRequest.execute().result;
		400	if (data) {
		401	this.authToken = data.token;
		402	localStorage.setItem('authToken', data.token);
		403	}
		404	}
		405
370	_parseToken(authToken) {	406	_parseToken(authToken) {
371	try {	407	try {
372	const decoded = jwt.decode(authToken);	408	const decoded = jwt.decode(authToken);