github/wonderwall
1
0
Fork 0
mirror of https://github.com/nais/wonderwall.git synced 2026-05-17 05:47:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

refactor: use expiry in token response instead of jwt claim

Browse Source
This commit is contained in:
Trong Huu Nguyen
2022-06-17 11:17:08 +02:00
parent 497cf9fba7
commit 402d8b940f
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
pkg/router/session.go
View File

@@ -66,10 +66,10 @@ func (h *Handler) getSession(ctx context.Context, sessionID string) (*session.Da
return sessionData, nil
}
func (h *Handler) getSessionLifetime(accessToken *jwt.AccessToken) time.Duration {
func (h *Handler) getSessionLifetime(tokenExpiry time.Time) time.Duration {
defaultSessionLifetime := h.Config.SessionMaxLifetime
tokenDuration := accessToken.GetExpiration().Sub(time.Now())
tokenDuration := tokenExpiry.Sub(time.Now())
if tokenDuration <= defaultSessionLifetime {
return tokenDuration
@@ -84,7 +84,7 @@ func (h *Handler) createSession(w http.ResponseWriter, r *http.Request, tokens *
return fmt.Errorf("generating session ID: %w", err)
}
sessionLifetime := h.getSessionLifetime(tokens.AccessToken)
sessionLifetime := h.getSessionLifetime(rawTokens.Expiry)
opts := h.CookieOptions.WithExpiresIn(sessionLifetime)
sessionID := h.localSessionID(externalSessionID)