tabshift/payloadcms
1
0
Fork 0
Code Issues Pull Requests Actions 3 Packages Projects Releases Wiki Activity

chore: removes unused token arg to refresh operation (#6977)

Browse Source 
## Description

Duplicate of #6976 for 3.x
This commit is contained in:
James Mikrut
2024-06-28 11:20:49 -04:00
committed by GitHub
parent 9cdcf20c95
commit 2daefb2a81
5 changed files with 5 additions and 39 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
docs/authentication/operations.mdx
View File

@@ -191,7 +191,7 @@ mutation {
## Refresh ## Refresh
Allows for "refreshing" JWTs. If your user has a token that is about to expire, but the user is still active and using the app, you might want to use the `refresh` operation to receive a new token by sending the operation the token that is about to expire. Allows for "refreshing" JWTs. If your user has a token that is about to expire, but the user is still active and using the app, you might want to use the `refresh` operation to receive a new token by executing this operation via the authenticated user.
This operation requires a non-expired token to send back a new one. If the user's token has already expired, you will need to allow them to log in again to retrieve a new token. This operation requires a non-expired token to send back a new one. If the user's token has already expired, you will need to allow them to log in again to retrieve a new token.
@@ -237,13 +237,6 @@ mutation {
} }
``` ```
<Banner type="success">
The Refresh operation will automatically find the user's token in either a JWT header or the
HTTP-only cookie. But, you can specify the token you're looking to refresh by providing the REST
API with a `token` within the JSON body of the request, or by providing the GraphQL resolver a
`token` arg.
</Banner>
## Verify by Email ## Verify by Email
If your collection supports email verification, the Verify operation will be exposed which accepts a verification token and sets the user's `_verified` property to `true`, thereby allowing the user to authenticate with the Payload API. If your collection supports email verification, the Verify operation will be exposed which accepts a verification token and sets the user's `_verified` property to `true`, thereby allowing the user to authenticate with the Payload API.

13
packages/graphql/src/resolvers/auth/refresh.ts
View File

@@ -1,24 +1,15 @@
import type { Collection } from 'payload' import type { Collection } from 'payload'
import { extractJWT, generatePayloadCookie, isolateObjectProperty, refreshOperation } from 'payload' import { generatePayloadCookie, isolateObjectProperty, refreshOperation } from 'payload'
import type { Context } from '../types.js' import type { Context } from '../types.js'
function refreshResolver(collection: Collection): any { function refreshResolver(collection: Collection): any {
async function resolver(_, args, context: Context) { async function resolver(_, __, context: Context) {
let token
token = extractJWT(context.req)
if (args.token) {
token = args.token
}
const options = { const options = {
collection, collection,
depth: 0, depth: 0,
req: isolateObjectProperty(context.req, 'transactionID'), req: isolateObjectProperty(context.req, 'transactionID'),
token,
} }
const result = await refreshOperation(options) const result = await refreshOperation(options)

3
packages/graphql/src/schema/initCollections.ts
View File

@@ -416,9 +416,6 @@ function initCollectionsGraphQL({ config, graphqlResult }: InitCollectionsGraphQ
}, },
}, },
}), }),
args: {
token: { type: GraphQLString },
},
resolve: refresh(collection), resolve: refresh(collection),
} }

16
packages/next/src/routes/rest/auth/refresh.ts
View File

@@ -1,5 +1,5 @@
import httpStatus from 'http-status' import httpStatus from 'http-status'
import { extractJWT, generatePayloadCookie, refreshOperation } from 'payload' import { generatePayloadCookie, refreshOperation } from 'payload'
import type { CollectionRouteHandler } from '../types.js' import type { CollectionRouteHandler } from '../types.js'
@@ -7,29 +7,15 @@ import { headersWithCors } from '../../../utilities/headersWithCors.js'
export const refresh: CollectionRouteHandler = async ({ collection, req }) => { export const refresh: CollectionRouteHandler = async ({ collection, req }) => {
const { t } = req const { t } = req
const token = typeof req.data?.token === 'string' ? req.data.token : extractJWT(req)
const headers = headersWithCors({ const headers = headersWithCors({
headers: new Headers(), headers: new Headers(),
req, req,
}) })
if (!token) {
return Response.json(
{
message: t('error:tokenNotProvided'),
},
{
headers,
status: httpStatus.UNAUTHORIZED,
},
)
}
const result = await refreshOperation({ const result = await refreshOperation({
collection, collection,
req, req,
token,
}) })
if (result.setCookie) { if (result.setCookie) {

3
packages/payload/src/auth/operations/refresh.ts
View File

@@ -22,7 +22,6 @@ export type Result = {
export type Arguments = { export type Arguments = {
collection: Collection collection: Collection
req: PayloadRequestWithData req: PayloadRequestWithData
token: string
} }
export const refreshOperation = async (incomingArgs: Arguments): Promise<Result> => { export const refreshOperation = async (incomingArgs: Arguments): Promise<Result> => {
@@ -63,7 +62,7 @@ export const refreshOperation = async (incomingArgs: Arguments): Promise<Result>
}, },
} = args } = args
if (typeof args.token !== 'string' || !args.req.user) throw new Forbidden(args.req.t) if (!args.req.user) throw new Forbidden(args.req.t)
const parsedURL = url.parse(args.req.url) const parsedURL = url.parse(args.req.url)
const isGraphQL = parsedURL.pathname === config.routes.graphQL const isGraphQL = parsedURL.pathname === config.routes.graphQL