lumin/phoenix
1
0
Fork 0
mirror of https://github.com/ordinary-dev/phoenix synced 2024-09-20 03:40:29 +05:00
Code Issues Actions Packages Projects Releases Wiki Activity

Move the token lifetime to a constant

Browse source
This commit is contained in:
Ivan R. 2023-11-01 20:54:24 +05:00
parent de70b9d310
commit 3520042abe
No known key found for this signature in database
GPG key ID: 56C7BAAE859B302C
1 changed files with 5 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
views/auth.go
View file

@ -13,6 +13,8 @@ import (
"gorm.io/gorm" "gorm.io/gorm"
) )
const TOKEN_LIFETIME_IN_SECONDS = 60 * 60 * 24 * 30
func ShowRegistrationForm(c *gin.Context, db *gorm.DB) { func ShowRegistrationForm(c *gin.Context, db *gorm.DB) {
if database.CountAdmins(db) > 0 { if database.CountAdmins(db) > 0 {
ShowError(c, errors.New("At least 1 user already exists")) ShowError(c, errors.New("At least 1 user already exists"))
@ -91,7 +93,7 @@ func AuthMiddleware(c *gin.Context, db *gorm.DB, cfg *config.Config) {
} }
// Create a new token if the old one is about to expire // Create a new token if the old one is about to expire
if time.Now().Add(time.Hour * 24 * 3).After(claims.ExpiresAt.Time) { if time.Now().Add(time.Second * (TOKEN_LIFETIME_IN_SECONDS / 2)).After(claims.ExpiresAt.Time) {
newToken, err := GetJWTToken(cfg) newToken, err := GetJWTToken(cfg)
if err != nil { if err != nil {
ShowError(c, err) ShowError(c, err)
@ -103,7 +105,7 @@ func AuthMiddleware(c *gin.Context, db *gorm.DB, cfg *config.Config) {
func GetJWTToken(cfg *config.Config) (string, error) { func GetJWTToken(cfg *config.Config) (string, error) {
claims := jwt.RegisteredClaims{ claims := jwt.RegisteredClaims{
ExpiresAt: jwt.NewNumericDate(time.Now().Add(time.Hour * 24 * 7)), ExpiresAt: jwt.NewNumericDate(time.Now().Add(time.Second * TOKEN_LIFETIME_IN_SECONDS)),
} }
token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims) token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
return token.SignedString([]byte(cfg.SecretKey)) return token.SignedString([]byte(cfg.SecretKey))
@ -160,5 +162,5 @@ func AuthorizeUser(c *gin.Context, db *gorm.DB, cfg *config.Config) {
// Save token for one day in cookies // Save token for one day in cookies
func SetTokenCookie(c *gin.Context, token string) { func SetTokenCookie(c *gin.Context, token string) {
c.SetCookie("phoenix-token", token, 60*60*24, "/", "", false, true) c.SetCookie("phoenix-token", token, TOKEN_LIFETIME_IN_SECONDS, "/", "", false, true)
} }