fix: refresh token store info

lakhansamani · lakhansamani · commit f5bdc8db39a7 · 2022-03-08T21:13:23.000+05:30
diff --git a/server/handlers/authorize.go b/server/handlers/authorize.go
@@ -293,7 +293,7 @@ func AuthorizeHandler() gin.HandlerFunc {
 			if authToken.RefreshToken != nil {
 				res["refresh_token"] = authToken.RefreshToken.Token
 				params += "&refresh_token=" + authToken.RefreshToken.Token
-				sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)
+				sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)
 			}
 
 			if isQuery {
diff --git a/server/handlers/oauth_callback.go b/server/handlers/oauth_callback.go
@@ -159,7 +159,7 @@ func OAuthCallbackHandler() gin.HandlerFunc {
 
 		if authToken.RefreshToken != nil {
 			params = params + `&refresh_token=` + authToken.RefreshToken.Token
-			sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)
+			sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)
 		}
 
 		go utils.SaveSessionInDB(c, user.ID)
diff --git a/server/handlers/token.go b/server/handlers/token.go
@@ -141,8 +141,14 @@ func TokenHandler() gin.HandlerFunc {
 				})
 			}
 			userID = claims["sub"].(string)
-			roles = claims["roles"].([]string)
-			scope = claims["scope"].([]string)
+			rolesInterface := claims["roles"].([]interface{})
+			scopeInterface := claims["scope"].([]interface{})
+			for _, v := range rolesInterface {
+				roles = append(roles, v.(string))
+			}
+			for _, v := range scopeInterface {
+				scope = append(scope, v.(string))
+			}
 			// remove older refresh token and rotate it for security
 			sessionstore.RemoveState(refreshToken)
 		}
@@ -179,7 +185,7 @@ func TokenHandler() gin.HandlerFunc {
 
 		if authToken.RefreshToken != nil {
 			res["refresh_token"] = authToken.RefreshToken.Token
-			sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)
+			sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)
 		}
 
 		gc.JSON(http.StatusOK, res)
diff --git a/server/handlers/verify_email.go b/server/handlers/verify_email.go
@@ -91,7 +91,7 @@ func VerifyEmailHandler() gin.HandlerFunc {
 
 		if authToken.RefreshToken != nil {
 			params = params + `&refresh_token=${refresh_token}`
-			sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)
+			sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)
 		}
 
 		if redirectURL == "" {
diff --git a/server/resolvers/login.go b/server/resolvers/login.go
@@ -84,7 +84,7 @@ func LoginResolver(ctx context.Context, params model.LoginInput) (*model.AuthRes
 
 	if authToken.RefreshToken != nil {
 		res.RefreshToken = &authToken.RefreshToken.Token
-		sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)
+		sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)
 	}
 
 	go utils.SaveSessionInDB(gc, user.ID)
diff --git a/server/resolvers/session.go b/server/resolvers/session.go
@@ -80,7 +80,7 @@ func SessionResolver(ctx context.Context, params *model.SessionQueryInput) (*mod
 
 	if authToken.RefreshToken != nil {
 		res.RefreshToken = &authToken.RefreshToken.Token
-		sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)
+		sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)
 	}
 
 	return res, nil

Original file line number	Diff line number	Diff line change
`@@ -293,7 +293,7 @@ func AuthorizeHandler() gin.HandlerFunc {`
`293`	`293`	`if authToken.RefreshToken != nil {`
`294`	`294`	`res["refresh_token"] = authToken.RefreshToken.Token`
`295`	`295`	`params += "&refresh_token=" + authToken.RefreshToken.Token`
`296`		`- sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)`
	`296`	`+ sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)`
`297`	`297`	`}`
`298`	`298`
`299`	`299`	`if isQuery {`
Original file line number	Diff line number	Diff line change
`@@ -159,7 +159,7 @@ func OAuthCallbackHandler() gin.HandlerFunc {`
`159`	`159`
`160`	`160`	`if authToken.RefreshToken != nil {`
`161`	`161`	params = params + `&refresh_token=` + authToken.RefreshToken.Token
`162`		`- sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)`
	`162`	`+ sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)`
`163`	`163`	`}`
`164`	`164`
`165`	`165`	`go utils.SaveSessionInDB(c, user.ID)`
Original file line number	Diff line number	Diff line change
`@@ -91,7 +91,7 @@ func VerifyEmailHandler() gin.HandlerFunc {`
`91`	`91`
`92`	`92`	`if authToken.RefreshToken != nil {`
`93`	`93`	params = params + `&refresh_token=${refresh_token}`
`94`		`- sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)`
	`94`	`+ sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)`
`95`	`95`	`}`
`96`	`96`
`97`	`97`	`if redirectURL == "" {`
Original file line number	Diff line number	Diff line change
`@@ -84,7 +84,7 @@ func LoginResolver(ctx context.Context, params model.LoginInput) (*model.AuthRes`
`84`	`84`
`85`	`85`	`if authToken.RefreshToken != nil {`
`86`	`86`	`res.RefreshToken = &authToken.RefreshToken.Token`
`87`		`- sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)`
	`87`	`+ sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)`
`88`	`88`	`}`
`89`	`89`
`90`	`90`	`go utils.SaveSessionInDB(gc, user.ID)`
Original file line number	Diff line number	Diff line change
`@@ -80,7 +80,7 @@ func SessionResolver(ctx context.Context, params model.SessionQueryInput) (mod`
`80`	`80`
`81`	`81`	`if authToken.RefreshToken != nil {`
`82`	`82`	`res.RefreshToken = &authToken.RefreshToken.Token`
`83`		`- sessionstore.SetState(authToken.AccessToken.Token, authToken.FingerPrint+"@"+user.ID)`
	`83`	`+ sessionstore.SetState(authToken.RefreshToken.Token, authToken.FingerPrint+"@"+user.ID)`
`84`	`84`	`}`
`85`	`85`
`86`	`86`	`return res, nil`