Check token expiry in bearer auth

jerome3o-anthropic · jerome3o-anthropic · commit 2dc7fa5df8a0 · 2025-02-23T10:57:26.000Z
diff --git a/src/server/auth/middleware/bearerAuth.ts b/src/server/auth/middleware/bearerAuth.ts
@@ -55,6 +55,11 @@ export function requireBearerAuth({ provider, requiredScopes = [] }: BearerAuthM
         }
       }
 
+      // Check if the token is expired
+      if (!!authInfo.expiresAt && authInfo.expiresAt < Date.now() / 1000) {
+        throw new InvalidTokenError("Token has expired");
+      }
+
       req.auth = authInfo;
       next();
     } catch (error) {

Original file line number	Diff line number	Diff line change
`@@ -55,6 +55,11 @@ export function requireBearerAuth({ provider, requiredScopes = [] }: BearerAuthM`
`55`	`55`	`}`
`56`	`56`	`}`
`57`	`57`
	`58`	`+ // Check if the token is expired`
	`59`	`+ if (!!authInfo.expiresAt && authInfo.expiresAt < Date.now() / 1000) {`
	`60`	`+ throw new InvalidTokenError("Token has expired");`
	`61`	`+ }`
	`62`	`+`
`58`	`63`	`req.auth = authInfo;`
`59`	`64`	`next();`
`60`	`65`	`} catch (error) {`