getSession serverside don't trigger visibilityChange event to refresh token #4038

killjoy2013 · 2022-02-21T19:36:40Z

killjoy2013
Feb 21, 2022

Question 💬

Hi,
Using "next-auth": "^4.2.1", with CredentialsProvider. Already implemented token rotation and is working alright. On the client side, useSession hook refreshes the session token when it expires. I need to obtain the token to use in my GraphQL query in getServerSideProps like this;

  const session = await getSession({
    req,
    broadcast: true,
    triggerEvent: true,
    event: 'visibilitychange',
  });

  if (!session) {
    return {
      redirect: {
        destination: '/login',
        permenant: false,
      },
    };
  }

  const token = await getToken({
    req,
    secret: process.env.TOKEN_SECRET,
    raw: true,
  });

As long as I keep the same browser open, this works fine. However, If I close the browser, and come back after token expiresIn period, open a new browser and navigate directly to my page http://localhost:3000/cities, old token, wich was in the session cookie when I've closed the browser, returns from getToken. I'm expecting calling getSession with trigger & event parameters would force jwt process and creates a new token, as in client side. Am I missing anything? What are the purpose of event, triggerEvent & broadcast parameters then?
Thanks in advance

How to reproduce ☕️

use the code below in getServerSideProps. Navigate to your page directly, like http://localhost:3000/cities after token life time.

  const session = await getSession({
    req,
    broadcast: true,
    triggerEvent: true,
    event: 'visibilitychange',
  });

  if (!session) {
    return {
      redirect: {
        destination: '/login',
        permenant: false,
      },
    };
  }

  const token = await getToken({
    req,
    secret: process.env.TOKEN_SECRET,
    raw: true,
  });

Contributing 🙌🏽

No, I am afraid I cannot help regarding this

killjoy2013 · 2022-02-22T06:27:03Z

killjoy2013
Feb 22, 2022
Author

Hi @balazsorban44,
I didn't open this as bug. However, do you think that it can be?

0 replies

hannanstd · 2022-03-08T14:06:16Z

hannanstd
Mar 8, 2022

I have this problem too

#4141

1 reply

killjoy2013 Mar 8, 2022
Author

just use getServerSession(ctx), cookie will be updated.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

getSession serverside don't trigger visibilityChange event to refresh token #4038

Uh oh!

{{title}}

Uh oh!

Replies: 2 comments 1 reply

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{editor}}'s edit

{{editor}}'s edit

Uh oh!

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Uh oh!

getSession serverside don't trigger visibilityChange event to refresh token #4038

Uh oh!

killjoy2013 Feb 21, 2022

Question 💬

How to reproduce ☕️

Contributing 🙌🏽

Replies: 2 comments · 1 reply

Uh oh!

killjoy2013 Feb 22, 2022 Author

Uh oh!

Uh oh!

hannanstd Mar 8, 2022

Uh oh!

killjoy2013 Mar 8, 2022 Author

killjoy2013
Feb 21, 2022

Replies: 2 comments 1 reply

killjoy2013
Feb 22, 2022
Author

hannanstd
Mar 8, 2022

killjoy2013 Mar 8, 2022
Author