Add debug logs for GetInfoFromAccessToken

nkshah2 · nkshah2 · commit 51a6dec080e6 · 2023-05-22T12:10:58.000+05:30
diff --git a/recipe/session/accessToken.go b/recipe/session/accessToken.go
@@ -21,6 +21,7 @@ import (
 	"github.com/golang-jwt/jwt/v4"
 	sterrors "github.com/supertokens/supertokens-golang/recipe/session/errors"
 	"github.com/supertokens/supertokens-golang/recipe/session/sessmodels"
+	"github.com/supertokens/supertokens-golang/supertokens"
 	"strings"
 )
 
@@ -41,6 +42,7 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,
 	if jwtInfo.Version >= 3 {
 		parsedToken, parseError := jwt.Parse(jwtInfo.RawTokenString, jwks.Keyfunc)
 		if parseError != nil {
+			supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token parsing failed")
 			return nil, sterrors.TryRefreshTokenError{
 				Msg: parseError.Error(),
 			}
@@ -49,6 +51,7 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,
 		if parsedToken.Valid {
 			claims, ok := parsedToken.Claims.(jwt.MapClaims)
 			if !ok {
+				supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token claims are invalid")
 				return nil, sterrors.TryRefreshTokenError{
 					Msg: "Invalid JWT claims",
 				}
@@ -81,6 +84,7 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,
 			}
 
 			if parseErr != nil {
+				supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token parsing failed")
 				return nil, sterrors.TryRefreshTokenError{
 					Msg: parseErr.Error(),
 				}
@@ -89,6 +93,7 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,
 			if parsedToken.Valid {
 				claims, ok := parsedToken.Claims.(jwt.MapClaims)
 				if !ok {
+					supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token claims are invalid")
 					return nil, sterrors.TryRefreshTokenError{
 						Msg: "Invalid JWT claims",
 					}
@@ -107,13 +112,15 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,
 	}
 
 	if payload == nil {
+		supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token JWT has no payload")
 		return nil, sterrors.TryRefreshTokenError{
 			Msg: "Invalid JWT",
 		}
 	}
 
 	err := ValidateAccessTokenStructure(payload, jwtInfo.Version)
 	if err != nil {
+		supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because ValidateAccessTokenStructure returned an error")
 		return nil, sterrors.TryRefreshTokenError{
 			Msg: err.Error(),
 		}
@@ -142,12 +149,14 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,
 	antiCsrfToken := sanitizeStringInput(payload["antiCsrfToken"])
 
 	if antiCsrfToken == nil && doAntiCsrfCheck {
+		supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access does not contain the anti-csrf token.")
 		return nil, sterrors.TryRefreshTokenError{
 			Msg: "Access token does not contain the anti-csrf token.",
 		}
 	}
 
 	if expiryTime < GetCurrTimeInMS() {
+		supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access is expired")
 		return nil, sterrors.TryRefreshTokenError{
 			Msg: "Access token expired",
 		}

Original file line number	Diff line number	Diff line change
`@@ -21,6 +21,7 @@ import (`
`21`	`21`	`"github.com/golang-jwt/jwt/v4"`
`22`	`22`	`sterrors "github.com/supertokens/supertokens-golang/recipe/session/errors"`
`23`	`23`	`"github.com/supertokens/supertokens-golang/recipe/session/sessmodels"`
	`24`	`+ "github.com/supertokens/supertokens-golang/supertokens"`
`24`	`25`	`"strings"`
`25`	`26`	`)`
`26`	`27`
`@@ -41,6 +42,7 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,`
`41`	`42`	`if jwtInfo.Version >= 3 {`
`42`	`43`	`parsedToken, parseError := jwt.Parse(jwtInfo.RawTokenString, jwks.Keyfunc)`
`43`	`44`	`if parseError != nil {`
	`45`	`+ supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token parsing failed")`
`44`	`46`	`return nil, sterrors.TryRefreshTokenError{`
`45`	`47`	`Msg: parseError.Error(),`
`46`	`48`	`}`
`@@ -49,6 +51,7 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,`
`49`	`51`	`if parsedToken.Valid {`
`50`	`52`	`claims, ok := parsedToken.Claims.(jwt.MapClaims)`
`51`	`53`	`if !ok {`
	`54`	`+ supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token claims are invalid")`
`52`	`55`	`return nil, sterrors.TryRefreshTokenError{`
`53`	`56`	`Msg: "Invalid JWT claims",`
`54`	`57`	`}`
`@@ -81,6 +84,7 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,`
`81`	`84`	`}`
`82`	`85`
`83`	`86`	`if parseErr != nil {`
	`87`	`+ supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token parsing failed")`
`84`	`88`	`return nil, sterrors.TryRefreshTokenError{`
`85`	`89`	`Msg: parseErr.Error(),`
`86`	`90`	`}`
`@@ -89,6 +93,7 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,`
`89`	`93`	`if parsedToken.Valid {`
`90`	`94`	`claims, ok := parsedToken.Claims.(jwt.MapClaims)`
`91`	`95`	`if !ok {`
	`96`	`+ supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token claims are invalid")`
`92`	`97`	`return nil, sterrors.TryRefreshTokenError{`
`93`	`98`	`Msg: "Invalid JWT claims",`
`94`	`99`	`}`
`@@ -107,13 +112,15 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,`
`107`	`112`	`}`
`108`	`113`
`109`	`114`	`if payload == nil {`
	`115`	`+ supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access token JWT has no payload")`
`110`	`116`	`return nil, sterrors.TryRefreshTokenError{`
`111`	`117`	`Msg: "Invalid JWT",`
`112`	`118`	`}`
`113`	`119`	`}`
`114`	`120`
`115`	`121`	`err := ValidateAccessTokenStructure(payload, jwtInfo.Version)`
`116`	`122`	`if err != nil {`
	`123`	`+ supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because ValidateAccessTokenStructure returned an error")`
`117`	`124`	`return nil, sterrors.TryRefreshTokenError{`
`118`	`125`	`Msg: err.Error(),`
`119`	`126`	`}`
`@@ -142,12 +149,14 @@ func GetInfoFromAccessToken(jwtInfo sessmodels.ParsedJWTInfo, jwks keyfunc.JWKS,`
`142`	`149`	`antiCsrfToken := sanitizeStringInput(payload["antiCsrfToken"])`
`143`	`150`
`144`	`151`	`if antiCsrfToken == nil && doAntiCsrfCheck {`
	`152`	`+ supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access does not contain the anti-csrf token.")`
`145`	`153`	`return nil, sterrors.TryRefreshTokenError{`
`146`	`154`	`Msg: "Access token does not contain the anti-csrf token.",`
`147`	`155`	`}`
`148`	`156`	`}`
`149`	`157`
`150`	`158`	`if expiryTime < GetCurrTimeInMS() {`
	`159`	`+ supertokens.LogDebugMessage("GetInfoFromAccessToken: Returning TryRefreshTokenError because access is expired")`
`151`	`160`	`return nil, sterrors.TryRefreshTokenError{`
`152`	`161`	`Msg: "Access token expired",`
`153`	`162`	`}`