Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: Add listSessions and revokeSession methods to GoTrueClient #1042

Draft
wants to merge 3 commits into
base: master
Choose a base branch
from
Draft

feat: Add listSessions and revokeSession methods to GoTrueClient #1042

Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
02fdf19
feat(sessions): Add listSessions and revokeSession methods to GoTrueC…
nicokempe Mar 22, 2025
90cfbfc
lint(sessions): Update formatting for listSessions and revokeSession …
nicokempe Mar 22, 2025
e6edfeb
Merge branch 'master' into master
nicokempe Mar 27, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
75 changes: 75 additions & 0 deletions src/GoTrueClient.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1824,6 +1824,81 @@ export default class GoTrueClient {
}
}

/**
* Retrieves all active sessions for the current user.
*
* This method calls the GET /sessions endpoint on the GoTrue server.
* It returns a promise that resolves with an object containing an array of Session objects
* or an error if the request fails.
*
* @returns {Promise<{ data: Session[] | null; error: AuthError | null }>} The active sessions and any error encountered.
*/
async listSessions(): Promise<{ data: Session[] | null; error: AuthError | null }> {
await this.initializePromise
return await this._acquireLock(-1, async () => {
return await this._useSession(async (result) => {
const {
data: { session },
error,
} = result
if (error) return { data: null, error }
if (!session) return { data: null, error: new AuthSessionMissingError() }
const { data: sessionsData, error: sessionsError } = await _request(
this.fetch,
'GET',
`${this.url}/sessions`,
{
headers: this.headers,
jwt: session.access_token,
xform: (r) => r,
}
)
if (sessionsError) return { data: null, error: sessionsError }
return { data: sessionsData as Session[], error: null }
})
})
}

/**
* Revokes a specific session for the current user.
*
* This method calls the DELETE /sessions/{sessionId} endpoint on the GoTrue server.
* It sends the request using the current session's access token. If the revoked session is the current one,
* the session is also removed from local storage.
*
* @param {string} sessionId - The unique identifier of the session to revoke.
* @returns {Promise<{ error: AuthError | null }>} An object containing an error if the revocation fails.
*/
async revokeSession(sessionId: string): Promise<{ error: AuthError | null }> {
await this.initializePromise
return await this._acquireLock(-1, async () => {
return await this._useSession(async (result) => {
const {
data: { session },
error,
} = result
if (error) return { error }
if (!session) return { error: new AuthSessionMissingError() }
const { error: revokeError } = await _request(
this.fetch,
'DELETE',
`${this.url}/sessions/${sessionId}`,
{
headers: this.headers,
jwt: session.access_token,
}
)
if (revokeError) return { error: revokeError }
// If the revoked session is the current one, remove it from storage.
const currentSession = session as Session & { id?: string }
if (currentSession.id && currentSession.id === sessionId) {
await this._removeSession()
}
return { error: null }
})
})
}

/**
* Generates a new JWT.
* @param refreshToken A valid refresh token that was returned on login.
Expand Down