Detect expired token

Zoltán Takács · Zoltán Takács · commit 3fac1f572660 · 2019-03-27T09:15:02.000+01:00
diff --git a/src/login/renew.js b/src/login/renew.js
@@ -3,7 +3,13 @@ const jwt = require('jsonwebtoken');
 module.exports = (req, res) => {
   const { prevJwt } = req.body;
 
-  const { userId } = jwt.verify(prevJwt, 'almafa');
+  let userId = null;
+
+  try {
+    userId = jwt.verify(token, 'almafa').userId;
+  } catch {
+    throw new Error('Unauthorized|401|UNAUTHORIZED');
+  }
 
   const me = req.context.memoryStorage.getUserById(userId);
 
diff --git a/src/middlewares/auth.js b/src/middlewares/auth.js
@@ -7,9 +7,11 @@ const auth = (req, res, next) => {
     throw new Error('Unauthorized|401|UNAUTHORIZED');
   }
 
-  const { userId } = jwt.verify(token, 'almafa');
+  let userId = null;
 
-  if (!userId) {
+  try {
+    userId = jwt.verify(token, 'almafa').userId;
+  } catch {
     throw new Error('Unauthorized|401|UNAUTHORIZED');
   }
 

Original file line number	Diff line number	Diff line change
`@@ -7,9 +7,11 @@ const auth = (req, res, next) => {`
`7`	`7`	`throw new Error('Unauthorized\|401\|UNAUTHORIZED');`
`8`	`8`	`}`
`9`	`9`
`10`		`- const { userId } = jwt.verify(token, 'almafa');`
	`10`	`+ let userId = null;`
`11`	`11`
`12`		`- if (!userId) {`
	`12`	`+ try {`
	`13`	`+ userId = jwt.verify(token, 'almafa').userId;`
	`14`	`+ } catch {`
`13`	`15`	`throw new Error('Unauthorized\|401\|UNAUTHORIZED');`
`14`	`16`	`}`
`15`	`17`