Skip to content

Commit 33d047a

Browse files
fullstackondemandfullstackondemand
committed
fix: rename refresh and access token cookies
1 parent bbb6435 commit 33d047a

File tree

1 file changed

+10
-10
lines changed

1 file changed

+10
-10
lines changed

src/Controller/AbstractAuthController.php

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -47,22 +47,22 @@ public function login($req, $res) {
4747
$refreshToken = $user->generateRefreshToken();
4848

4949
// Add Authorization Cookies
50-
// setcookie('SSID', $accessToken, time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY'], path: '/api', secure: true, httponly: true);
51-
// setcookie('RTID', $refreshToken, time() + 86400 * (int) $_ENV['REFRESH_TOKEN_EXPIRY'], path: '/api', secure: true, httponly: true);
50+
// setcookie('accessToken', $accessToken, time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY'], path: '/api', secure: true, httponly: true);
51+
// setcookie('refreshToken', $refreshToken, time() + 86400 * (int) $_ENV['REFRESH_TOKEN_EXPIRY'], path: '/api', secure: true, httponly: true);
5252

5353
return response($req, $res, new Response(data: [
54-
'userId' => $user->id,
55-
'SSID' => ['token' => $accessToken, 'exp' => time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY']],
56-
'RTID' => ['token' => $refreshToken, 'exp' => time() + 86400 * (int) $_ENV['REFRESH_TOKEN_EXPIRY']]
54+
'user' => $user,
55+
'accessToken' => ['token' => $accessToken, 'exp' => time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY']],
56+
'refreshToken' => ['token' => $refreshToken, 'exp' => time() + 86400 * (int) $_ENV['REFRESH_TOKEN_EXPIRY']]
5757
]));
5858
}
5959

6060
/** Logout Function */
6161
public function logout($req, $res) {
6262

6363
// Remove Authorization Cookies
64-
// setcookie('SSID', '', time() - 100, path: '/api', secure: true, httponly: true);
65-
// setcookie('RTID', '', time() - 100, path: '/api', secure: true, httponly: true);
64+
// setcookie('accessToken', '', time() - 100, path: '/api', secure: true, httponly: true);
65+
// setcookie('refreshToken', '', time() - 100, path: '/api', secure: true, httponly: true);
6666

6767
return response($req, $res, new Response(message: "User logged out successfully."));
6868
}
@@ -71,7 +71,7 @@ public function logout($req, $res) {
7171
public function regenerateAccessToken($req, $res) {
7272

7373
/** User Refresh Token */
74-
$refreshToken = $_COOKIE['RTID'] ?? $req->getParsedBody()['refreshToken'] ?? null;
74+
$refreshToken = $_COOKIE['refreshToken'] ?? $req->getParsedBody()['refreshToken'] ?? null;
7575

7676
try {
7777
/** Decode Json Web Token */
@@ -87,10 +87,10 @@ public function regenerateAccessToken($req, $res) {
8787
$accessToken = $user->generateAccessToken();
8888

8989
// Add Authorization Cookies
90-
// setcookie('SSID', $accessToken, time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY'], path: '/api', secure: true, httponly: true);
90+
// setcookie('accessToken', $accessToken, time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY'], path: '/api', secure: true, httponly: true);
9191

9292
return response($req, $res, new Response(data: [
93-
'SSID' => ['token' => $accessToken, 'exp' => time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY']]
93+
'accessToken' => ['token' => $accessToken, 'exp' => time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY']]
9494
]));
9595
}
9696
}

0 commit comments

Comments
 (0)