diff options
| author | syuilo <syuilotan@yahoo.co.jp> | 2020-08-04 23:09:48 +0900 |
|---|---|---|
| committer | syuilo <syuilotan@yahoo.co.jp> | 2020-08-04 23:09:48 +0900 |
| commit | 2bdcd22ad44aed94eb406f788f1546d73fcdf73e (patch) | |
| tree | e2f493a13d33f9204808913b0d50d121cc8c87aa | |
| parent | Update .dockerignore (#6620) (diff) | |
| download | sharkey-2bdcd22ad44aed94eb406f788f1546d73fcdf73e.tar.gz sharkey-2bdcd22ad44aed94eb406f788f1546d73fcdf73e.tar.bz2 sharkey-2bdcd22ad44aed94eb406f788f1546d73fcdf73e.zip | |
enhance(api): アクセストークンを作成する際、createdAtをlastUsedAtを揃えるようにして、未使用かどうかを判定できるように
| -rw-r--r-- | src/server/api/endpoints/auth/accept.ts | 6 | ||||
| -rw-r--r-- | src/server/api/endpoints/miauth/gen-token.ts | 6 |
2 files changed, 8 insertions, 4 deletions
diff --git a/src/server/api/endpoints/auth/accept.ts b/src/server/api/endpoints/auth/accept.ts index 6cde1a9ecd..e98242a3c3 100644 --- a/src/server/api/endpoints/auth/accept.ts +++ b/src/server/api/endpoints/auth/accept.ts @@ -56,11 +56,13 @@ export default define(meta, async (ps, user) => { sha256.update(accessToken + app.secret); const hash = sha256.digest('hex'); + const now = new Date(); + // Insert access token doc await AccessTokens.save({ id: genId(), - createdAt: new Date(), - lastUsedAt: new Date(), + createdAt: now, + lastUsedAt: now, appId: session.appId, userId: user.id, token: accessToken, diff --git a/src/server/api/endpoints/miauth/gen-token.ts b/src/server/api/endpoints/miauth/gen-token.ts index 6476e79d77..a5fa194008 100644 --- a/src/server/api/endpoints/miauth/gen-token.ts +++ b/src/server/api/endpoints/miauth/gen-token.ts @@ -38,11 +38,13 @@ export default define(meta, async (ps, user) => { // Generate access token const accessToken = secureRndstr(32, true); + const now = new Date(); + // Insert access token doc await AccessTokens.save({ id: genId(), - createdAt: new Date(), - lastUsedAt: new Date(), + createdAt: now, + lastUsedAt: now, session: ps.session, userId: user.id, token: accessToken, |