From 2bdcd22ad44aed94eb406f788f1546d73fcdf73e Mon Sep 17 00:00:00 2001 From: syuilo Date: Tue, 4 Aug 2020 23:09:48 +0900 Subject: enhance(api): アクセストークンを作成する際、createdAtをlastUsedAtを揃えるようにして、未使用かどうかを判定できるように MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- src/server/api/endpoints/auth/accept.ts | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) (limited to 'src/server/api/endpoints/auth/accept.ts') diff --git a/src/server/api/endpoints/auth/accept.ts b/src/server/api/endpoints/auth/accept.ts index 6cde1a9ecd..e98242a3c3 100644 --- a/src/server/api/endpoints/auth/accept.ts +++ b/src/server/api/endpoints/auth/accept.ts @@ -56,11 +56,13 @@ export default define(meta, async (ps, user) => { sha256.update(accessToken + app.secret); const hash = sha256.digest('hex'); + const now = new Date(); + // Insert access token doc await AccessTokens.save({ id: genId(), - createdAt: new Date(), - lastUsedAt: new Date(), + createdAt: now, + lastUsedAt: now, appId: session.appId, userId: user.id, token: accessToken, -- cgit v1.2.3-freya