feat(api): finish update-my-email endpoint (#54921)

Co-authored-by: Shaun Hamilton <shauhami020@gmail.com>
2026-03-05 14:00:41 -05:00 · 2024-06-03 09:08:42 +02:00
parent ebf8d8fda9
commit 84a41a4da8
7 changed files with 217 additions and 81 deletions
--- a/api/src/plugins/code-flow-auth.test.ts
+++ b/api/src/plugins/code-flow-auth.test.ts
@@ -2,7 +2,7 @@ import Fastify, { FastifyInstance } from 'fastify';
 import jwt from 'jsonwebtoken';

 import { COOKIE_DOMAIN, JWT_SECRET } from '../utils/env';
-import { AccessToken, createAccessToken } from '../utils/tokens';
+import { type Token, createAccessToken } from '../utils/tokens';
 import cookies, { sign as signCookie, unsign as unsignCookie } from './cookies';
 import codeFlowAuth from './code-flow-auth';

@@ -38,7 +38,7 @@ describe('auth', () => {
      const { value, ...rest } = res.cookies[0]!;
      const unsignedOnce = unsignCookie(value);
      const unsignedTwice = jwt.verify(unsignedOnce.value!, JWT_SECRET) as {
-        accessToken: AccessToken;
+        accessToken: Token;
      };
      expect(unsignedTwice.accessToken).toEqual(token);
      expect(rest).toEqual({
--- a/api/src/plugins/code-flow-auth.ts
+++ b/api/src/plugins/code-flow-auth.ts
@@ -5,14 +5,11 @@ import { isBefore } from 'date-fns';
 import { type user } from '@prisma/client';

 import { COOKIE_DOMAIN, JWT_SECRET } from '../utils/env';
-import { AccessToken } from '../utils/tokens';
+import { type Token } from '../utils/tokens';

 declare module 'fastify' {
  interface FastifyReply {
-    setAccessTokenCookie: (
-      this: FastifyReply,
-      accessToken: AccessToken
-    ) => void;
+    setAccessTokenCookie: (this: FastifyReply, accessToken: Token) => void;
  }

  interface FastifyRequest {
@@ -26,21 +23,18 @@ declare module 'fastify' {
 }

 const codeFlowAuth: FastifyPluginCallback = (fastify, _options, done) => {
-  fastify.decorateReply(
-    'setAccessTokenCookie',
-    function (accessToken: AccessToken) {
-      const signedToken = jwt.sign({ accessToken }, JWT_SECRET);
-      void this.setCookie('jwt_access_token', signedToken, {
-        path: '/',
-        httpOnly: false,
-        secure: false,
-        sameSite: 'lax',
-        domain: COOKIE_DOMAIN,
-        signed: true,
-        maxAge: accessToken.ttl
-      });
-    }
-  );
+  fastify.decorateReply('setAccessTokenCookie', function (accessToken: Token) {
+    const signedToken = jwt.sign({ accessToken }, JWT_SECRET);
+    void this.setCookie('jwt_access_token', signedToken, {
+      path: '/',
+      httpOnly: false,
+      secure: false,
+      sameSite: 'lax',
+      domain: COOKIE_DOMAIN,
+      signed: true,
+      maxAge: accessToken.ttl
+    });
+  });

  const TOKEN_REQUIRED = 'Access token is required for this request';
  const TOKEN_INVALID = 'Your access token is invalid';
@@ -68,7 +62,7 @@ const codeFlowAuth: FastifyPluginCallback = (fastify, _options, done) => {

      const {
        accessToken: { created, ttl, userId }
-      } = jwt.decode(jwtAccessToken!) as { accessToken: AccessToken };
+      } = jwt.decode(jwtAccessToken!) as { accessToken: Token };
      const valid = isBefore(Date.now(), Date.parse(created) + ttl);
      if (!valid) return send401(reply, TOKEN_EXPIRED);