Mirrors/cobalt
1
0
Fork 0
mirror of https://github.com/wukko/cobalt.git synced 2025-06-12 13:17:45 +02:00
Code Issues Packages Projects Releases Wiki Activity

api/jwt: fix timestamp to match the spec

Browse Source
This commit is contained in:
wukko
2024-08-17 17:58:40 +06:00
parent 580ca042f3
commit 9592e59f76
2 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
api/src/security/jwt.js
View File

@ -12,7 +12,7 @@ const makeHmac = (header, payload) =>
.digest("base64url");
export const generate = () => {
const exp = new Date().getTime() + env.jwtLifetime * 1000;
const exp = Math.floor(new Date().getTime() / 1000) + env.jwtLifetime;
const header = toBase64URL(JSON.stringify({
alg: "HS256",
@ -20,7 +20,7 @@ export const generate = () => {
}));
const payload = toBase64URL(JSON.stringify({
jti: nanoid(3),
jti: nanoid(8),
exp,
}));
@ -34,7 +34,7 @@ export const generate = () => {
export const verify = (jwt) => {
const [header, payload, signature] = jwt.split(".", 3);
const timestamp = new Date().getTime();
const timestamp = Math.floor(new Date().getTime() / 1000);
if ([header, payload, signature].join('.') !== jwt) {
return false;