JWT => Add possibility for no expiry tokens

66a6f6eb · michael.minelli · 81a65c52 · 66a6f6eb · 66a6f6eb
Commit 66a6f6eb authored 2 years ago by michael.minelli
--- a/ExpressAPI/src/config/Config.ts
+++ b/ExpressAPI/src/config/Config.ts
@@ -9,8 +9,9 @@ class Config {
        type: string, host: string, port: number, user: string, password: string, database: string
    };

-    public readonly jwtSecretKey: string;
-    public readonly sessionTimeout: number;
+    public jwtConfig: {
+        secret: string; expiresIn: number;
+    };

    public permissions: {
        teachingStaff: Array<string>;
@@ -33,8 +34,10 @@ class Config {
            database: process.env.DATABASE_NAME
        };

-        this.jwtSecretKey = process.env.JWT_SECRET_KEY;
-        this.sessionTimeout = Number(process.env.SESSION_TIMEOUT);
+        this.jwtConfig = {
+            secret   : process.env.JWT_SECRET_KEY,
+            expiresIn: Number(process.env.SESSION_TIMEOUT)
+        };

        this.permissions = {
            teachingStaff: JSON.parse(process.env.ROLES_WITH_TEACHING_STAFF_PERMISSIONS)

--- a/ExpressAPI/src/controllers/Session.ts
+++ b/ExpressAPI/src/controllers/Session.ts
@@ -40,7 +40,7 @@ class Session {
    }

    private static getToken(profileJson: any): string {
-        return profileJson.id === null ? null : jwt.sign({ profile: profileJson }, Config.jwtSecretKey, { expiresIn: Config.sessionTimeout });
+        return profileJson.id === null ? null : jwt.sign({ profile: profileJson }, Config.jwtConfig.secret, Config.jwtConfig.expiresIn > 0 ? { expiresIn: Config.jwtConfig.expiresIn } : {});
    }

    private async getResponse(code: number, data: any, descriptionOverride?: string): Promise<any> {