Cambios en refresh token para no dar error. No actualiza access token de la cookie/session. Elimina access token de la cookie para forzar cerrar la session en caso de error

2026-03-23 10:20:48 -04:00
parent 0666877811
commit f88ab2a971
7 changed files with 85 additions and 127 deletions
--- a/apps/api/src/features/auth/auth.controller.ts
+++ b/apps/api/src/features/auth/auth.controller.ts
@@ -8,7 +8,7 @@ import { AuthService } from './auth.service';

@Controller('auth')
 export class AuthController {
-  constructor(private readonly authService: AuthService) {}
+  constructor(private readonly authService: AuthService) { }

  @Public()
  @HttpCode(200)
@@ -28,6 +28,8 @@ export class AuthController {
    return await this.authService.signIn(signInUserDto);
  }

+  @Public()
+  @HttpCode(200)
  @Post('sign-out')
  //@RequirePermissions('auth:sign-out')
  async signOut(@Body() signOutUserDto: SignOutUserDto) {
@@ -47,6 +49,10 @@ export class AuthController {
  @Patch('refresh')
  //@RequirePermissions('auth:refresh-token')
  async refreshToken(@Body() refreshTokenDto: any) {
+    // console.log('REFRESCANDO');
+    // console.log(refreshTokenDto);
+    // console.log('-----------');
+
    return await this.authService.refreshToken(refreshTokenDto);
  }

--- a/apps/api/src/features/auth/auth.service.ts
+++ b/apps/api/src/features/auth/auth.service.ts
@@ -40,7 +40,7 @@ export class AuthService {
    private readonly config: ConfigService<Env>,
    @Inject(DRIZZLE_PROVIDER) private drizzle: NodePgDatabase<typeof schema>,
    private readonly mailService: MailService,
-  ) {}
+  ) { }

  //Decode Tokens
  // Método para decodificar el token y obtener los datos completos