diff options
Diffstat (limited to 'src/server')
| -rw-r--r-- | src/server/middleware/auth.ts | 14 | ||||
| -rw-r--r-- | src/server/routes/auth.ts | 13 |
2 files changed, 18 insertions, 9 deletions
diff --git a/src/server/middleware/auth.ts b/src/server/middleware/auth.ts index 51b4d9d..bb85b35 100644 --- a/src/server/middleware/auth.ts +++ b/src/server/middleware/auth.ts @@ -2,9 +2,12 @@ import type { Context, Next } from "hono"; import { verify } from "hono/jwt"; import { Errors } from "./error-handler.js"; -const JWT_SECRET = process.env.JWT_SECRET; -if (!JWT_SECRET) { - throw new Error("JWT_SECRET environment variable is required"); +function getJwtSecret(): string { + const secret = process.env.JWT_SECRET; + if (!secret) { + throw new Error("JWT_SECRET environment variable is required"); + } + return secret; } export interface AuthUser { @@ -38,7 +41,10 @@ export async function authMiddleware(c: Context, next: Next) { const token = authHeader.slice(7); try { - const payload = (await verify(token, JWT_SECRET)) as unknown as JWTPayload; + const payload = (await verify( + token, + getJwtSecret(), + )) as unknown as JWTPayload; const user: AuthUser = { id: payload.sub, diff --git a/src/server/routes/auth.ts b/src/server/routes/auth.ts index 25c959b..f0c0428 100644 --- a/src/server/routes/auth.ts +++ b/src/server/routes/auth.ts @@ -15,9 +15,12 @@ import { refreshTokenSchema, } from "../schemas/index.js"; -const JWT_SECRET = process.env.JWT_SECRET; -if (!JWT_SECRET) { - throw new Error("JWT_SECRET environment variable is required"); +function getJwtSecret(): string { + const secret = process.env.JWT_SECRET; + if (!secret) { + throw new Error("JWT_SECRET environment variable is required"); + } + return secret; } const ACCESS_TOKEN_EXPIRES_IN = 60 * 15; // 15 minutes const REFRESH_TOKEN_EXPIRES_IN = 60 * 60 * 24 * 7; // 7 days @@ -101,7 +104,7 @@ export function createAuthRouter(deps: AuthDependencies) { iat: now, exp: now + ACCESS_TOKEN_EXPIRES_IN, }, - JWT_SECRET, + getJwtSecret(), ); // Generate refresh token @@ -165,7 +168,7 @@ export function createAuthRouter(deps: AuthDependencies) { iat: now, exp: now + ACCESS_TOKEN_EXPIRES_IN, }, - JWT_SECRET, + getJwtSecret(), ); // Generate new refresh token (rotation) |