From 0763153865e2157e0d06c946993dd8b235b06c83 Mon Sep 17 00:00:00 2001 From: nsfisis Date: Wed, 3 Dec 2025 05:45:41 +0900 Subject: feat(auth): add refresh token endpoint MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Implement refresh token functionality for authentication: - Add refresh_tokens table to database schema with user reference - Generate migration for the new table - Login endpoint now returns both access token and refresh token - Add POST /api/auth/refresh endpoint with token rotation - Refresh tokens are hashed (SHA256) before storage for security - Tokens expire after 7 days, access tokens after 15 minutes - Update tests to cover new functionality 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude --- pkgs/server/drizzle/meta/_journal.json | 7 +++++++ 1 file changed, 7 insertions(+) (limited to 'pkgs/server/drizzle/meta/_journal.json') diff --git a/pkgs/server/drizzle/meta/_journal.json b/pkgs/server/drizzle/meta/_journal.json index 6448a8c..f245fa6 100644 --- a/pkgs/server/drizzle/meta/_journal.json +++ b/pkgs/server/drizzle/meta/_journal.json @@ -8,6 +8,13 @@ "when": 1764706245996, "tag": "0000_cynical_zeigeist", "breakpoints": true + }, + { + "idx": 1, + "version": "7", + "when": 1764708169736, + "tag": "0001_spotty_jane_foster", + "breakpoints": true } ] } \ No newline at end of file -- cgit v1.2.3-70-g09d2