planka/client/src/utils/access-token-storage.js

import Cookies from 'js-cookie';
import jwtDecode from 'jwt-decode';

import Config from '../constants/Config';

export const setAccessToken = (accessToken) => {
  const { exp } = jwtDecode(accessToken);
  const expires = new Date(exp * 1000);

  Cookies.set(Config.ACCESS_TOKEN_KEY, accessToken, {
    expires,
    secure: window.location.protocol === 'https:',
    sameSite: 'strict',
  });

  Cookies.set(Config.ACCESS_TOKEN_VERSION_KEY, Config.ACCESS_TOKEN_VERSION, {
    expires,
  });
};

export const removeAccessToken = () => {
  Cookies.remove(Config.ACCESS_TOKEN_KEY);
  Cookies.remove(Config.ACCESS_TOKEN_VERSION_KEY);
};

export const getAccessToken = () => {
  let accessToken = Cookies.get(Config.ACCESS_TOKEN_KEY);
  const accessTokenVersion = Cookies.get(Config.ACCESS_TOKEN_VERSION_KEY);

  if (accessToken && accessTokenVersion !== Config.ACCESS_TOKEN_VERSION) {
    removeAccessToken();
    accessToken = undefined;
  }

  return accessToken;
};
feat: Store accessToken in cookies instead of localStorage 2022-04-26 18:01:55 +05:00			`import Cookies from 'js-cookie';`
feat: Improve security of access tokens (#279) Closes #275 2022-08-09 18:03:21 +02:00			`import jwtDecode from 'jwt-decode';`
Initial commit 2019-08-31 04:07:25 +05:00
feat: Store accessToken in cookies instead of localStorage 2022-04-26 18:01:55 +05:00			`import Config from '../constants/Config';`
Initial commit 2019-08-31 04:07:25 +05:00
Update dependencies 2020-03-25 00:15:47 +05:00			`export const setAccessToken = (accessToken) => {`
feat: Improve security of access tokens (#279) Closes #275 2022-08-09 18:03:21 +02:00			`const { exp } = jwtDecode(accessToken);`
			`const expires = new Date(exp * 1000);`

feat: Store accessToken in cookies instead of localStorage 2022-04-26 18:01:55 +05:00			`Cookies.set(Config.ACCESS_TOKEN_KEY, accessToken, {`
feat: Improve security of access tokens (#279) Closes #275 2022-08-09 18:03:21 +02:00			`expires,`
			`secure: window.location.protocol === 'https:',`
			`sameSite: 'strict',`
feat: Store accessToken in cookies instead of localStorage 2022-04-26 18:01:55 +05:00			`});`

feat: Improve security of access tokens (#279) Closes #275 2022-08-09 18:03:21 +02:00			`Cookies.set(Config.ACCESS_TOKEN_VERSION_KEY, Config.ACCESS_TOKEN_VERSION, {`
			`expires,`
			`});`
			`};`
Initial commit 2019-08-31 04:07:25 +05:00
			`export const removeAccessToken = () => {`
feat: Store accessToken in cookies instead of localStorage 2022-04-26 18:01:55 +05:00			`Cookies.remove(Config.ACCESS_TOKEN_KEY);`
feat: Improve security of access tokens (#279) Closes #275 2022-08-09 18:03:21 +02:00			`Cookies.remove(Config.ACCESS_TOKEN_VERSION_KEY);`
			`};`

			`export const getAccessToken = () => {`
			`let accessToken = Cookies.get(Config.ACCESS_TOKEN_KEY);`
			`const accessTokenVersion = Cookies.get(Config.ACCESS_TOKEN_VERSION_KEY);`

			`if (accessToken && accessTokenVersion !== Config.ACCESS_TOKEN_VERSION) {`
			`removeAccessToken();`
			`accessToken = undefined;`
			`}`

			`return accessToken;`
Initial commit 2019-08-31 04:07:25 +05:00			`};`