fix: send back refresh token after a sign-in with pat (#412)

* fix: send back refresh token after a signin with pat * chore: add changeset
nhost · Sep 15, 2023 · 4eff7f4 · 4eff7f4
1 parent 44c7d9e
commit 4eff7f4
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 3 deletions.
diff --git a/.changeset/pink-pans-jump.md b/.changeset/pink-pans-jump.md
@@ -0,0 +1,5 @@
+---
+'hasura-auth': patch
+---
+
+fix: send back refresh token upon sign-in with pat
diff --git a/src/routes/signin/pat.ts b/src/routes/signin/pat.ts
@@ -1,6 +1,12 @@
 import { sendError } from '@/errors';
 import { logger } from '@/logger';
-import { ENV, createHasuraAccessToken, getUser, getUserByPAT } from '@/utils';
+import {
+  ENV,
+  createHasuraAccessToken,
+  getNewRefreshToken,
+  getUser,
+  getUserByPAT,
+} from '@/utils';
 import { personalAccessToken } from '@/validation';
 import { RequestHandler } from 'express';
 import Joi from 'joi';
@@ -28,13 +34,17 @@ export const signInPATHandler: RequestHandler<
     const accessToken = await createHasuraAccessToken(user);
     const sessionUser = await getUser({ userId: user.id });
 
+    const { refreshToken, id: refreshTokenId } = await getNewRefreshToken(
+      user.id
+    );
+
     return res.send({
       mfa: null,
       session: {
         accessToken,
         accessTokenExpiresIn: ENV.AUTH_ACCESS_TOKEN_EXPIRES_IN,
-        refreshToken: null,
-        refreshTokenId: null,
+        refreshToken: refreshToken,
+        refreshTokenId: refreshTokenId,
         user: sessionUser,
       },
     });