Update jwt

quizer-app · Aug 3, 2023 · a28230d · a28230d
1 parent 1b0f070
commit a28230d
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 5 deletions.
diff --git a/controllers/auth/loginController.go b/controllers/auth/loginController.go
@@ -48,15 +48,15 @@ func LoginController(ctx *fiber.Ctx) error {
 		{"email": body.UsernameOrEmail},
 	}}).Decode(&userModel)
 	if err != nil {
-		return ctx.Status(fiber.StatusNotFound).JSON(fiber.Map{
+		return ctx.Status(fiber.StatusConflict).JSON(fiber.Map{
 			"message": "Wrong username or password",
 		})
 	}
 
 	// Check if password is correct
 	argon2id := utils.NewArgon2ID()
 	if ok, err := argon2id.Verify(body.Password, userModel.Password); !ok || err != nil {
-		return ctx.Status(fiber.StatusNotFound).JSON(fiber.Map{
+		return ctx.Status(fiber.StatusConflict).JSON(fiber.Map{
 			"message": "Wrong username or password",
 		})
 	}
@@ -115,9 +115,8 @@ func LoginController(ctx *fiber.Ctx) error {
 		Name:     "refresh_token",
 		Value:    refreshToken,
 		Expires:  jwt.GetRefreshTokenExpirationTime(),
+		Secure:   false,
 		HTTPOnly: true,
-		SameSite: "None",
-		Secure:   true,
 	})
 
 	// Send response

diff --git a/controllers/auth/tokenController.go b/controllers/auth/tokenController.go
@@ -11,6 +11,7 @@ import (
 
 func TokenController(ctx *fiber.Ctx) error {
 	refreshToken := ctx.Cookies("refresh_token")
+
 	if refreshToken == "" {
 		ctx.Status(fiber.StatusUnauthorized).JSON(fiber.Map{
 			"message": "Unauthorized",

diff --git a/jwt/jwt.go b/jwt/jwt.go
@@ -12,7 +12,7 @@ func GetRefreshTokenExpirationTime() time.Time {
 }
 
 func GetAccessTokenExpirationTime() time.Time {
-	return time.Now().Add(time.Minute * 5)
+	return time.Now().Add(time.Second * 5)
 }
 
 func GetRefreshTokenSecret(passwordHash string) string {