tildefriends/core/auth.js

import * as core from './core.js';
import * as form from './form.js';

const kRefreshInterval = 1 * 7 * 24 * 60 * 60 * 1000;

/**
 * Makes a Base64 value URL safe
 * @param {string} value
 * @returns TODOC
 */
function b64url(value) {
	value = value.replaceAll('+', '-').replaceAll('/', '_');
	let equals = value.indexOf('=');

	if (equals !== -1) {
		return value.substring(0, equals);
	} else {
		return value;
	}
}

/**
 * TODOC
 * @param {string} value
 * @returns
 */
function unb64url(value) {
	value = value.replaceAll('-', '+').replaceAll('_', '/');
	let remainder = value.length % 4;

	if (remainder == 3) {
		return value + '=';
	} else if (remainder == 2) {
		return value + '==';
	} else {
		return value;
	}
}

/**
 * Creates a JSON Web Token
 * @param {object} payload Object: {"name": "username"}
 * @returns the JWT
 */
function makeJwt(payload) {
	const ids = ssb.getIdentities(':auth');
	let id;

	if (ids?.length) {
		id = ids[0];
	} else {
		id = ssb.createIdentity(':auth');
	}

	const final_payload = b64url(
		base64Encode(
			JSON.stringify(
				Object.assign({}, payload, {
					exp: new Date().valueOf() + kRefreshInterval,
				})
			)
		)
	);
	const jwt = [
		b64url(base64Encode(JSON.stringify({alg: 'HS256', typ: 'JWT'}))),
		final_payload,
		b64url(ssb.hmacsha256sign(final_payload, ':auth', id)),
	].join('.');
	return jwt;
}

/**
 * Validates a JWT ?
 * @param {*} session TODOC
 * @returns
 */
function readSession(session) {
	let jwt_parts = session?.split('.');

	if (jwt_parts?.length === 3) {
		let [header, payload, signature] = jwt_parts;
		header = JSON.parse(utf8Decode(base64Decode(unb64url(header))));

		if (header.typ === 'JWT' && header.alg === 'HS256') {
			signature = unb64url(signature);
			let id = ssb.getIdentities(':auth');

			if (id?.length && ssb.hmacsha256verify(id[0], payload, signature)) {
				const result = JSON.parse(utf8Decode(base64Decode(unb64url(payload))));
				const now = new Date().valueOf();

				if (now < result.exp) {
					print(`JWT valid for another ${(result.exp - now) / 1000} seconds.`);
					return result;
				} else {
					print(`JWT expired by ${(now - result.exp) / 1000} seconds.`);
				}
			} else {
				print('JWT verification failed.');
			}
		} else {
			print('Invalid JWT header.');
		}
	}
}

/**
 * TODOC
 * @param {*} headers most likely an object
 * @returns
 */
function getCookies(headers) {
	let cookies = {};

	if (headers.cookie) {
		let parts = headers.cookie.split(/,|;/);
		for (let i in parts) {
			let equals = parts[i].indexOf('=');
			let name = parts[i].substring(0, equals).trim();
			let value = parts[i].substring(equals + 1).trim();
			cookies[name] = value;
		}
	}

	return cookies;
}

/**
 * Gets a user's permissions based on it's session ?
 * @param {*} session TODOC
 * @returns
 */
function getPermissions(session) {
	let permissions;
	let entry = readSession(session);
	if (entry) {
		permissions = getPermissionsForUser(entry.name);
		permissions.authenticated = entry.name !== 'guest';
	}
	return permissions || {};
}

/**
 * Get a user's permissions ?
 * @param {string} userName TODOC
 * @returns
 */
function getPermissionsForUser(userName) {
	let permissions = {};
	if (
		core.globalSettings &&
		core.globalSettings.permissions &&
		core.globalSettings.permissions[userName]
	) {
		for (let i in core.globalSettings.permissions[userName]) {
			permissions[core.globalSettings.permissions[userName][i]] = true;
		}
	}
	return permissions;
}

/**
 * TODOC
 * @param {*} headers
 * @returns
 */
function query(headers) {
	let session = getCookies(headers).session;
	let entry;
	let autologin = tildefriends.args.autologin;
	if ((entry = autologin ? {name: autologin} : readSession(session))) {
		return {
			session: entry,
			permissions: autologin
				? getPermissionsForUser(autologin)
				: getPermissions(session),
		};
	}
}

/**
 * Refreshes a JWT ?
 * @param {*} credentials TODOC
 * @returns
 */
function makeRefresh(credentials) {
	if (credentials?.session?.name) {
		return {
			token: makeJwt({name: credentials.session.name}),
			interval: kRefreshInterval,
		};
	}
}

export {query, makeRefresh};
require -> import git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3904 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-06-18 13:39:08 -04:00			`import * as core from './core.js';`
			`import * as form from './form.js';`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00
Refresh the JWT on websocket connect. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3993 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-10-04 21:20:47 -04:00			`const kRefreshInterval = 1 * 7 * 24 * 60 * 60 * 1000;`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`/**`
			`* Makes a Base64 value URL safe`
Merge branch 'master' into prettier 2024-02-22 15:23:39 -05:00			`* @param {string} value`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`* @returns TODOC`
			`*/`
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`function b64url(value) {`
			`value = value.replaceAll('+', '-').replaceAll('/', '_');`
			`let equals = value.indexOf('=');`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`if (equals !== -1) {`
			`return value.substring(0, equals);`
			`} else {`
			`return value;`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`}`
			`}`

doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`/**`
			`* TODOC`
Merge branch 'master' into prettier 2024-02-22 15:23:39 -05:00			`* @param {string} value`
			`* @returns`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`*/`
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`function unb64url(value) {`
			`value = value.replaceAll('-', '+').replaceAll('_', '/');`
			`let remainder = value.length % 4;`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`if (remainder == 3) {`
			`return value + '=';`
			`} else if (remainder == 2) {`
			`return value + '==';`
			`} else {`
			`return value;`
			`}`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`}`

doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`/**`
			`* Creates a JSON Web Token`
			`* @param {object} payload Object: {"name": "username"}`
			`* @returns the JWT`
			`*/`
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`function makeJwt(payload) {`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`const ids = ssb.getIdentities(':auth');`
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`let id;`
Merge branch 'master' into prettier 2024-02-22 15:23:39 -05:00
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`if (ids?.length) {`
			`id = ids[0];`
			`} else {`
			`id = ssb.createIdentity(':auth');`
			`}`

Run prettier. 2024-02-24 11:09:34 -05:00			`const final_payload = b64url(`
			`base64Encode(`
			`JSON.stringify(`
			`Object.assign({}, payload, {`
			`exp: new Date().valueOf() + kRefreshInterval,`
			`})`
			`)`
			`)`
			`);`
			`const jwt = [`
			`b64url(base64Encode(JSON.stringify({alg: 'HS256', typ: 'JWT'}))),`
			`final_payload,`
			`b64url(ssb.hmacsha256sign(final_payload, ':auth', id)),`
			`].join('.');`
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`return jwt;`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`}`

doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`/**`
			`* Validates a JWT ?`
			`* @param {*} session TODOC`
Merge branch 'master' into prettier 2024-02-22 15:23:39 -05:00			`* @returns`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`*/`
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`function readSession(session) {`
			`let jwt_parts = session?.split('.');`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`if (jwt_parts?.length === 3) {`
			`let [header, payload, signature] = jwt_parts;`
Expose bip39 to script, and fix some things around base64 so that I can round trip it properly. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@4729 ed5197a5-7fde-0310-b194-c3ffbd925b24 2024-01-03 12:25:34 -05:00			`header = JSON.parse(utf8Decode(base64Decode(unb64url(header))));`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`if (header.typ === 'JWT' && header.alg === 'HS256') {`
			`signature = unb64url(signature);`
			`let id = ssb.getIdentities(':auth');`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`if (id?.length && ssb.hmacsha256verify(id[0], payload, signature)) {`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`const result = JSON.parse(utf8Decode(base64Decode(unb64url(payload))));`
Run prettier. 2024-02-24 11:09:34 -05:00			`const now = new Date().valueOf();`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00
Refresh the JWT on websocket connect. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3993 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-10-04 21:20:47 -04:00			`if (now < result.exp) {`
			print(`JWT valid for another ${(result.exp - now) / 1000} seconds.`);
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`return result;`
			`} else {`
Refresh the JWT on websocket connect. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3993 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-10-04 21:20:47 -04:00			print(`JWT expired by ${(now - result.exp) / 1000} seconds.`);
Make auth use JWTs. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3991 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-09-28 19:52:44 -04:00			`}`
			`} else {`
			`print('JWT verification failed.');`
			`}`
			`} else {`
			`print('Invalid JWT header.');`
			`}`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`}`
			`}`

doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`/**`
			`* TODOC`
			`* @param {*} headers most likely an object`
Merge branch 'master' into prettier 2024-02-22 15:23:39 -05:00			`* @returns`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`*/`
Use proper js modules for apps. Kludge enough things to make things seem to work. Need to apply this to core still. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3862 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-03-17 21:24:29 -04:00			`function getCookies(headers) {`
Modernize. All core JS is modules. var => let. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@4155 ed5197a5-7fde-0310-b194-c3ffbd925b24 2023-01-28 17:44:45 -05:00			`let cookies = {};`
Use proper js modules for apps. Kludge enough things to make things seem to work. Need to apply this to core still. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3862 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-03-17 21:24:29 -04:00
			`if (headers.cookie) {`
Modernize. All core JS is modules. var => let. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@4155 ed5197a5-7fde-0310-b194-c3ffbd925b24 2023-01-28 17:44:45 -05:00			`let parts = headers.cookie.split(/,\|;/);`
			`for (let i in parts) {`
Run prettier. 2024-02-24 11:09:34 -05:00			`let equals = parts[i].indexOf('=');`
Modernize. All core JS is modules. var => let. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@4155 ed5197a5-7fde-0310-b194-c3ffbd925b24 2023-01-28 17:44:45 -05:00			`let name = parts[i].substring(0, equals).trim();`
			`let value = parts[i].substring(equals + 1).trim();`
Use proper js modules for apps. Kludge enough things to make things seem to work. Need to apply this to core still. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3862 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-03-17 21:24:29 -04:00			`cookies[name] = value;`
			`}`
			`}`

			`return cookies;`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`}`

doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`/**`
			`* Gets a user's permissions based on it's session ?`
			`* @param {*} session TODOC`
Merge branch 'master' into prettier 2024-02-22 15:23:39 -05:00			`* @returns`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`*/`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`function getPermissions(session) {`
Modernize. All core JS is modules. var => let. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@4155 ed5197a5-7fde-0310-b194-c3ffbd925b24 2023-01-28 17:44:45 -05:00			`let permissions;`
			`let entry = readSession(session);`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`if (entry) {`
			`permissions = getPermissionsForUser(entry.name);`
Run prettier. 2024-02-24 11:09:34 -05:00			`permissions.authenticated = entry.name !== 'guest';`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`}`
			`return permissions \|\| {};`
			`}`

doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`/**`
			`* Get a user's permissions ?`
			`* @param {string} userName TODOC`
Merge branch 'master' into prettier 2024-02-22 15:23:39 -05:00			`* @returns`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`*/`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`function getPermissionsForUser(userName) {`
Modernize. All core JS is modules. var => let. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@4155 ed5197a5-7fde-0310-b194-c3ffbd925b24 2023-01-28 17:44:45 -05:00			`let permissions = {};`
Run prettier. 2024-02-24 11:09:34 -05:00			`if (`
			`core.globalSettings &&`
			`core.globalSettings.permissions &&`
			`core.globalSettings.permissions[userName]`
			`) {`
Modernize. All core JS is modules. var => let. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@4155 ed5197a5-7fde-0310-b194-c3ffbd925b24 2023-01-28 17:44:45 -05:00			`for (let i in core.globalSettings.permissions[userName]) {`
Use proper js modules for apps. Kludge enough things to make things seem to work. Need to apply this to core still. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3862 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-03-17 21:24:29 -04:00			`permissions[core.globalSettings.permissions[userName][i]] = true;`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`}`
			`}`
			`return permissions;`
			`}`

doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`/**`
			`* TODOC`
Merge branch 'master' into prettier 2024-02-22 15:23:39 -05:00			`* @param {*} headers`
			`* @returns`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`*/`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`function query(headers) {`
Modernize. All core JS is modules. var => let. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@4155 ed5197a5-7fde-0310-b194-c3ffbd925b24 2023-01-28 17:44:45 -05:00			`let session = getCookies(headers).session;`
			`let entry;`
			`let autologin = tildefriends.args.autologin;`
Run prettier. 2024-02-24 11:09:34 -05:00			`if ((entry = autologin ? {name: autologin} : readSession(session))) {`
Refresh the JWT on websocket connect. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3993 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-10-04 21:20:47 -04:00			`return {`
			`session: entry,`
Run prettier. 2024-02-24 11:09:34 -05:00			`permissions: autologin`
			`? getPermissionsForUser(autologin)`
			`: getPermissions(session),`
Refresh the JWT on websocket connect. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3993 ed5197a5-7fde-0310-b194-c3ffbd925b24 2022-10-04 21:20:47 -04:00			`};`
sandboxos => tildefriends git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@3157 ed5197a5-7fde-0310-b194-c3ffbd925b24 2016-03-12 13:50:43 -05:00			`}`
			`}`

doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`/**`
			`* Refreshes a JWT ?`
			`* @param {*} credentials TODOC`
Merge branch 'master' into prettier 2024-02-22 15:23:39 -05:00			`* @returns`
doc: add JSDoc annotations in the core folder start documenting a bit, mostly inconsequential changes 2024-02-19 13:12:42 -05:00			`*/`
			`function makeRefresh(credentials) {`
Don't put a JWT in core.user. git-svn-id: https://www.unprompted.com/svn/projects/tildefriends/trunk@4348 ed5197a5-7fde-0310-b194-c3ffbd925b24 2023-07-16 18:03:47 -04:00			`if (credentials?.session?.name) {`
			`return {`
			`token: makeJwt({name: credentials.session.name}),`
			`interval: kRefreshInterval,`
			`};`
			`}`
			`}`

Move the auth handler out of JS. #7 2024-03-31 16:15:50 -04:00			`export {query, makeRefresh};`