def test_verify_refresh_token(self):
token = jwt.create_refresh_token(self.user_id, self.agent)
bad_token = token[:len(token) - 3]
self.assertTrue(
jwt.verify_refresh_token(token, self.user_id, self.agent))
self.assertFalse(
jwt.verify_refresh_token(bad_token, self.user_id, self.agent))
def test_verify_refresh_token(self):
token = jwt.create_refresh_token(self.user_id, self.agent)
bad_token = token[:len(token)-3]
self.assertTrue(
jwt.verify_refresh_token(token, self.user_id, self.agent)
)
self.assertFalse(
jwt.verify_refresh_token(bad_token, self.user_id, self.agent)
)
def refresh_auth_token():
data = request.get_json()
agent = request.headers.get('User-Agent')
refresh_token = data.get('refresh_token')
user = api.helpers.get_user()
user_id = user.id
xhr = MakeResponse(200)
if jwt.verify_refresh_token(refresh_token, user_id, agent):
token = jwt.create_token_for_user(user)
xhr.set_body(dict(access_token=token))
return xhr.response
xhr.set_error(
401, "Could not refresh, please try logging out and logging back in.")
return xhr.response
def refresh_auth_token():
data = request.get_json()
agent = request.headers.get('User-Agent')
refresh_token = data.get('refresh_token')
user = api.helpers.get_user()
user_id = user.id
xhr = MakeResponse(200)
if jwt.verify_refresh_token(refresh_token, user_id, agent):
token = jwt.create_token_for_user(user)
xhr.set_body(dict(access_token=token))
return xhr.response
xhr.set_error(
401,
"Could not refresh, please try logging out and logging back in."
)
return xhr.response
