imacat/lucia-frontend
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compute refresh token expiry fresh on each sign-in

Browse Source 
The expiry date was computed once at store init time and went stale
in long-running SPA sessions.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
依瑪貓
2026-03-07 17:49:14 +08:00
parent ba7c1c7cd0
commit 5b3130ea9c
2 changed files with 3 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
tests/stores/login.test.js
View File

@@ -249,16 +249,4 @@ describe('loginStore', () => {
});
});
describe('expired', () => {
it('is approximately 6 months in the future', () => {
const now = new Date();
const sixMonthsLater = new Date(now);
sixMonthsLater.setMonth(sixMonthsLater.getMonth() + 6);
const expiredDate = new Date(store.expired);
// Allow 1 day tolerance
const diffMs = Math.abs(expiredDate.getTime() - sixMonthsLater.getTime());
expect(diffMs).toBeLessThan(24 * 60 * 60 * 1000);
});
});
});