Skip to content

Commit

Permalink
fix(tokens): add jti to id and refresh tokens
Browse files Browse the repository at this point in the history
  • Loading branch information
@jagregory
jagregory committed Dec 6, 2021
1 parent a8abb9a commit 4f475ad
Showing 1 changed file with 11 additions and 11 deletions.
22 changes: 11 additions & 11 deletions src/services/tokens.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,13 +45,13 @@ export function generateTokens(
return {
AccessToken: jwt.sign(
{
sub,
event_id: eventId,
token_use: "access",
scope: "aws.cognito.signin.user.admin", // TODO: scopes
auth_time: authTime,
jti: uuid.v4(),
client_id: clientId,
event_id: eventId,
jti: uuid.v4(),
scope: "aws.cognito.signin.user.admin", // TODO: scopes
sub,
token_use: "access",
username: user.Username,
},
PrivateKey.pem,
Expand All @@ -64,13 +64,14 @@ export function generateTokens(
),
IdToken: jwt.sign(
{
sub,
"cognito:username": user.Username,
auth_time: authTime,
email: attributeValue("email", user.Attributes),
email_verified: true,
event_id: eventId,
jti: uuid.v4(),
sub,
token_use: "id",
auth_time: authTime,
"cognito:username": user.Username,
email: attributeValue("email", user.Attributes),
...customAttributes,
},
PrivateKey.pem,
Expand All @@ -88,8 +89,7 @@ export function generateTokens(
{
"cognito:username": user.Username,
email: attributeValue("email", user.Attributes),
// something unique for each token
unique: uuid.v4(),
jti: uuid.v4(),
},
PrivateKey.pem,
{
Expand Down

0 comments on commit 4f475ad

Please sign in to comment.