chore: regenerate access token function

Author: fullstackondemand

index.php

@@ -13,6 +13,7 @@
 // Routers
 $app->post('/login/', [UserController::class, 'login']);
 $app->get('/logout/', [UserController::class, 'logout'])->add(Authorization::class);
+$app->post('/refreshtoken/', [UserController::class, 'regenerateAccessToken']);
 $app->group('/category', CategoryRouter::class)->add(Authorization::class);
 $app->group('/user', UserRouter::class)->add(Authorization::class);
 

src/Controller/AbstractAuthController.php

@@ -2,6 +2,8 @@
 declare(strict_types=1);
 namespace RestJS\Controller;
 
+use Firebase\JWT\JWT;
+use Firebase\JWT\Key;
 use RestJS\Message\Response;
 use function RestJS\errorHandler;
 use function RestJS\response;
@@ -63,4 +65,32 @@ public function logout($req, $res) {
 
         return response($req, $res, new Response(message: "User logged out successfully."));
     }
+
+    /** Regenrate Access Token to Refresh Token */
+    public function regenerateAccessToken($req, $res) {
+
+        /** User Refresh Token */
+        $refreshToken = $req->getParsedBody()['refresh_token'] ?? null;
+
+        try {
+            /** Decode Json Web Token */
+            $decodedToken = (array) JWT::decode($refreshToken, new Key($_ENV['REFRESH_TOKEN_SECRET'], 'HS256'));
+        } catch (\Exception $e) {
+            $decodedToken = null;
+        }
+
+        if (!$decodedToken)
+        throw new HttpUnauthorizedException($req, "Invalid access token");
+        
+        /** Check User Entity */
+        $user = $this->_model->findById($decodedToken['id']);
+
+        /** Generated Access Token  */
+        $accessToken = $user->generateAccessToken();
+
+        // Add Authorization Cookies
+        setcookie('SSID', $accessToken, time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY'], path: '/', secure: true, httponly: true);
+
+        return response($req, $res, new Response(message: "User regenrate access token successfully.", data: ['accessToken' => $accessToken]));
+    }
 }

src/Middleware/AbstractAuthMiddleware.php

@@ -23,27 +23,7 @@ public function __construct($user) {
     public function process(Request $req, RequestHandler $handler): ResponseInterface {
 
         /** User Access Token */
-        $token = $_COOKIE['SSID'] ?? str_replace('Bearer ', '', $req->getHeader('Authorization'))[0] ?? $req->getQueryParams()['accessToken'] ?? null;
-
-        /** Server Access Token */
-        $refreshToken = $_COOKIE['RTID'] ?? null;
-
-        // Genrate Access Token to Refresh Token
-        if ($refreshToken && !$token):
-
-            /** Decode Json Web Token */
-            $decodedToken = (array) JWT::decode($refreshToken, new Key($_ENV['REFRESH_TOKEN_SECRET'], 'HS256'));
-
-            /** Check User Entity */
-            $user = $this->_user->findById($decodedToken['id']);
-
-            /** Generated Access Token  */
-            $accessToken = $user->generateAccessToken();
-
-            // Add Authorization Cookies
-            setcookie('SSID', $accessToken, time() + 60 * (int) $_ENV['ACCESS_TOKEN_EXPIRY'], path: '/', secure: true, httponly: true);
-            $token = $accessToken;
-        endif;
+        $token = str_replace('Bearer ', '', $req->getHeader('Authorization'))[0] ?? $req->getQueryParams()['accessToken'] ?? null;
 
         if (!$token)
             throw new HttpUnauthorizedException($req, 'Unauthorized request');