Added expiration claim to token

2025-04-06 20:25:02 -04:00
parent 14973dfc08
commit 40f8cd770d
1 changed files with 20 additions and 3 deletions
--- a/src/token_stuff/mod.rs
+++ b/src/token_stuff/mod.rs
@@ -4,6 +4,8 @@ use josekit::{
    jwt::{self, JwtPayload},
 };

+use time;
+
 pub const TOKENTYPE: &str = "JWT";
 pub const KEY_ENV: &str = "SECRET_KEY";
 pub const MESSAGE: &str = "Something random";
@@ -16,6 +18,13 @@ pub fn get_key() -> Result<String, dotenvy::Error> {
    Ok(key)
 }

+pub fn get_expiration() -> time::Result<time::Duration> {
+    let now = time::OffsetDateTime::now_utc();
+    let epoch = time::OffsetDateTime::UNIX_EPOCH;
+    let since_the_epoch = now - epoch;
+    Ok(since_the_epoch)
+}
+
 pub fn create_token(provided_key: &String) -> Result<String, josekit::JoseError> {
    let mut header = JwsHeader::new();
    header.set_token_type(TOKENTYPE);
@@ -24,6 +33,16 @@ pub fn create_token(provided_key: &String) -> Result<String, josekit::JoseError>
    payload.set_subject(MESSAGE);
    payload.set_issuer(ISSUER);
    payload.set_audience(vec![AUDIENCE]);
+    match get_expiration() {
+        Ok(duration) => {
+            let expire = duration.whole_seconds();
+            let _ = payload.set_claim(
+                "expiration",
+                Some(serde_json::to_value(expire.to_string()).unwrap()),
+            );
+        }
+        Err(_) => {}
+    };

    let key: String = if provided_key.is_empty() {
        get_key().unwrap()
@@ -32,9 +51,7 @@ pub fn create_token(provided_key: &String) -> Result<String, josekit::JoseError>
    };

    let signer = Hs256.signer_from_bytes(key.as_bytes()).unwrap();
-    let jwt = josekit::jwt::encode_with_signer(&payload, &header, &signer).unwrap();
-
-    Ok(jwt)
+    Ok(josekit::jwt::encode_with_signer(&payload, &header, &signer).unwrap())
 }

 pub fn verify_token(key: &String, token: &String) -> bool {