Move refresh session to a separate service

Signed-off-by: Nikolai Rodionov <iam@allanger.xyz>
2026-05-27 13:32:21 +02:00
parent 1f62831bd2
commit a9784c3436
5 changed files with 87 additions and 69 deletions
--- a/api/v1/accounts.go
+++ b/api/v1/accounts.go
@@ -1,17 +1,8 @@
 package v1

 import (
-	"context"
-	"errors"
-
 	"gitea.badhouseplants.net/softplayer/softplayer-backend/internal/controllers"
 	accounts "gitea.badhouseplants.net/softplayer/softplayer-go-proto/pkg/accounts/v1"
-	"github.com/golang/protobuf/ptypes/empty"
-	"google.golang.org/grpc"
-	"google.golang.org/grpc/codes"
-	"google.golang.org/grpc/metadata"
-	"google.golang.org/grpc/status"
-	"google.golang.org/protobuf/types/known/emptypb"
 )

 func NewAccountServer(
@@ -29,59 +20,3 @@ type AccountsServer struct {
 	accountsCtrl      *controllers.AccountController
 	authorizationCtrl *controllers.AuthController
 }
-
-func (srv *AccountsServer) RefreshToken(ctx context.Context, in *empty.Empty) (*empty.Empty, error) {
-	claims, err := controllers.ClaimsFromContext(ctx)
-	if err != nil {
-		return nil, status.Error(codes.Aborted, "Context is invalid")
-	}
-
-	if claims.TokenType != controllers.TokenTypeRefresh {
-		return nil, status.Error(codes.Unauthenticated, "Invalid token")
-	}
-
-	session, err := srv.authorizationCtrl.GetSession(ctx, claims.TokenID)
-	if err != nil {
-		if errors.Is(err, controllers.ErrSessionNotFound) {
-			return nil, status.Error(codes.Unauthenticated, "Session doesn't exists")
-		}
-		return nil, status.Error(codes.Internal, "Somethings is broken on our side")
-	}
-
-	if session.UserID != claims.UserID {
-		return nil, status.Error(codes.Unauthenticated, "Invalid session")
-	}
-
-	accessToken, _, err := srv.authorizationCtrl.GenerateToken(&controllers.JWTData{
-		UserID:    claims.UserID,
-		TokenType: controllers.TokenTypeAccess,
-		TokenAud:  controllers.TokenAudWeb,
-	})
-	if err != nil {
-		return nil, status.Error(codes.Aborted, "Couldn't generate an access token")
-	}
-
-	refreshToken, tokenID, err := srv.authorizationCtrl.GenerateToken(&controllers.JWTData{
-		UserID:    claims.UserID,
-		TokenType: controllers.TokenTypeRefresh,
-		TokenAud:  controllers.TokenAudWeb,
-	})
-	if err != nil {
-		return nil, status.Error(codes.Aborted, "Couldn't generate an access token")
-	}
-	newSession := &controllers.Session{UserID: session.UserID}
-
-	if err := srv.authorizationCtrl.SaveSession(ctx, tokenID, newSession); err != nil {
-		return nil, status.Error(codes.Aborted, "Couldn't store session")
-	}
-
-	header := metadata.New(map[string]string{
-		"X-Access-Token":  accessToken,
-		"X-Refresh-Token": refreshToken,
-	})
-	if err := grpc.SetHeader(ctx, header); err != nil {
-		return nil, status.Error(codes.Aborted, "Couldn't set metadata")
-	}
-
-	return &emptypb.Empty{}, nil
-}
--- a/api/v1/refresh_session.go
+++ b/api/v1/refresh_session.go
@@ -0,0 +1,78 @@
+package v1
+
+import (
+	"context"
+	"errors"
+	"fmt"
+
+	"gitea.badhouseplants.net/softplayer/softplayer-backend/internal/controllers"
+	accounts "gitea.badhouseplants.net/softplayer/softplayer-go-proto/pkg/accounts/v1"
+	"google.golang.org/grpc/codes"
+	"google.golang.org/grpc/status"
+)
+
+func NewRefreshSessionServer(
+	authorizationCtrl *controllers.AuthController,
+) *RefreshSessionService {
+	return &RefreshSessionService{
+		authorizationCtrl: authorizationCtrl,
+	}
+}
+
+type RefreshSessionService struct {
+	accounts.UnimplementedRefreshSessionServiceServer
+	authorizationCtrl *controllers.AuthController
+}
+
+func (srv *RefreshSessionService) RefreshSession(ctx context.Context, in *accounts.RefreshSessionRequest) (*accounts.RefreshSessionResponse, error) {
+	fmt.Println(in.GetRefreshToken())
+	claims, err := srv.authorizationCtrl.ParseToken(in.GetRefreshToken())
+	if err != nil {
+		fmt.Println(err)
+		return nil, status.Error(codes.Aborted, "Invalid token is sent")
+	}
+
+	if claims.TokenType != controllers.TokenTypeRefresh {
+		return nil, status.Error(codes.Unauthenticated, "Invalid token")
+	}
+
+	session, err := srv.authorizationCtrl.GetSession(ctx, claims.TokenID)
+	if err != nil {
+		if errors.Is(err, controllers.ErrSessionNotFound) {
+			return nil, status.Error(codes.Unauthenticated, "Session doesn't exists")
+		}
+		return nil, status.Error(codes.Internal, "Somethings is broken on our side")
+	}
+
+	if session.UserID != claims.UserID {
+		return nil, status.Error(codes.Unauthenticated, "Invalid session")
+	}
+
+	accessToken, _, err := srv.authorizationCtrl.GenerateToken(&controllers.JWTData{
+		UserID:    claims.UserID,
+		TokenType: controllers.TokenTypeAccess,
+		TokenAud:  controllers.TokenAudWeb,
+	})
+	if err != nil {
+		return nil, status.Error(codes.Aborted, "Couldn't generate an access token")
+	}
+
+	refreshToken, tokenID, err := srv.authorizationCtrl.GenerateToken(&controllers.JWTData{
+		UserID:    claims.UserID,
+		TokenType: controllers.TokenTypeRefresh,
+		TokenAud:  controllers.TokenAudWeb,
+	})
+	if err != nil {
+		return nil, status.Error(codes.Aborted, "Couldn't generate an access token")
+	}
+	newSession := &controllers.Session{UserID: session.UserID}
+
+	if err := srv.authorizationCtrl.SaveSession(ctx, tokenID, newSession); err != nil {
+		return nil, status.Error(codes.Aborted, "Couldn't store session")
+	}
+
+	return &accounts.RefreshSessionResponse{TokenPair: &accounts.TokenPair{
+		AccessToken:  accessToken,
+		RefreshToken: refreshToken,
+	}}, nil
+}