fix(auth): handle when token is expired

src/middlewares/authenticate.js

@@ -0,0 +1,30 @@
+const {AUTH_CLIENT_SECRET} = process.env;
+const jwt = require('jsonwebtoken');
+
+const authenticate = () => (req, res, next) => {
+    const {split} = require('lodash');
+    const header = req.get('Authorization');
+    if (!header) {
+        return res.sendStatus(401);
+    }
+    const token = split(header, /\s+/).pop();
+    if (!token) {
+        return res.sendStatus(401);
+    }
+    try {
+        req.user = jwt.verify(token, AUTH_CLIENT_SECRET);
+        next();
+    } catch (err) {
+        if (err instanceof jwt.TokenExpiredError) {
+            res.status(401).send({tokenExpired: true});
+            return;
+        }
+        if (err instanceof jwt.JsonWebTokenError) {
+            res.status(400).send({tokenError: err.message});
+            return;
+        }
+        next(err);
+    }
+};
+
+module.exports = authenticate;

src/routes/index.js

@@ -1,32 +1,12 @@
-const {AUTH_CLIENT_SECRET} = process.env;
 const {Router} = require('express');
-const jwt = require('jsonwebtoken');
 const pkg = require('../../package');
 
-const authenticate = (req, res, next) => {
-    const {split} = require('lodash');
-    const header = req.get('Authorization');
-    if (!header) {
-        return res.sendStatus(401);
-    }
-    const token = split(header, /\s+/).pop();
-    if (!token) {
-        return res.sendStatus(401);
-    }
-    try {
-        req.user = jwt.decode(token);
-        jwt.verify(token, AUTH_CLIENT_SECRET);
-        next();
-    } catch (err) {
-        next(err);
-    }
-};
-
+const authenticate = require('../middlewares/authenticate');
 
 class Routes {
     static configure(app) {
         app.get('/ping', (req, res) => res.send({version: pkg.version}));
-        app.use('/sync', authenticate, require('./sync')(Router()));
+        app.use('/sync', authenticate(), require('./sync')(Router()));
     }
 }