fix: don't use session.user object in _getAuthenticatorAssuranceLevel()

Causing warnings
supabase · May 14, 2024 · 0baa856 · 0baa856
1 parent 4ecfdda
commit 0baa856
Showing 1 changed file with 12 additions and 1 deletion.
diff --git a/src/GoTrueClient.ts b/src/GoTrueClient.ts
@@ -2545,8 +2545,19 @@ export default class GoTrueClient {
 
         let nextLevel: AuthenticatorAssuranceLevels | null = currentLevel
 
+        const {
+          data: { user },
+          error: userError,
+        } = await this._getUser()
+        if (userError) {
+          return { data: null, error: userError }
+        }
+        if (!user) {
+          return { data: { currentLevel, nextLevel, currentAuthenticationMethods: [] }, error: null }
+        }
+
         const verifiedFactors =
-          session.user.factors?.filter((factor: Factor) => factor.status === 'verified') ?? []
+          user.factors?.filter((factor: Factor) => factor.status === 'verified') ?? []
 
         if (verifiedFactors.length > 0) {
           nextLevel = 'aal2'