Skip to content

Delay promise for revoke#195

Merged
avishalom merged 5 commits intomasterfrom
delay_promise_for_revoke
Jan 29, 2018
Merged

Delay promise for revoke#195
avishalom merged 5 commits intomasterfrom
delay_promise_for_revoke

Conversation

@avishalom
Copy link
Contributor

@avishalom avishalom commented Jan 26, 2018

Adding a 1 second timeout in the integration tests to make sure revoke happens 1 second after minting. also comment

@avishalom avishalom requested a review from hiranya911 January 26, 2018 16:54
hiranya911
hiranya911 approved these changes Jan 26, 2018
View reviewed changes
Copy link
Contributor

@hiranya911 hiranya911 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM with a couple of nits. Please wait for @bojeil-google to take a look before merging.

package-lock.json
@@ -15,7 +15,7 @@
"@firebase/auth": {
Copy link
Contributor

@hiranya911 hiranya911 Jan 26, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It is weird to have changes in the lock file without corresponding changes in package.json. Please revert.

src/auth/auth-api-request.ts Outdated
* before revocation will also be revoked on the Auth backend. Any request with an
* ID token generated before revocation will be rejected with a token expired error.
* Note that due to the fact that the timestamp is stored in seconds, any tokens minted in
* the same second as the revokation will still be valid. If there is a chance that a token
Copy link
Contributor

@hiranya911 hiranya911 Jan 26, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

typo: revokation --> revocation

test/integration/auth.spec.ts Outdated
.then((decodedIdToken) => {
// Verification should succeed. Revoke that user's session.
return admin.auth().revokeRefreshTokens(decodedIdToken.sub);
return new Promise(resolve => setTimeout(() => resolve(
Copy link
Contributor

@hiranya911 hiranya911 Jan 26, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

(resolve) =>

@hiranya911 hiranya911 removed their assignment Jan 26, 2018
bojeil-google
bojeil-google approved these changes Jan 29, 2018
View reviewed changes
src/auth/auth-api-request.ts Outdated
* ID token generated before revocation will be rejected with a token expired error.
* Note that due to the fact that the timestamp is stored in seconds, any tokens minted in
* the same second as the revocation will still be valid. If there is a chance that a token
* was minted in the last second, delay for 1 second before revoking.
Copy link
Contributor

@bojeil-google bojeil-google Jan 29, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Extra space before was minted

@avishalom avishalom merged commit 53d68ed into master Jan 29, 2018
@hiranya911 hiranya911 deleted the delay_promise_for_revoke branch January 30, 2018 01:15
@snyk-bot snyk-bot mentioned this pull request Feb 1, 2020
Open
@snyk-bot snyk-bot mentioned this pull request Apr 7, 2022
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

2 more reviewers

@hiranya911 hiranya911 hiranya911 approved these changes

@bojeil-google bojeil-google bojeil-google approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@avishalom avishalom

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@avishalom @hiranya911 @bojeil-google

Comments