Added time.getUnixTimeInSeconds; Fix for verifyJWT comparing exp with time since unix epoch in seconds as per RFC7519

AIRoboCoder · AIRoboCoder · commit bec2dbba3943 · 2024-11-10T16:47:25.000+07:00
diff --git a/crypto/jwt.js b/crypto/jwt.js
@@ -47,7 +47,7 @@ export const verifyJwt = async (publicKey, jwt) => {
     throw new Error('Invalid JWT')
   }
   const payload = _parse(payloadBase64)
-  if (payload.exp != null && time.getUnixTime() > payload.exp) {
+  if (payload.exp != null && time.getUnixTimeInSeconds() > payload.exp) {
     throw new Error('Expired JWT')
   }
   return {
diff --git a/time.js b/time.js
@@ -21,6 +21,13 @@ export const getDate = () => new Date()
  */
 export const getUnixTime = Date.now
 
+/**
+ * Return current Unix time in seconds (since epoch).
+ *
+ * @return {number} current Unix time in seconds
+ */
+export const getUnixTimeInSeconds = () => Math.floor(Date.now() / 1000)
+
 /**
  * Transform time (in ms) to a human readable format. E.g. 1100 => 1.1s. 60s => 1min. .001 => 10μs.
  *

Original file line number	Diff line number	Diff line change
`@@ -47,7 +47,7 @@ export const verifyJwt = async (publicKey, jwt) => {`
`47`	`47`	`throw new Error('Invalid JWT')`
`48`	`48`	`}`
`49`	`49`	`const payload = _parse(payloadBase64)`
`50`		`- if (payload.exp != null && time.getUnixTime() > payload.exp) {`
	`50`	`+ if (payload.exp != null && time.getUnixTimeInSeconds() > payload.exp) {`
`51`	`51`	`throw new Error('Expired JWT')`
`52`	`52`	`}`
`53`	`53`	`return {`