Auth/pm 7672/Update token service to return new token from state (#9706)

* Changed return structure * Object changes * Added missing assert. * Updated tests to use SetTokensResult * Fixed constructor * PM-7672 - Fix tests + add new setTokens test around refresh token * Removed change to refreshIdentityToken. * Updated return definition. --------- Co-authored-by: Jared Snider <jsnider@bitwarden.com>
2025-12-11 22:03:36 +00:00 · 2024-06-19 11:51:12 -04:00
parent 7e3ba087ec
commit 88cc37e37f
5 changed files with 173 additions and 62 deletions
--- a/libs/common/src/services/api.service.ts
+++ b/libs/common/src/services/api.service.ts
@@ -249,7 +249,7 @@ export class ApiService implements ApiServiceAbstraction {

  async refreshIdentityToken(): Promise<any> {
    try {
-      await this.doAuthRefresh();
+      await this.refreshToken();
    } catch (e) {
      this.logService.error("Error refreshing access token: ", e);
      throw e;
@@ -1566,8 +1566,7 @@ export class ApiService implements ApiServiceAbstraction {
  async getActiveBearerToken(): Promise<string> {
    let accessToken = await this.tokenService.getAccessToken();
    if (await this.tokenService.tokenNeedsRefresh()) {
-      await this.doAuthRefresh();
-      accessToken = await this.tokenService.getAccessToken();
+      accessToken = await this.refreshToken();
    }
    return accessToken;
  }
@@ -1707,16 +1706,16 @@ export class ApiService implements ApiServiceAbstraction {
    );
  }

-  protected async doAuthRefresh(): Promise<void> {
+  protected async refreshToken(): Promise<string> {
    const refreshToken = await this.tokenService.getRefreshToken();
    if (refreshToken != null && refreshToken !== "") {
-      return this.doRefreshToken();
+      return this.refreshAccessToken();
    }

    const clientId = await this.tokenService.getClientId();
    const clientSecret = await this.tokenService.getClientSecret();
    if (!Utils.isNullOrWhitespace(clientId) && !Utils.isNullOrWhitespace(clientSecret)) {
-      return this.doApiTokenRefresh();
+      return this.refreshApiToken();
    }

    this.refreshAccessTokenErrorCallback();
@@ -1724,7 +1723,7 @@ export class ApiService implements ApiServiceAbstraction {
    throw new Error("Cannot refresh access token, no refresh token or api keys are stored.");
  }

-  protected async doRefreshToken(): Promise<void> {
+  protected async refreshAccessToken(): Promise<string> {
    const refreshToken = await this.tokenService.getRefreshToken();
    if (refreshToken == null || refreshToken === "") {
      throw new Error();
@@ -1770,19 +1769,20 @@ export class ApiService implements ApiServiceAbstraction {
        this.vaultTimeoutSettingsService.getVaultTimeoutByUserId$(userId),
      );

-      await this.tokenService.setTokens(
+      const refreshedTokens = await this.tokenService.setTokens(
        tokenResponse.accessToken,
        vaultTimeoutAction as VaultTimeoutAction,
        vaultTimeout,
        tokenResponse.refreshToken,
      );
+      return refreshedTokens.accessToken;
    } else {
      const error = await this.handleError(response, true, true);
      return Promise.reject(error);
    }
  }

-  protected async doApiTokenRefresh(): Promise<void> {
+  protected async refreshApiToken(): Promise<string> {
    const clientId = await this.tokenService.getClientId();
    const clientSecret = await this.tokenService.getClientSecret();

@@ -1810,11 +1810,12 @@ export class ApiService implements ApiServiceAbstraction {
      this.vaultTimeoutSettingsService.getVaultTimeoutByUserId$(userId),
    );

-    await this.tokenService.setAccessToken(
+    const refreshedToken = await this.tokenService.setAccessToken(
      response.accessToken,
      vaultTimeoutAction as VaultTimeoutAction,
      vaultTimeout,
    );
+    return refreshedToken;
  }

  async send(