User object should not call userInfo endpoint, fixes #51

ferrerojosh · Apr 29, 2021 · 1ba4506 · 1ba4506
1 parent 90de94d
commit 1ba4506
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 2 deletions.
diff --git a/src/guards/auth.guard.ts b/src/guards/auth.guard.ts
@@ -18,7 +18,7 @@ import {
 } from '../decorators/unprotected.decorator';
 import { KeycloakConnectOptions } from '../interface/keycloak-connect-options.interface';
 import { KeycloakLogger } from '../logger';
-import { extractRequest } from '../util';
+import { extractRequest, parseToken } from '../util';
 
 /**
  * An authentication guard. Will return a 401 unauthorized when it is unable to
@@ -79,7 +79,7 @@ export class AuthGuard implements CanActivate {
 
       if (typeof result === 'string') {
         // Attach user info object
-        request.user = await this.keycloak.grantManager.userInfo(jwt);
+        request.user = parseToken(jwt);
         // Attach raw access token JWT extracted from bearer/cookie
         request.accessTokenJWT = jwt;
 

diff --git a/src/util.ts b/src/util.ts
@@ -30,3 +30,8 @@ export const extractRequest = (context: ExecutionContext): [any, any] => {
 
   return [request, response];
 };
+
+export const parseToken = (token: string): string => {
+  const parts = token.split('.');
+  return JSON.parse(Buffer.from(parts[1], 'base64').toString());
+};