Check if cookie expired when doing CT API login

Otherwise we might use an expired cookie which causes unauthenticated API requests and therefore incomplete data to be returned.
fschrempf · Apr 5, 2024 · 5572422 · 5572422
1 parent 9938ead
commit 5572422
Show file tree

Hide file tree

Showing 3 changed files with 25 additions and 1 deletion.
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -24,6 +24,7 @@
   },
   "dependencies": {
     "axios": "^0.21.4",
+    "cookie": "^0.6.0",
     "ldap-escape": "^2.0.5",
     "ldap-filter": "^0.3.3",
     "ldapjs": "^2.3.1",

diff --git a/src/ctconnection.js b/src/ctconnection.js
@@ -1,4 +1,5 @@
 const axiosReal = require('axios').default;
+const cookie = require('cookie');
 const log = require('./logging');
 const c = require('./constants');
 const ctapi = require('./ctapi');
@@ -60,6 +61,14 @@ let getCsrfToken = this.getCsrfTokenReal;
 
 const getCookie = (result) => result.headers['set-cookie'][0];
 
+const cookieIsValid = (c) => {
+  const parsed = cookie.parse(c);
+  const expires = Date.parse(parsed.expires);
+  if (expires > Date.now()) return true;
+  log.info('Cookie expired');
+  return false;
+};
+
 const getLoginRequest = (baseurl, user, password) => ({
   method: 'post',
   url: baseurl + c.API_SLUG + c.LOGIN_AP,
@@ -129,7 +138,7 @@ exports.getPromiseReal = async (url, site) => {
   while (retryWithAuth) {
     retryWithAuth = false;
     try {
-      if (!this.isConnected(site.name)) {
+      if (!this.isConnected(site.name) || !cookieIsValid(conn.cookie)) {
         log.debug('Try again to log in');
         await this.login(site);
       }