feat(api): Implement refresh token strategy

[alepefe]

Remember to add the following code in shared/config/.env and .env.test

REFRESH_TOKEN_SECRET=refresh_token_secret
REFRESH_TOKEN_EXPIRES_IN=30d

This pull request introduces several significant changes to the authentication module, including the addition of refresh token functionality, scheduled token cleanup, and various dependency updates.

Authentication Enhancements:

• Refresh Token Implementation:

  • Added refreshToken method to AuthenticationController to handle refresh token requests.
  • Introduced refreshAuthTokens method in AuthenticationService to refresh authentication tokens.
  • Implemented refreshAuthTokens and createAuthTokenPair methods in JwtManager for token management. [1] [2]

• Token Cleanup Service:

  • Added TokenCleanupService to periodically clean up expired refresh tokens using a cron job.
  • Registered TokenCleanupService in AuthenticationModule.

Dependency and Configuration Updates:

• Dependencies:

  • Added @nestjs/schedule and uuid to api/package.json. [1] [2]

• Configuration:

  • Updated ApiConfigService to include IssuedRefreshToken entity in the database configuration.
  • Added JWT configuration for refresh tokens in JwtConfigHandler.

Utility and Testing:

• Utility Functions:

  • Added TimeUtils for parsing duration strings to seconds.

• Testing:

  • Added integration tests for refresh token functionality in auth/refresh-token.spec.ts.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
tnc-blue-carbon-cost-tool-ghps	❌ Failed (Inspect)			Jan 17, 2025 0:07am

[alepefe]

Waiting to validate this so the frontend guys can later adapt their code.