Skip to main content

rotateRefresh

API Docs

Function: rotateRefresh()

rotateRefresh(db, log, token): Promise<RotateRefreshResult>

Defined in: src/services/auth/authService.ts:197

Rotates a refresh token: revokes the old one and issues new access and refresh tokens.

Parameters

db

DrizzleClient

Drizzle client for database access.

log

FastifyBaseLogger

Logger for debug output (e.g. verification failures).

token

string

Raw refresh JWT string; empty or whitespace-only is rejected without calling verifyToken.

Returns

Promise<RotateRefreshResult>

Promise resolving to RotateRefreshResult: either { access, refresh, userId } with new tokens, or { error: "invalid_refresh" } if the token is expired, invalid, wrong typ, not valid in DB, or the user is not found.