Channels
#support-questions
Title
f
funk101
06/09/2022, 6:06 AMquestion about updateAccessTokenPayload()
r
rp
06/09/2022, 6:06 AMhey
f
funk101
06/09/2022, 6:07 AMhey
so, we spoke last of this function and I put it in my backendConfig() however, I need to update the access token in an api call. The example shows "SessionRequest" and I believe is written in typescript(?). I'm getting an error on "SessionRequest.session" as I'm not using typescript I assume
This code in my backendConfig() fails because I don't have the stripeSellerId yet until after they sign up with Stripe:
Copy code
SessionNode.init({
override: {
functions: async (originalImplementation) => {
return {
...originalImplementation,
createNewSession: async function (input) {
const stripeSellerId = await getStripeSellerIdBySuperTokensId(
input.userId
);
input.accessTokenPayload = {
...input.accessTokenPayload,
stripeSellerId: stripeSellerId,
};
return originalImplementation.createNewSession(input);
},
};
},
},
}),so I need to updateAccessToken() in another handler
I can't use
Copy code
useSessionContextr
rp
06/09/2022, 6:20 AMYou can just ignore the
SessionRequestand use
req.session.updateAccessTokenPayloadf
funk101
06/09/2022, 6:23 AMis that in the docs?
I don't think so, right?
r
rp
06/09/2022, 6:24 AMit is
please search for it in the sessions section in common customisations
f
funk101
06/09/2022, 6:24 AMdo I need this in my handler? ...
Copy code
export default async function handler(req, res) {
const userId = req.body;
const email = await getUserEmailBySuperTokensId(userId);
await superTokensNextWrapper(
async (next) => {
await verifySession()(req, res, next);
},
req,
res
);
const currentAccessTokenPayload = req.session.getAccessTokenPayload();the
Copy code
await superTokensNextWrapper...I guess so
r
rp
06/09/2022, 6:26 AMyes
that is used to verify a session
so you need that in order to get the
req.sessionf
funk101
06/09/2022, 6:31 AMI have that elsewhere though in
Copy code
auth/[[...path]].jsr
rp
06/09/2022, 6:32 AMhuh?
you can use the verifySession function in any API
f
funk101
06/09/2022, 6:32 AM Copy code
supertokens.init(backendConfig());
export default async function superTokens(req, res) {
// NOTE: We need CORS only if we are querying the APIs from a different origin
await NextCors(req, res, {
methods: ["GET", "HEAD", "PUT", "PATCH", "POST", "DELETE"],
origin: process.env.NEXT_PUBLIC_HOST,
credentials: true,
allowedHeaders: ["content-type", ...supertokens.getAllCORSHeaders()],
});
await superTokensNextWrapper(
async (next) => {
await middleware()(req, res, next);
},
req,
res
);
if (!res.writableEnded) {
res.status(404).send("Not found");
}
}that's my [[...path]].js file
r
rp
06/09/2022, 6:32 AMThe
auth/[[...path]].jsf
funk101
06/09/2022, 6:33 AMright, my bad, I see it' s different logic
r
rp
06/09/2022, 6:33 AMyup
f
funk101
06/09/2022, 6:33 AMthanks again
@rp I have another question regarding this thread, you available?
r
rp
06/09/2022, 3:11 PMsure
go for it
f
funk101
06/09/2022, 3:12 PMok, so is it possible to updateAccessTokenPayload() when overriding signInPOST()?
Copy code
signInPOST: async function (input) {
if (originalImplementation.signInPOST === undefined) {
throw Error("Shouldn't come here")
}
try {
const response = await originalImplementation.signInPOST(input)
if (response.status === "OK") {
const {id, email} = response.user
}
}
}r
rp
06/09/2022, 3:12 PMYes
You can get the session from
response.sessionf
funk101
06/09/2022, 3:12 PMi'M SURE i DON'T HAVE TO VERIFYsESSION HERE, RIGHT?
sorry for caps
ah ok
r
rp
06/09/2022, 3:13 PMand then do
await response.session.updateAccessTokenPayload({..})that's if
response.status === "OK"f
funk101
06/09/2022, 3:13 PMperfect
hmm, I'm getting this error ->
Copy code
error - TypeError: Cannot read properties of undefined (reading 'status') Copy code
signInPOST: async function (input) {
if (originalImplementation.signInPOST === undefined) {
throw Error("Shouldn't come here");
}
try {
const response = await originalImplementation.signInPOST(
input
);
if (response.status === "OK") {
const { id, email } = response.user;
const stripeSellerId =
await getStripeSellerIdBySuperTokensId(id);
if (stripeSellerId) {
const currentAccessTokenPayload =
response.session.getAccessTokenPayload();
await response.session.updateAccessTokenPayload({
...currentAccessTokenPayload,
stripeSellerId: stripeSellerId,
});
}
}
} catch (err) {
serverLogger.error("/config/backendConfig: ", err.message);
}
},r
rp
06/09/2022, 3:27 PM"I refresh browser it goes through" -> huh? You mean call the API again?
f
funk101
06/09/2022, 3:28 PMMy signin form show's an "email password" error. If I just refresh the browser leaving the same email/password in fields, it then goes through and I see the "stripeSellerId" I.
r
rp
06/09/2022, 3:29 PM"email password" error -> what is this?
you mean invalid credentials error?
the code looks right.. maybe something else is happening with how you input the info. not sure
f
funk101
06/09/2022, 3:30 PMactually, a general error I guess
r
rp
06/09/2022, 3:31 PMoh right yea.. ok
you need to return
responsef
funk101
06/09/2022, 3:31 PMoh duh
r
rp
06/09/2022, 3:31 PMSo right before the
catchreturn responsef
funk101
06/09/2022, 3:35 PMawesome, thanks again
is it possible to use updateAccessTokenPayload() to store shopping cart data?
bad idea?
r
rp
06/09/2022, 3:37 PMWell, depends on what you wanna store. There is a limit of 4kb on the size of cookies. And adding stuff in access token payload includes cookie size
f
funk101
06/09/2022, 3:37 PMah ok
r
rp
06/09/2022, 3:37 PMAlso the content Is accessible on the frontend.
So I would recommend putting it in ur db against the session handle or the user id
f
funk101
06/09/2022, 3:38 PMright, makes sense, thanks again
2 Views