Set cookie / user to null if failing to decode JWT

2025-12-06 13:27:08 +00:00 · 2020-10-11 19:06:57 +02:00
parent 2aca34e488
commit a38066ec82
1 changed files with 13 additions and 3 deletions
--- a/lib/www/client/source/src/store/modules/user/actions.js
+++ b/lib/www/client/source/src/store/modules/user/actions.js
@@ -32,9 +32,19 @@ function cookieChanged (cookie) {

 function setCredentials ({state, commit, getters, dispatch}, force = false) {
  if (cookieChanged(state.cookie) || force) {
-    const cookie = browserCookie();
-    commit('setCookie', cookie);
-    commit('setUser', cookie ? jwt_decode(cookie.split("=")[1]) : null);
+    try {
+      const cookie = browserCookie();
+      const decoded = jwt_decode(cookie.split("=")[1]);
+      commit('setCookie', cookie);
+      commit('setUser', decoded);
+    } catch (err) {
+      if (err.name == "InvalidTokenError") {
+        commit('setCookie', null);
+        commit('setUser', null);
+      } else {
+        console.error(err);
+      }
+    }
  }
 }