From e3dda743afea2e994c119f492e5e378daa66810b Mon Sep 17 00:00:00 2001
From: Flam3rboy <34555296+Flam3rboy@users.noreply.github.com>
Date: Wed, 23 Jun 2021 18:06:00 +0200
Subject: :bug: fix checkToken

---
 src/util/checkToken.ts | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'src/util/checkToken.ts')

diff --git a/src/util/checkToken.ts b/src/util/checkToken.ts
index 73ffb670..4a60195b 100644
--- a/src/util/checkToken.ts
+++ b/src/util/checkToken.ts
@@ -9,7 +9,8 @@ export function checkToken(token: string, jwtSecret: string): Promise<any> {
 
 			const user = await UserModel.findOne({ id: decoded.id }, { "user_data.valid_tokens_since": true }).exec();
 			if (!user) return rej("Invalid Token");
-			if (decoded.iat * 1000 < user.user_data.valid_tokens_since.getTime()) return rej("Invalid Token");
+			// we need to round it to seconds as it saved as seconds in jwt iat and valid_tokens_since is stored in milliseconds
+			if (decoded.iat * 1000 < user.user_data.valid_tokens_since.setSeconds(0, 0)) return rej("Invalid Token");
 			if (user.disabled) return rej("User disabled");
 			if (user.deleted) return rej("User not found");
 
-- 
cgit 1.5.1