in server/lib/middleware/TokenValidationHandler.dart [36:72]
bool _isValidToken(Request request) {
// if (request.method == "OPTIONS") {
// return true;
// }
if (request.headers[HttpHeaders.authorizationHeader] != null) {
try {
String? authorization =
request.headers[HttpHeaders.authorizationHeader];
List<String> tokens = authorization!.split(" ");
if (tokens.length != 2 || tokens[0] != "Bearer") {
return false;
}
var token = tokens[1];
if (JwtDecoder.isExpired(token)) {
print("Expired token");
return false;
}
Map<String, dynamic> decodedToken = JwtDecoder.decode(token);
// if (decodedToken["iss"] != "accounts.google.com") {
// print("Invalid iss - ${decodedToken["iss"]}");
// return false;
// }
} catch (e) {
print(e);
return false;
}
return true;
}
print("401 Unauthorized");
return false;
}