refresh token check route added to MW

internal/router/middleware.go

@@ -10,9 +10,10 @@ import (
 )
 
 type mwDeps struct {
-	prefix        string
-	excludeRoutes *map[string]shared.ExcludeRoute
-	tokenProv     interfaces.JWTProvider
+	prefix            string
+	excludeRoutes     *map[string]shared.ExcludeRoute
+	tokenProv         interfaces.JWTProvider
+	usersRefreshRoute string
 }
 
 func authMiddleware(deps mwDeps) gin.HandlerFunc {
@@ -23,6 +24,22 @@ func authMiddleware(deps mwDeps) gin.HandlerFunc {
 			return
 		}
 
+		if c.FullPath() == deps.usersRefreshRoute && c.Request.Method == "POST" {
+			refreshUuid, err := c.Cookie("refresh_uuid")
+			if err != nil {
+				c.JSON(http.StatusUnauthorized, responses.ErrorResponse401{Error: "Refresh token is required"})
+				log.WithField("msg", "Refresh token is required").Error("MW | Authorization")
+				c.Abort()
+				return
+			}
+
+			c.Set("refreshUuid", refreshUuid)
+
+			log.WithField("msg", "refresh token set to context").Debug("MW | Authorization")
+			c.Next()
+			return
+		}
+
 		token := c.GetHeader("Authorization")
 		if token == "" {
 			c.JSON(http.StatusUnauthorized, responses.ErrorResponse401{Error: "Authorization token is required"})
@@ -31,7 +48,7 @@ func authMiddleware(deps mwDeps) gin.HandlerFunc {
 			return
 		}
 
-		userUuid, refreshUuid, err := deps.tokenProv.Parse(token)
+		userUuid, sessionUuid, err := deps.tokenProv.Parse(token)
 		if err != nil {
 			c.JSON(http.StatusUnauthorized, responses.ErrorResponse401{Error: err.Error()})
 			log.WithField("msg", "error parsing jwt").Error("MW | Authorization")
@@ -40,13 +57,11 @@ func authMiddleware(deps mwDeps) gin.HandlerFunc {
 		}
 
 		c.Set("userUuid", userUuid)
-		if refreshUuid != "" {
-			c.Set("refreshUuid", refreshUuid)
-		}
+		c.Set("sessionUuid", sessionUuid)
 
 		log.WithFields(log.Fields{
 			"userUuid":    userUuid,
-			"refreshUuid": refreshUuid,
+			"sessionUuid": sessionUuid,
 		}).Debug("MW | Parsed uuids")
 
 		if !c.IsAborted() {