Fix token refresh behaviour for non-expired tokens (#4825)

The condition was inverted here, but the tests were passing because they didn't add enough expiry time for the token expiry to be over the threshold. Fix the condition and tests, add another test and generally add a bunch of comments so hopefully this is less confusing for the next person. Fixes https://github.com/element-hq/element-web/issues/29858
2025-08-07 23:02:56 +03:00 · 2025-05-06 10:39:13 +01:00
parent f322f32a07
commit fea619d34c
2 changed files with 64 additions and 5 deletions
--- a/src/http-api/refresh.ts
+++ b/src/http-api/refresh.ts
@@ -104,7 +104,9 @@ export class TokenRefresher {
        if (snapshot?.expiry) {
            // If our token is unknown, but it should not have expired yet, then we should not refresh
            const expiresIn = snapshot.expiry.getTime() - Date.now();
-            if (expiresIn <= REFRESH_ON_ERROR_IF_TOKEN_EXPIRES_WITHIN_MS) {
+            // If it still has plenty of time left on the clock, we assume something else must be wrong and
+            // do not refresh. Otherwise if it's expired, or will soon, we try refreshing.
+            if (expiresIn >= REFRESH_ON_ERROR_IF_TOKEN_EXPIRES_WITHIN_MS) {
                return TokenRefreshOutcome.Logout;
            }
        }