aws-mobile-appsync-sdk-js icon indicating copy to clipboard operation
aws-mobile-appsync-sdk-js copied to clipboard

Published 20 hours ago verified publisher icon awslabs

headerBasedAuth not updating the headers with new values

Open chrisharrison opened this issue 4 years ago • 1 comments

Do you want to request a feature or report a bug?

Bug

What is the current behavior?

Using the following config when creating a client:

const client = new AWSAppSyncClient({
  url: config.AppSync.aws_appsync_graphqlEndpoint as string,
  region: config.AppSync.aws_appsync_region,
  auth: {
    type: AUTH_TYPE.AMAZON_COGNITO_USER_POOLS,
    jwtToken: async () =>
      (await Auth.currentSession()).getIdToken().getJwtToken(),
  },
  disableOffline: true,
});
  disableOffline: true,
});

When a subscription is created a websocket is established. Under some circumstances (network disruption, VPN switching etc) a new websocket connection is established. But the authorization header is not updated. If the access token has since expired then Appsync will return:

[{errorType: "UnauthorizedException", message: "Token has expired."}]

What is the expected behavior?

The authorization header should use the token returned by the jwtToken function in the Appsync client config.

chrisharrison avatar Aug 20 '21 22:08 chrisharrison

We've run into the same issue and it seems like the fix in #667 solves it. Can this be added to the libraries?

paulich avatar Sep 14 '22 22:09 paulich