Update Auth.js and solved some potential bugs. #9605

Ujjawal-Kantt · 2025-02-11T12:58:56Z

Pull Request

This PR fixes memory leaks, improves session management, enhances security, and optimizes authentication logic in the Auth.js file.

Fixed Memory Leak in throttle
- Used a Map() to track session timeouts.
- Cleared timeouts properly before setting new ones.
Improved Role Fetching Mechanism
- Ensured this.userRoles updates correctly.
- Avoided redundant database calls when fetching user roles.
Enhanced Session Token Management
- Ensured missing sessionToken values are handled properly.
- Added validation to check for expired session tokens before processing.
Optimized Security Checks & Error Handling
- Improved error logging for better debugging.
- Ensured expired or invalid session tokens are rejected early.
Updated renewSessionIfNeeded Logic
- Reduced redundant session expiry updates.
- Only updates session expiry when required, preventing unnecessary writes.

Fix memory leaks in session handling.
Improve role-fetching logic.
Enhance error handling and security checks.
Add tests for updated authentication logic.
Update documentation to reflect session management improvements.
Add security check.
Add new Parse Error codes to Parse JS SDK (No hard-coded error codes in Parse Server).

Signed-off-by: Ujjawal Kantt <124806392+Ujjawal-Kantt@users.noreply.github.com>

parse-github-assistant · 2025-02-11T12:59:00Z

❌ Please link an issue that describes the reason for this pull request, otherwise your pull request will be closed. Make sure to write it as Closes: #123 in the PR description, so I can recognize it.

Update Auth.js and solved some potential bugs.

b2ec267

Signed-off-by: Ujjawal Kantt <124806392+Ujjawal-Kantt@users.noreply.github.com>