From 1648a426d6e67b260db9c2485c4049bd6d1904a0 Mon Sep 17 00:00:00 2001
From: Carson McManus <carson.mcmanus1@gmail.com>
Date: Thu, 28 Mar 2024 10:50:16 -0400
Subject: [PATCH] server: reduce the number of redis reads necessary for each
 request

---
 server/auth/index.ts | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/server/auth/index.ts b/server/auth/index.ts
index 0f30c2f14..bafc4c61e 100644
--- a/server/auth/index.ts
+++ b/server/auth/index.ts
@@ -58,7 +58,7 @@ export async function authTokenMiddleware(
 		req.token = req.cookies.token;
 	}
 
-	if (!req.token || !(await tokens.validate(req.token))) {
+	if (!req.token) {
 		res.status(400).json({
 			success: false,
 			error: {
@@ -70,6 +70,16 @@ export async function authTokenMiddleware(
 	}
 
 	req.ottsession = await tokens.getSessionInfo(req.token);
+	if (!req.ottsession) {
+		res.status(401).json({
+			success: false,
+			error: {
+				name: "MissingToken",
+				message: "Missing valid auth token. Get a token from /api/auth/grant first.",
+			},
+		});
+		return;
+	}
 	if (req.ottsession && req.ottsession.isLoggedIn) {
 		try {
 			req.user = await usermanager.getUser({ id: req.ottsession.user_id });