fix(functions): fix-address-fetching-from-jwt-payload

Author: Harman-singh-waraich

web/netlify/functions/fetch-settings.ts

@@ -6,7 +6,7 @@ import { authMiddleware } from "../middleware/authMiddleware";
 
 const fetchSettings = async (event) => {
   try {
-    const address = event.auth.id;
+    const address = event.auth.sub;
     const lowerCaseAddress = address.toLowerCase() as `0x${string}`;
 
     const supabase = createClient<Database>(process.env.SUPABASE_URL!, process.env.SUPABASE_CLIENT_API_KEY!);

web/netlify/functions/update-settings.ts

@@ -63,7 +63,7 @@ const updateSettings = async (event) => {
     const lowerCaseAddress = address.toLowerCase() as `0x${string}`;
 
     // Prevent using someone else's token
-    if (event?.auth?.id.toLowerCase() !== lowerCaseAddress) {
+    if (event?.auth?.sub.toLowerCase() !== lowerCaseAddress) {
       throw new Error("Unauthorised user");
     }
     const supabase = createClient<Database>(process.env.SUPABASE_URL!, process.env.SUPABASE_CLIENT_API_KEY!);

web/netlify/middleware/authMiddleware.ts

@@ -14,9 +14,7 @@ export const authMiddleware = () => {
       }
 
       try {
-        // const secret = process.env.JWT_SECRET;
-        // TODO testing purpose
-        const secret = "u03tzA7Un9w+fetret343t6U2YaOlINle1E4avjc=";
+        const secret = process.env.JWT_SECRET;
 
         if (!secret) {
           throw new Error("Secret not set in environment");