Refactor refresh token cookie logic; add Clover AuthType

Vadim Belov · Vadim Belov · commit 1b02bbe35e17 · 2026-02-24T10:40:24.000-08:00
Refactored BaseAuthController to centralize refresh token cookie logic in a new AddRefreshTokenToCookie method, reducing code duplication. Changed CreateAccessToken to private protected for subclass access. Added Clover as a new AuthType enum value to support an additional authentication provider.
diff --git a/Sources/EasyExtensions.AspNetCore.Authorization/Controllers/BaseAuthController.cs b/Sources/EasyExtensions.AspNetCore.Authorization/Controllers/BaseAuthController.cs
@@ -129,13 +129,7 @@ public async Task<IActionResult> RefreshToken([FromBody] RefreshTokenRequestDto?
             var roles = await GetUserRolesAsync(userId.Value);
             string accessToken = CreateAccessToken(userId.Value, roles);
             await SaveAndRevokeRefreshTokenAsync(userId.Value, request.RefreshToken, newRefreshToken, AuthType.Unknown);
-            Response.Cookies.Append(CookieRefreshTokenName, newRefreshToken, new()
-            {
-                Secure = true,
-                HttpOnly = true,
-                SameSite = Microsoft.AspNetCore.Http.SameSiteMode.Strict,
-                Expires = DateTimeOffset.UtcNow.Add(GetCookieExpirationTime()),
-            });
+            AddRefreshTokenToCookie(newRefreshToken);
             return Ok(new TokenPairResponseDto
             {
                 AccessToken = accessToken,
@@ -185,13 +179,7 @@ public async Task<IActionResult> Login([FromBody] LoginRequestDto request)
             string refreshToken = StringHelpers.CreateRandomString(64);
             await SaveAndRevokeRefreshTokenAsync(userId.Value, string.Empty, refreshToken, AuthType.Credentials);
             await OnUserLoggingInAsync(userId.Value, AuthType.Credentials, AuthRejectionType.None);
-            Response.Cookies.Append(CookieRefreshTokenName, refreshToken, new()
-            {
-                Secure = true,
-                HttpOnly = true,
-                SameSite = Microsoft.AspNetCore.Http.SameSiteMode.Strict,
-                Expires = DateTimeOffset.UtcNow.Add(GetCookieExpirationTime()),
-            });
+            AddRefreshTokenToCookie(refreshToken);
             return Ok(new TokenPairResponseDto
             {
                 AccessToken = accessToken,
@@ -241,13 +229,7 @@ public async Task<IActionResult> LoginWithGoogle([FromQuery] string token)
             string refreshToken = StringHelpers.CreateRandomString(64);
             await SaveAndRevokeRefreshTokenAsync(userId.Value, string.Empty, refreshToken, AuthType.Google);
             await OnUserLoggingInAsync(userId.Value, AuthType.Google, AuthRejectionType.None);
-            Response.Cookies.Append(CookieRefreshTokenName, refreshToken, new()
-            {
-                Secure = true,
-                HttpOnly = true,
-                SameSite = Microsoft.AspNetCore.Http.SameSiteMode.Strict,
-                Expires = DateTimeOffset.UtcNow.Add(GetCookieExpirationTime()),
-            });
+            AddRefreshTokenToCookie(refreshToken);
             return Ok(new TokenPairResponseDto
             {
                 AccessToken = accessToken,
@@ -390,7 +372,7 @@ public virtual IEnumerable<KeyValuePair<string, string>> GetAdditionalTokenClaim
             return [];
         }
 
-        private string CreateAccessToken(Guid userId, IEnumerable<string> roles)
+        private protected string CreateAccessToken(Guid userId, IEnumerable<string> roles)
         {
             return _tokenProvider.CreateToken(cb =>
             {
@@ -406,5 +388,16 @@ private string CreateAccessToken(Guid userId, IEnumerable<string> roles)
                 return cb;
             });
         }
+
+        private protected void AddRefreshTokenToCookie(string refreshToken)
+        {
+            Response.Cookies.Append(CookieRefreshTokenName, refreshToken, new()
+            {
+                Secure = true,
+                HttpOnly = true,
+                SameSite = Microsoft.AspNetCore.Http.SameSiteMode.Strict,
+                Expires = DateTimeOffset.UtcNow.Add(GetCookieExpirationTime()),
+            });
+        }
     }
 }
diff --git a/Sources/EasyExtensions/Models/Enums/AuthType.cs b/Sources/EasyExtensions/Models/Enums/AuthType.cs
@@ -24,5 +24,10 @@ public enum AuthType
         /// Specifies the Google authentication provider.
         /// </summary>
         Google = 2,
+
+        /// <summary>
+        /// Specifies the Clover authentication provider.
+        /// </summary>
+        Clover = 3,
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -24,5 +24,10 @@ public enum AuthType`
`24`	`24`	`/// Specifies the Google authentication provider.`
`25`	`25`	`/// </summary>`
`26`	`26`	`Google = 2,`
	`27`	`+`
	`28`	`+ /// <summary>`
	`29`	`+ /// Specifies the Clover authentication provider.`
	`30`	`+ /// </summary>`
	`31`	`+ Clover = 3,`
`27`	`32`	`}`
`28`	`33`	`}`