add token validation in qwik server

apps/frontend/src/shared/auth.service.ts

@@ -1,6 +1,7 @@
 import { Cookie } from '@builder.io/qwik-city';
 import jwt_decode from 'jwt-decode';
 import { UserCtx } from '../routes/layout';
+import { validateToken } from '../utils/api';
 
 export const ACCESS_COOKIE_NAME = 'accessToken';
 export const REFRESH_COOKIE_NAME = 'refreshToken';
@@ -33,8 +34,11 @@ export const validateAccessToken = async (cookies: Cookie): Promise<boolean> =>
     setTokensAsCookies(newAccessToken, newRefreshToken, cookies);
     return validateAccessToken(cookies);
   }
-
-  return true;
+  const tokenIsValid = await validateToken(accessToken);
+  if (!tokenIsValid) {
+    setTokensAsCookies('', '', cookies);
+  }
+  return tokenIsValid;
 };
 
 export const setTokensAsCookies = (accessToken: string, refreshToken: string, cookie: Cookie) => {

apps/frontend/src/utils/api.ts

@@ -0,0 +1,26 @@
+import { ACCESS_COOKIE_NAME } from '../shared/auth.service';
+
+const cache = {
+  accessToken: '',
+};
+export const validateToken = async (accessToken: string): Promise<boolean> => {
+  if (accessToken === cache.accessToken) {
+    return true;
+  }
+  try {
+    const res = await fetch(`${process.env.API_DOMAIN}/api/v1/auth/check-auth`, {
+      method: 'GET',
+      credentials: 'include',
+      headers: {
+        cookie: `${ACCESS_COOKIE_NAME}=${accessToken}`,
+      },
+    });
+    if (res.ok) {
+      cache.accessToken = accessToken;
+      return true;
+    }
+  } catch (err) {
+    console.error('Failed to validate access token', err);
+  }
+  return false;
+};