From 06d3b4bc19e753ddd17ef82e7e93eec1b6555044 Mon Sep 17 00:00:00 2001
From: itsscb <dev@itsscb.de>
Date: Fri, 3 Nov 2023 13:43:47 +0100
Subject: [PATCH] fix/gapi.refresh_token generates invalid access_token

---
 bff/gapi/rpc_refresh_token.go | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/bff/gapi/rpc_refresh_token.go b/bff/gapi/rpc_refresh_token.go
index 10d479f..ce1d70e 100644
--- a/bff/gapi/rpc_refresh_token.go
+++ b/bff/gapi/rpc_refresh_token.go
@@ -54,14 +54,9 @@ func (server *Server) RefreshToken(ctx context.Context, req *pb.RefreshTokenRequ
 		return nil, status.Error(codes.PermissionDenied, "session expired")
 	}
 
-	id, err := server.tokenMaker.NewTokenID()
-	if err != nil {
-		slog.Error("refresh_token (token_id)", slog.Int64("invoked_by", int64(refreshPayload.AccountID)), slog.String("error", err.Error()))
-		return nil, status.Error(codes.Internal, "failed to create session token")
-	}
 	accessToken, accessPayload, err := server.tokenMaker.CreateToken(
 		refreshPayload.AccountID,
-		id,
+		session.ID,
 		server.config.AccessTokenDuration,
 	)
 	if err != nil {