Make AuthInfo.expiresAt mandatory since it is validated as mandatory at runtime

README.md

@@ -1183,6 +1183,7 @@ const proxyProvider = new ProxyOAuthServerProvider({
             token,
             clientId: "123",
             scopes: ["openid", "email", "profile"],
+            expiresAt: Math.floor(Date.now() / 1000) + 3600
         }
     },
     getClient: async (client_id) => {

src/server/auth/middleware/bearerAuth.test.ts

@@ -95,7 +95,9 @@ describe("requireBearerAuth middleware", () => {
       token: "no-expiration-token",
       clientId: "client-123",
       scopes: ["read", "write"],
-      expiresAt
+
+      // Type does not accept possible undefined so an assertion is required for this test
+      expiresAt: expiresAt as number
     };
     mockVerifyAccessToken.mockResolvedValue(noExpirationAuthInfo);
 
@@ -146,6 +148,7 @@ describe("requireBearerAuth middleware", () => {
       token: "valid-token",
       clientId: "client-123",
       scopes: ["read"],
+      expiresAt: Math.floor(Date.now() / 1000) + 3600,
     };
     mockVerifyAccessToken.mockResolvedValue(authInfo);
 
@@ -418,6 +421,7 @@ describe("requireBearerAuth middleware", () => {
         token: "valid-token",
         clientId: "client-123",
         scopes: ["read"],
+        expiresAt: Math.floor(Date.now() / 1000) + 3600,
       };
       mockVerifyAccessToken.mockResolvedValue(authInfo);
 

src/server/auth/types.ts

@@ -20,7 +20,7 @@ export interface AuthInfo {
   /**
    * When the token expires (in seconds since epoch).
    */
-  expiresAt?: number;
+  expiresAt: number;
 
   /**
    * The RFC 8707 resource server identifier for which this token is valid.
@@ -33,4 +33,4 @@ export interface AuthInfo {
    * This field should be used for any additional data that needs to be attached to the auth info.
   */
   extra?: Record<string, unknown>;
-}
+}