feat(auth): harden authentication with argon2 passwords and rotating hashed refresh tokens

ts_web/elements/idp-registerprompt.ts

@@ -207,21 +207,14 @@ export class IdpRegistrationPrompt extends DeesElement {
   }
 
   public async handleRefreshToken(refreshTokenArg: string, delayDispatchMillisArg = 0) {
-    // a refreshToken binds directly to a session.
-    // the refresh token is used on a continuous basis to get fresh and short-lived jwts
     const idpState = await IdpState.getSingletonInstance();
-    const refreshJwt = idpState.idpClient.typedsocket.createTypedRequest<plugins.idpInterfaces.request.IReq_RefreshJwt>(
-      'refreshJwt'
-    );
-    const responseJwt = await refreshJwt.fire({
-      refreshToken: refreshTokenArg,
-    });
+    const jwt = await idpState.idpClient.refreshJwt(refreshTokenArg);
 
-    if (responseJwt.jwt) {
+    if (jwt) {
       this.domtools.convenience.smartdelay.delayFor(delayDispatchMillisArg).then(() => {
-        this.dispatchJwt(responseJwt.jwt);
+        this.dispatchJwt(jwt);
       });
-      return responseJwt.jwt;
+      return jwt;
     } else {
       return null;
     }