omit endpoints that require AT from list of pass-through endpoints

folio-org · Oct 27, 2023 · 99574d9 · 99574d9
1 parent f9c1028
commit 99574d9
Showing 1 changed file with 1 addition and 3 deletions.
diff --git a/src/service-worker.js b/src/service-worker.js
@@ -185,7 +185,7 @@ export const rtr = async (event) => {
 
 /**
  * isPermissibleRequest
- * Some requests are always permissible, e.g. auth-n and token-rotation.
+ * Some requests are always permissible, e.g. auth-n and forgot-password.
  * Others are only permissible if the Access Token is still valid.
  *
  * @param {Request} req clone of the original event.request object
@@ -199,8 +199,6 @@ export const isPermissibleRequest = (req, te, oUrl) => {
   }
 
   const permissible = [
-    '/authn/refresh',
-    '/bl-users/_self',
     '/bl-users/forgotten/password',
     '/bl-users/forgotten/username',
     '/bl-users/login-with-expiry',