1.0.1 • Published 3 years ago

@mjakubec/jwt-verify v1.0.1

Weekly downloads
-
License
ISC
Repository
github
Last release
3 years ago

@mjakubec/jwt-verify

Simple express middleware to authorize JSON Web Tokens and authorize users.

Provides isUserLoggedIn property (true or false) on res.locals object.

Furthermore, it decodes the values in JWT and provides them as tokenValues property on res.locals object so that you can see contents of the token.

Usage

Let's say that the JWT contains role value which can be set to either admin or user

const express = require('express');
const app = express();
const JWTVerify = require('@mjakubec/jwt-verify');

app.use('*', JWTVerify('super_secret_string_for_JWT'));

app.get('/', (req, res) => {
  if (res.locals.isUserLoggedIn) {
    if (res.locals.tokenValues.role === 'admin') { 
      res.send('Hey there, admin!')
    } else if (res.locals.tokenValues.role === 'user' ) {
      res.send('Hello, logged in user.')
    }
  } else {
    res.send('Begone, you heathen.')
  }
})

app.listen(3000);

In this case, if the user provides a valid JWT, they can access the restricted content which firther differentiates between user roles.

expressjwtauthorization
jsonwebtoken
@infinitebrahmanuniverse/nolb-_mj@everything-registry/sub-chunk-609
1.0.1

3 years ago

1.0.0

3 years ago