1.0.1 • Published 11 years ago

hapi-auth-jwt-request v1.0.1

Weekly downloads
1
License
ISC
Repository
github
Last release
11 years ago

Hapi JWT Bearer Token

Build Status

Hapi Bearer and JWT Authentication, with request

$ npm install --save hapi-auth-jwt-request

Bearer authentication requires validating a token passed in by either the bearer authorization header, or by an access_token query parameter. The 'bearer-access-token' scheme takes the following options:

  • validateFunc - (required) a token lookup and validation function with the signature function (token, request, callback) where:
    • token - the decoded and authenticated JSON Web Token.
    • request - the request object.
    • callback - a callback function with the signature function (err, isValid, credentials) where:
      • err - an internal error.
      • isValid - true if access is to be granted, otherwise false.
      • credentials - a credentials object passed back to the application in request.auth.credentials. Typically, credentials are only included when isValid is true, but there are cases when the application needs to know who tried to authenticate even when it fails (e.g. with authentication mode 'try').
  • secret - (required) the secret for decoding the JWT Bearer Token
var Hapi = require('hapi');

var defaultHandler = function (request, reply) {
    reply('success');
};

var server = Hapi.createServer('localhost', 8080, {
  cors: true
});

server.pack.register(require('hapi-auth-jwt-request'), function (err) {
  server.auth.strategy('simple', 'bearer-access-token', {
    validateFunc: function (token, request, callback) {
      if (token.username === "valid user"){
        callback(null, true, { token: token })
      } else {
        callback(null, false, { token: token })
      }
    },
    secret: "mysecret"
  });

  server.route({ method: 'GET', path: '/', handler: defaultHandler, config: { auth: 'simple' } });

  server.start(function () {
    console.log('Server started at: ' + server.info.uri);
  });
});

Example Usage:

curl -X GET -H "Authorization:Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VybmFtZSI6InZhbGlkIHVzZXIifQ.RMKj_W8OXSSXDyop-5t_dpL2qRTtk06gG2PZK4dHZbU" -H "Cache-Control:no-cache" http://localhost:8080

curl -X GET -H "Cache-Control:no-cache" http://localhost:8080?access_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VybmFtZSI6InZhbGlkIHVzZXIifQ.RMKj_W8OXSSXDyop-5t_dpL2qRTtk06gG2PZK4dHZbU
authhapijwtbearer
boomhoekjwt-simple
@infinitebrahmanuniverse/nolb-hapi-a@everything-registry/sub-chunk-1824http-db
1.0.1

11 years ago

1.0.0

11 years ago