1.0.7 • Published 1 month ago
jwk-subtle v1.0.7
jwk-subtle
Verify RS256 JWT. Uses only crypto.subtle
.
To check the Authorization header:
const [scheme, token] = (request.headers.get("Authorization") ?? " ").split(" ");
if (scheme !== "Bearer") new Response("", { status: 401 });
const claims = await verify(token, "https://example.eu.auth0.com/", "http://example.com");
if (!claims) return new Response("", { status: 401 });