UNPKG

@afnank19/express-auth-helper

Version:

Helper functions for rolling your own auth with bcrypt, jwts and expressjs

github.com/afnank19/express-auth-helpers

41 lines (33 loc) 1.09 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
import jwt from "jsonwebtoken"; export function authenticateAction(options = {}) { const secret = options.secret; return function verifyAuthToken(req, res, next) { try { const authHeader = req.headers["authorization"]; if (!authHeader) { res.status(401).json({ message: "Unauthorized" }); return; } const accessToken = req.headers.authorization.split(" ")[1]; if (accessToken === undefined) { res .status(401) .json({ message: "Unauthorized: No credentials provided" }); return; } console.log("Verifying token: ", accessToken); console.log("With secret:", secret); jwt.verify(accessToken, secret, (err, decoded) => { if (err) { return res.status(401).json({ error: "Invalid or expired token" }); } // Attach the decoded payload to the request object for further use req.user = decoded; next(); }); } catch (error) { res.status(401).json({ message: "Unauthorized buddy" }); return; } }; }