UNPKG

@ssense/auth

Version:

The Auth Module is a combination for an HTTP middleware (compatible with express and restify) and a Typescript decorator. Used together, they allow protection for all the routes of your application, handling user authentication and authorizations.

github.com/Groupe-Atallah/pkg-node-utils/tree/master/packages/auth

Groupe-Atallah/pkg-node-utils

83 lines (82 loc) 2.69 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
import { LogLevel } from "@ssense/logger"; import { IncomingMessage, ServerResponse } from "node:http"; import { ZodEnum, z } from "zod"; //#region src/AuthModule.d.ts interface AuthModuleOptions { enabled?: boolean; authServerHost?: string; authServerSecure?: boolean; publicRoutes?: RegExp[]; publicHttpMethods?: string[]; onForbidden?: (req: IncomingMessageWithAuth, res: ServerResponse, next: Function) => any; logger?: { enabled?: boolean; level?: LogLevel; pretty?: boolean; }; alwaysCreateAuthObject?: boolean; } type RequestHandler = (req: IncomingMessageWithAuth, res: ServerResponse, next: Function) => Promise<any>; declare const AuthInfoTypeSchema: ZodEnum<['user', 'service']>; type AuthInfoType = z.infer<typeof AuthInfoTypeSchema>; declare class AuthInfo { id: string; type: AuthInfoType; scopes: string[]; token: string; tokenId: string; tokenExpirationTime: Date; enabled: boolean; publicRoute: boolean; hasScope(scope: string): boolean; hasScopes(scopes: string[]): boolean; isActive(): boolean; } declare class AuthModule { private readonly userAgent; private readonly client; private readonly logger; private readonly publicRoutes; private readonly publicHttpMethods; private readonly alwaysCreateAuthObject; private cookieName; private publicKeysUrl; private invalidatedTokensUrl; private publicKeys; private publicKeysExpire; private invalidatedTokens; private jwtOptions; private pubSubClient; private pubSubMessagesSignatureAlgorithm; private static enabled; private static templates; private static forbiddenCallback; constructor(options?: AuthModuleOptions); authenticate(): RequestHandler; static enable(enabled: boolean): void; private initialize; private initializePubSubClient; private getAuthInfoFromRequest; private getPublicKeyFromKid; private getTokenInfo; private getInvalidatedTokens; private cleanExpiredInvalidatedTokens; private verifyToken; private parseScopes; private isPublicRoute; private isPublicHttpMethod; private validatePubSubMessageSignature; private onPubSubAuthTokenInvalidated; static requireScope(scope: string | string[]): any; static requireAllScopes(scopes: string[]): any; static checkScopes(scope: string | string[], checkAllScopes: boolean): any; static scopeMiddleware(scope: string | string[], checkAllScopes?: boolean): RequestHandler; private static hasRequiredScope; private static showAuthenticationPage; } type IncomingMessageWithAuth = IncomingMessage & { auth?: AuthInfo; logger?: any; }; //#endregion export { AuthInfo, AuthModule, type AuthModuleOptions, type RequestHandler };