UNPKG

@theoptimalpartner/jwt-auth-validator

Version:

JWT token validation package with offline JWKS validation and Redis-based token revocation support

67 lines 2.07 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
export class ApiKeyValidator { redisService; constructor(redisService) { this.redisService = redisService; } async validateApiKey(apiKey) { if (!apiKey || !/^[a-fA-F0-9]{64}$/.test(apiKey)) { return { valid: false, error: 'Invalid API key format' }; } try { const keyData = await this.redisService.get(`api-keys:${apiKey}`); if (!keyData) { return { valid: false, error: 'API key not found' }; } const parsed = JSON.parse(keyData); if (!parsed.isActive) { return { valid: false, error: 'API key is inactive' }; } this.updateLastUsed(apiKey, parsed).catch(console.error); return { valid: true, keyData: parsed }; } catch (error) { console.error('Error validating API key:', error); return { valid: false, error: 'API key validation failed' }; } } async updateLastUsed(apiKey, keyData) { try { keyData.lastUsed = Date.now(); await this.redisService.set(`api-keys:${apiKey}`, JSON.stringify(keyData), 0); } catch (error) { console.error('Error updating last used timestamp:', error); } } hasPermission(keyData, permission) { return keyData.permissions.includes(permission); } isSystemApiKey(keyData) { return keyData.scope === 'system'; } isClientApiKey(keyData) { return keyData.scope === 'client'; } canAccessApp(keyData, appId) { if (keyData.scope === 'system') return true; const contextAppId = keyData.appId || keyData.metadata?.appId; return contextAppId === appId; } } //# sourceMappingURL=api-key-validator.js.map