UNPKG

express-gateway

Version:

A microservices API gateway built on top of ExpressJS

www.express-gateway.io

expressgateway/express-gateway

52 lines (50 loc) 1.89 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
const extractors = require('./extractors'); module.exports = { policy: require('./jwt'), schema: { $id: 'http://express-gateway.io/schemas/policies/jwt.json', type: 'object', properties: { secretOrPublicKey: { type: 'string', description: 'The secret (symmetric) or PEM-encoded public key (asymmetric) for verifying the token\'s signature.', examples: ['secretString', 'PEMCertificate'] }, secretOrPublicKeyFile: { type: 'string', description: 'The secret (symmetric) or PEM-encoded public key (asymmetric) file for verifying the token\'s signature.', examples: ['./path/to/cert.pem'] }, jwtExtractor: { type: 'string', enum: Object.keys(extractors), default: 'authBearer', description: 'The method to use to extract the JWT from the current HTTP Request' }, jwtExtractorField: { type: 'string', description: 'An optional argument for the selected extractor' }, audience: { type: 'string', description: 'If defined, the token audience (aud) will be verified against this value.' }, issuer: { type: 'string', description: 'If defined the token issuer (iss) will be verified against this value' }, checkCredentialExistence: { type: 'boolean', default: true, description: 'Value istructing the gateway whether verify the sub against the internal SOC' }, algorithms: { type: 'array', items: { type: 'string', enum: ['HS256', 'HS384', 'HS512', 'RS256', 'RS384', 'RS512'] }, description: 'If defined, limits valid jwts to specified algorithms' } }, required: ['jwtExtractor', 'checkCredentialExistence'], oneOf: [{ required: ['secretOrPublicKey'] }, { required: ['secretOrPublicKeyFile'] }] } };