UNPKG

hapi-auth-jwt2

Version:

Hapi.js Authentication Plugin/Scheme using JSON Web Tokens (JWT)

github.com/dwyl/hapi-auth-jwt2

dwyl/hapi-auth-jwt2

74 lines (60 loc) 2.14 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
const Hapi = require('@hapi/hapi'); const secret = 'NeverShareYourSecret'; // for debug options see: https://hapi.dev/tutorials/logging/ let debug; // debug = { debug: { 'request': ['error', 'uncaught'] } }; debug = { debug: false }; const server = new Hapi.server(debug); const sendToken = function(req, reply) { return req.auth.token || null; }; const privado = function(req, reply) { return req.auth.credentials; }; let lastErrorContext = undefined; function getLastErrorContext() { return lastErrorContext; } // defining our own validate function lets us do something // useful/custom with the decodedToken before reply(ing) const customVerify = function (decoded, request) { lastErrorContext = undefined; if (decoded.error) { throw new Error('customVerify fails!'); } else if (decoded.custom_error) { throw new Error(decoded.custom_error); } else if (decoded.some_property) { return { isValid: true, credentials: decoded}; } else { return { isValid: false }; } }; const customErrorFunc = function (errorContext, req, h) { const result = errorContext; lastErrorContext = errorContext; h.response().state('customError', 'setInCustomErrorFn'); if (errorContext.message.toString().search(/ignore/) >= 0) { result = null; } else if (errorContext.errorType === 'unauthorized') { result.message = "Invalid credentials mate"; } return result; }; const init = async() => { await server.register(require('../lib/index.cjs')); server.auth.strategy('jwt', 'jwt', { verify: customVerify, // no validate or key required. errorFunc: customErrorFunc }); server.route([ { method: 'GET', path: '/', handler: sendToken, config: { auth: false } }, { method: 'GET', path: '/required', handler: privado, config: { auth: { mode: 'required', strategy: 'jwt' } } }, { method: 'GET', path: '/optional', handler: privado, config: { auth: { mode: 'optional', strategy: 'jwt' } } }, { method: 'GET', path: '/try', handler: privado, config: { auth: { mode: 'try', strategy: 'jwt' } } } ]); }; init(); module.exports = { server, getLastErrorContext };