UNPKG

hapi-auth-jwt2

Version:

Hapi.js Authentication Plugin/Scheme using JSON Web Tokens (JWT)

github.com/dwyl/hapi-auth-jwt2

dwyl/hapi-auth-jwt2

70 lines (59 loc) 2.12 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
const Hapi = require('@hapi/hapi'); const secret = 'NeverShareYourSecret'; // for debug options see: https://hapi.dev/tutorials/logging/ const server = new Hapi.server({ debug: false }); const db = { "123": { allowed: true, "name": "Charlie" }, "321": { allowed: false, "name": "Old Gregg"} }; // defining our own validate function lets us do something // useful/custom with the decodedToken before reply(ing) const validate = async function (decoded, request) { if (db[decoded.id].allowed) { return {isValid: true}; } else { return {isValid: false}; } }; const privado = function(req, h) { return 'worked'; }; const init = async () =>{ try { await server.register(require('../lib/index.cjs')); server.auth.strategy('jwt', 'jwt', { key: secret, validate, verifyOptions: { algorithms: [ 'HS256' ] }, // only allow HS256 algorithm attemptToExtractTokenInPayload: true, }); server.auth.strategy('jwt-nopayload', 'jwt', { key: secret, validate, verifyOptions: { algorithms: [ 'HS256' ] }, // only allow HS256 algorithm payloadKey: false, attemptToExtractTokenInPayload: true, }); server.auth.strategy('jwt-nopayload2', 'jwt', { key: secret, validate, verifyOptions: { algorithms: [ 'HS256' ] }, // only allow HS256 algorithm payloadKey: '', attemptToExtractTokenInPayload: true, }); server.route([ { method: 'POST', path: '/privado', handler: privado, config: { auth: { strategies: ['jwt'], payload: 'optional' } } }, { method: 'POST', path: '/privadonopayload', handler: privado, config: { auth: { strategies: ['jwt-nopayload'], payload: 'optional' } } }, { method: 'POST', path: '/privadonopayload2', handler: privado, config: { auth: { strategies: ['jwt-nopayload2'], payload: 'optional' } } }, ]); } catch(e) { throw e; } } init(); process.on('unhandledRejection', function(reason, p){ console.error("Possibly Unhandled Rejection at: Promise ", p, " reason: ", reason); // application specific logging here }); module.exports = server;