UNPKG

kongadmin

Version:

Kong admin GUI

github.com/pantsel/konga

pantsel/konga

81 lines (69 loc) 2.58 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
'use strict'; /** * Token.js * * JWT token service which handles issuing and verifying tokens. */ var jwt = require('jsonwebtoken'); /** * Service method to generate a new token based on payload we want to put on it. * * @param {String} payload * * @returns {*} */ module.exports.issue = function issue(payload) { sails.log.verbose(__filename + ':' + __line + ' [Service.Token.issue() called]'); return jwt.sign( payload, // This is the payload we want to put inside the token process.env.TOKEN_SECRET || "oursecret" // Secret string which will be used to sign the token ); }; /** * Service method to verify that the token we received on a request hasn't be tampered with. * * @param {String} token Token to validate * @param {Function} next Callback function * * @returns {*} */ module.exports.verify = function verify(token, next) { sails.log.verbose(__filename + ':' + __line + ' [Service.Token.verify() called]'); return jwt.verify( token, // The token to be verified process.env.TOKEN_SECRET || "oursecret", // The secret we used to sign it. {}, // Options, none in this case next // The callback to be call when the verification is done. ); }; /** * Service method to get current user token. Note that this will also verify actual token value. * * @param {Request} request Request object * @param {Function} next Callback function * @param {Boolean} throwError Throw error from invalid token specification * * @return {*} */ module.exports.getToken = function getToken(request, next, throwError) { sails.log.verbose(__filename + ':' + __line + ' [Service.Token.getToken() called]'); var token = ''; // Yeah we got required 'authorization' header if (request.headers && request.headers.authorization) { var parts = request.headers.authorization.split(' '); if (parts.length === 2) { var scheme = parts[0]; var credentials = parts[1]; if (/^Bearer$/i.test(scheme)) { token = credentials; } } else if (throwError) { throw new Error('Invalid authorization header format. Format is Authorization: Bearer [token]'); } } else if (request.param('token')) { // JWT token sent by parameter token = request.param('token'); } else if (throwError) { // Otherwise request didn't contain required JWT token throw new Error('No authorization header was found'); } return sails.services.token.verify(token, next); };