Skip to content

Randomize163/spike-auth-middleware

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Spike npm module: "spike-auth-middleware"

This REPO is a Spike npm module that can be used to recieve an Authorization Bearer Token express.js middleware to allow certain scopes to certain endpoints.

npm version

NPM


Usage

const path = require("path");
const { getSpikeAuthMiddleWare } = require("spike-auth-middleware");

const configuration = {
    audience: 'audience',
    allowedScopes: ["read"],
    pathToPublicKey: path.resolve(__dirname, 'relative/path/to/certificate')
};

const allowForReadScopeOnly =  getSpikeAuthMiddleWare(configuration);

// express.js code:
app.get('/', allowForReadScopeOnly, (req,res,next) => {
    res.status(200).send('allowed for read scope');
})

Options For getSpikeAuthMiddleWare

  • audience: (String) audience to demand in JWT payload
  • pathToPublicKey: full path to public key to authenticate JWT signature with
  • allowedScopes: (Array) list of all allowed scopes in this middleware - default: ["read"]
  • useBearerToken: (Boolean) set to true if Authorization header should start with 'Bearer' - default: true

About

No description, website, or topics provided.

Resources

Stars

Watchers

Forks

Packages

No packages published

Languages

  • JavaScript 100.0%