Skip to content

ShragaUser/spike-auth-middleware

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits

.eslint.js

.eslint.js

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

config.js

config.js

 
 

index.js

index.js

 
 

package-lock.json

package-lock.json

 
 

package.json

package.json

 
 

passport.js

passport.js

 
 

Repository files navigation

Spike npm module: "spike-auth-middleware"

This REPO is a Spike npm module that can be used to recieve an Authorization Bearer Token express.js middleware to allow certain scopes to certain endpoints.

npm version

NPM

Usage

const path = require("path");
const { getSpikeAuthMiddleWare } = require("spike-auth-middleware");

const configuration = {
    audience: 'audience',
    allowedScopes: ["read"],
    pathToPublicKey: path.resolve(__dirname, 'relative/path/to/certificate')
};

const allowForReadScopeOnly =  getSpikeAuthMiddleWare(configuration);

// express.js code:
app.get('/', allowForReadScopeOnly, (req,res,next) => {
    res.status(200).send('allowed for read scope');
})

Options For getSpikeAuthMiddleWare

  • audience: (String) audience to demand in JWT payload
  • pathToPublicKey: full path to public key to authenticate JWT signature with
  • allowedScopes: (Array) list of all allowed scopes in this middleware - default: ["read"]
  • useBearerToken: (Boolean) set to true if Authorization header should start with 'Bearer' - default: true

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

5 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

2 tags

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages