example use cases
decoding JWTs
decodeToken.js
const decodeToken = (req) => {
const { authorization } = req.headers;
if (!authorization) {
throw new OAuth2Error('Missing Authorization header', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN);
}
// Strip Bearer part
const token = authorization.split(' ')[1];
if (!token) {
throw new OAuth2Error('Missing access token', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN);
}
// base64 decode
const decoded = jwt.decode(token);
// Check that the token contains a sub claim i.e an userId
if (!decoded || !decoded.sub) {
throw new OAuth2Error('Invalid access token', 401, AUTHORIZATION_INVALID_ACCESS_TOKEN);
}
return decoded;
};getAuthorization.js
const getAuthorization = req => {
const { authorization } = req.headers;
if (!authorization) {
throw new OAuth2Error('Missing Authorization header', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN);
}
return authorization
}getToken.js
const getToken = authorization => {
// Strip Bearer part
const token = authorization.split(' ')[1];
if (!token) {
throw new OAuth2Error('Missing access token', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN);
}
return token
}getDecodedToken.js
const getDecodedToken = token => {
// base64 decode
const decoded = jwt.decode(token);
// Check that the token contains a sub claim i.e an userId
if (!decoded || !decoded.sub) {
throw new OAuth2Error('Invalid access token', 401, AUTHORIZATION_INVALID_ACCESS_TOKEN);
}
return decoded;
}const decodeToken = (req) => {
const authorization = getAuthorization(req)
const token = getToken(authorization)
return decodeToken(token)
};const getAuthorization = req => {
const { authorization } = req.headers;
if (!authorization) {
throw new OAuth2Error('Missing Authorization header', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN);
}
return authorization
}const getToken = authorization => {
// Strip Bearer part
const token = authorization.split(' ')[1];
if (!token) {
throw new OAuth2Error('Missing access token', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN);
}
return token
}const decodeToken = token => {
// base64 decode
const decoded = jwt.decode(token);
// Check that the token contains a sub claim i.e an userId
if (!decoded || !decoded.sub) {
throw new OAuth2Error('Invalid access token', 401, AUTHORIZATION_INVALID_ACCESS_TOKEN);
}
return decoded;
}getAuthorization.js
import { compose, get, ifElse, not } from 'conductor'
const getAuthorization = compose(
ifElse(not, () => { throw new OAuth2Error('Missing Authorization header', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN) }),
get('authorization'),
get('headers'),
)getToken.js
import { compose, get, ifElse, split } from 'conductor'
const getToken = compose(
ifElse(not, () => { throw new OAuth2Error('Missing access token', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN) }),
get(1),
split(' '),
)getDecodedToken.js
const getDecodedToken = compose(
ifElse(or(not, compose(not, get('sub'))), () => { throw new OAuth2Error('Invalid access token', 401, AUTHORIZATION_INVALID_ACCESS_TOKEN) })
jwt.decode,
)import { compose } from 'conductor'
import getAuthorization from './getAuthorization'
import getToken from './getToken'
import getDecodedToken from './getDecodedToken'
const decodeToken = compose(getDecodedToken, getToken, getAuthorization)import { compose, get, ifElse, not } from 'conductor'
const getAuthorization = compose(
ifElse(not, () => { throw new OAuth2Error('Missing Authorization header', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN) }),
get('authorization'),
get('headers'),
)import { compose, get, ifElse, split } from 'conductor'
const getToken = compose(
ifElse(not, () => { throw new OAuth2Error('Missing access token', 401, AUTHORIZATION_MISSING_ACCESS_TOKEN) }),
get(1),
split(' '),
)const getDecodedToken = compose(
ifElse(or(not, compose(not, get('sub'))), () => { throw new OAuth2Error('Invalid access token', 401, AUTHORIZATION_INVALID_ACCESS_TOKEN) })
jwt.decode,
)Last updated