refactor: json web token relocated
This commit is contained in:
Juan Picado @jotadeveloper
parent
87e3faa624
commit
74f1198cf3
|
|
@ -1,13 +1,13 @@
|
|||
// @flow
|
||||
|
||||
import {loadPlugin} from '../lib/plugin-loader';
|
||||
import jwt from 'jsonwebtoken';
|
||||
import {ErrorCode} from './utils';
|
||||
import {aesDecrypt, aesEncrypt, signPayload, verifyPayload} from './crypto-utils';
|
||||
|
||||
import type {Config, Logger, Callback} from '@verdaccio/types';
|
||||
import type {$Response, NextFunction} from 'express';
|
||||
import type {$RequestExtend} from '../../types';
|
||||
import {aesDecrypt, aesEncrypt} from './crypto-utils';
|
||||
import type {$RequestExtend, JWTPayload} from '../../types';
|
||||
|
||||
|
||||
const LoggerApi = require('./logger');
|
||||
/**
|
||||
|
|
@ -18,6 +18,7 @@ class Auth {
|
|||
logger: Logger;
|
||||
secret: string;
|
||||
plugins: Array<any>;
|
||||
static DEFAULT_EXPIRE_WEB_TOKEN: string = '7d';
|
||||
|
||||
constructor(config: Config) {
|
||||
this.config = config;
|
||||
|
|
@ -300,18 +301,14 @@ class Auth {
|
|||
};
|
||||
}
|
||||
|
||||
issueUIjwt(user: any, expire_time: string) {
|
||||
return jwt.sign(
|
||||
{
|
||||
user: user.name,
|
||||
group: user.real_groups && user.real_groups.length ? user.real_groups : undefined,
|
||||
},
|
||||
this.secret,
|
||||
{
|
||||
notBefore: '1000', // Make sure the time will not rollback :)
|
||||
expiresIn: expire_time || '7d',
|
||||
}
|
||||
);
|
||||
issueUIjwt(user: any, expiresIn: string) {
|
||||
const {name, real_groups} = user;
|
||||
const payload: JWTPayload = {
|
||||
user: name,
|
||||
group: real_groups && real_groups.length ? real_groups : undefined,
|
||||
};
|
||||
|
||||
return signPayload(payload, this.secret, {expiresIn: expiresIn || Auth.DEFAULT_EXPIRE_WEB_TOKEN});
|
||||
}
|
||||
|
||||
/**
|
||||
|
|
@ -322,7 +319,7 @@ class Auth {
|
|||
decode_token(token: string) {
|
||||
let decoded;
|
||||
try {
|
||||
decoded = jwt.verify(token, this.secret);
|
||||
decoded = verifyPayload(token, this.secret);
|
||||
} catch (err) {
|
||||
throw ErrorCode.getCode(401, err.message);
|
||||
}
|
||||
|
|
|
|||
|
|
@ -1,6 +1,8 @@
|
|||
// @flow
|
||||
|
||||
import {createDecipher, createCipher, createHash, pseudoRandomBytes} from 'crypto';
|
||||
import jwt from 'jsonwebtoken';
|
||||
import type {JWTPayload, JWTSignOptions} from '../../types';
|
||||
|
||||
export const defaultAlgorithm = 'aes192';
|
||||
|
||||
|
|
@ -41,3 +43,14 @@ export function stringToMD5(data: Buffer | string) {
|
|||
export function generateRandomHexString(length: number = 8) {
|
||||
return pseudoRandomBytes(length).toString('hex');
|
||||
}
|
||||
|
||||
export function signPayload(payload: JWTPayload, secret: string, options: JWTSignOptions) {
|
||||
return jwt.sign(payload, secret, {
|
||||
notBefore: '1000', // Make sure the time will not rollback :)
|
||||
...options,
|
||||
});
|
||||
}
|
||||
|
||||
export function verifyPayload(token: string, secret: string) {
|
||||
return jwt.verify(token, secret);
|
||||
}
|
||||
|
|
|
|||
|
|
@ -113,6 +113,15 @@ export interface IStorage {
|
|||
getSecret(config: Config): Promise<any>;
|
||||
}
|
||||
|
||||
export type JWTPayload = {
|
||||
user: string;
|
||||
group: string | void;
|
||||
}
|
||||
|
||||
export type JWTSignOptions = {
|
||||
expiresIn: string;
|
||||
}
|
||||
|
||||
export type $RequestExtend = $Request & {remote_user?: any}
|
||||
export type $ResponseExtend = $Response & {cookies?: any}
|
||||
export type $NextFunctionVer = NextFunction & mixed;
|
||||
|
|
|
|||
Loading…
Reference in New Issue