refactor: json web token relocated

src/lib/auth.js

@@ -1,13 +1,13 @@
 // @flow
 
 import {loadPlugin} from '../lib/plugin-loader';
-import jwt from 'jsonwebtoken';
 import {ErrorCode} from './utils';
+import {aesDecrypt, aesEncrypt, signPayload, verifyPayload} from './crypto-utils';
 
 import type {Config, Logger, Callback} from '@verdaccio/types';
 import type {$Response, NextFunction} from 'express';
-import type {$RequestExtend} from '../../types';
+import type {$RequestExtend, JWTPayload} from '../../types';
-import {aesDecrypt, aesEncrypt} from './crypto-utils';
+
 
 const LoggerApi = require('./logger');
 /**
@@ -18,6 +18,7 @@ class Auth {
   logger: Logger;
   secret: string;
   plugins: Array<any>;
+  static DEFAULT_EXPIRE_WEB_TOKEN: string = '7d';
 
   constructor(config: Config) {
     this.config = config;
@@ -300,18 +301,14 @@ class Auth {
     };
   }
 
-  issueUIjwt(user: any, expire_time: string) {
+  issueUIjwt(user: any, expiresIn: string) {
-    return jwt.sign(
+    const {name, real_groups} = user;
-      {
+    const payload: JWTPayload = {
-        user: user.name,
+      user: name,
-        group: user.real_groups && user.real_groups.length ? user.real_groups : undefined,
+      group: real_groups && real_groups.length ? real_groups : undefined,
-      },
+    };
-      this.secret,
+
-      {
+    return signPayload(payload, this.secret, {expiresIn: expiresIn || Auth.DEFAULT_EXPIRE_WEB_TOKEN});
-        notBefore: '1000', // Make sure the time will not rollback :)
-        expiresIn: expire_time || '7d',
-      }
-    );
   }
 
   /**
@@ -322,7 +319,7 @@ class Auth {
   decode_token(token: string) {
     let decoded;
     try {
-      decoded = jwt.verify(token, this.secret);
+      decoded = verifyPayload(token, this.secret);
     } catch (err) {
       throw ErrorCode.getCode(401, err.message);
     }

src/lib/crypto-utils.js

@@ -1,6 +1,8 @@
 // @flow
 
 import {createDecipher, createCipher, createHash, pseudoRandomBytes} from 'crypto';
+import jwt from 'jsonwebtoken';
+import type {JWTPayload, JWTSignOptions} from '../../types';
 
 export const defaultAlgorithm = 'aes192';
 
@@ -41,3 +43,14 @@ export function stringToMD5(data: Buffer | string) {
 export function generateRandomHexString(length: number = 8) {
   return pseudoRandomBytes(length).toString('hex');
 }
+
+export function signPayload(payload: JWTPayload, secret: string, options: JWTSignOptions) {
+  return jwt.sign(payload, secret, {
+    notBefore: '1000', // Make sure the time will not rollback :)
+    ...options,
+  });
+}
+
+export function verifyPayload(token: string, secret: string) {
+  return jwt.verify(token, secret);
+}

types/index.js

@@ -113,6 +113,15 @@ export interface IStorage {
   getSecret(config: Config): Promise<any>;
 }
 
+export type JWTPayload = {
+  user: string;
+  group: string | void;
+}
+
+export type JWTSignOptions = {
+  expiresIn: string;
+}
+
 export type $RequestExtend = $Request & {remote_user?: any}
 export type $ResponseExtend = $Response & {cookies?: any}
 export type $NextFunctionVer = NextFunction & mixed;