Authenticate

Authenticate

Authenticate module provides simple authentication mechanism utilizing json web tokens. While there are more robust solutions such as Passport.js, they are often too opinionated and bound to certain frameworks. Authenticate module provides clean API to implement JWT authentication with minimal level of abstraction.

Configuring Authenticate

Module is configured by passing configuration object with secret used for signing tokens and optional authorizationFn:

import { Authenticate } from 'node-mariner'
const Auth = new Authenticate({
  secret: 'DEAD_SIMPLE_KEY',
  authorizationFn: () => { ... //  }
});

key

type

description

secret

string

Secret key used for signing the token

authorizationFn (optional)

function

function that checks if token should be issued, and returns payload* for the token

NOTE: authorizationFn can be sync or async function and it must resolve and return an payload object or to reject and throw an error.

Issuing a token

We will configure Authenticate module to use DEAD_SIMPLE_KEY (in production use safe and unpredictable keys), and a dummy authorizationFn that will return username if it's passed to function.

import { Authenticate } from 'node-mariner'
const Auth = new Authenticate({
  secret: 'DEAD_SIMPLE_KEY',
  authorizationFn: (username) => {
    if (!username) throw new Error('Please provide a username')
    return { username }
  }
});

We can now issue tokens as:

Verifying a token

To verify the token, we use verify method from Authenticate module as following:

Manually issuing a token (without authorizationFn)

If you do not provide authorizationFn, you need to sign your payload manually, using sign method:

Real life sample using Mariner Service

You can preview complete implementation in mariner-blog example.

PreviousServiceNextEvents

Last updated