unpkg/server/AuthAPI.js

const crypto = require("crypto");
const jwt = require("jsonwebtoken");

const db = require("./utils/data");
const secretKey = require("./secretKey");

function getCurrentSeconds() {
  return Math.floor(Date.now() / 1000);
}

function createTokenId() {
  return crypto.randomBytes(16).toString("hex");
}

function createToken(scopes = {}) {
  return new Promise((resolve, reject) => {
    const payload = {
      jti: createTokenId(),
      iss: "https://unpkg.com",
      iat: getCurrentSeconds(),
      scopes
    };

    jwt.sign(
      payload,
      secretKey.private,
      { algorithm: "RS256" },
      (error, token) => {
        if (error) {
          reject(error);
        } else {
          resolve(token);
        }
      }
    );
  });
}

const revokedTokensSet = "revoked-tokens";

function verifyToken(token) {
  return new Promise((resolve, reject) => {
    const options = { algorithms: ["RS256"] };

    jwt.verify(token, secretKey.public, options, (error, payload) => {
      if (error) {
        reject(error);
      } else {
        if (payload.jti) {
          db.sismember(revokedTokensSet, payload.jti, (error, value) => {
            if (error) {
              reject(error);
            } else {
              resolve(value === 0 ? payload : null);
            }
          });
        } else {
          resolve(null);
        }
      }
    });
  });
}

function revokeToken(token) {
  return verifyToken(token).then(payload => {
    if (payload) {
      return new Promise((resolve, reject) => {
        db.sadd(revokedTokensSet, payload.jti, error => {
          if (error) {
            reject(error);
          } else {
            resolve();
          }
        });
      });
    }
  });
}

function removeAllRevokedTokens() {
  return new Promise((resolve, reject) => {
    db.del(revokedTokensSet, error => {
      if (error) {
        reject(error);
      } else {
        resolve();
      }
    });
  });
}

function getPublicKey() {
  return secretKey.public;
}

module.exports = {
  createToken,
  verifyToken,
  revokeToken,
  removeAllRevokedTokens,
  getPublicKey
};
Prettify everything 2018-02-18 02:00:56 +00:00			`const crypto = require("crypto");`
			`const jwt = require("jsonwebtoken");`
Move Redis client to utils/redis 2018-02-18 04:21:19 +00:00
Separate out cache + data servers 2018-07-06 17:53:16 +00:00			`const db = require("./utils/data");`
Add secretKey module 2018-06-09 06:01:13 +00:00			`const secretKey = require("./secretKey");`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00
			`function getCurrentSeconds() {`
Prettify everything 2018-02-18 02:00:56 +00:00			`return Math.floor(Date.now() / 1000);`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`

			`function createTokenId() {`
Prettify everything 2018-02-18 02:00:56 +00:00			`return crypto.randomBytes(16).toString("hex");`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`

			`function createToken(scopes = {}) {`
			`return new Promise((resolve, reject) => {`
			`const payload = {`
			`jti: createTokenId(),`
Prettify 2017-11-25 21:25:01 +00:00			`iss: "https://unpkg.com",`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`iat: getCurrentSeconds(),`
			`scopes`
Prettify everything 2018-02-18 02:00:56 +00:00			`};`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00
Add secretKey module 2018-06-09 06:01:13 +00:00			`jwt.sign(`
			`payload,`
			`secretKey.private,`
			`{ algorithm: "RS256" },`
			`(error, token) => {`
			`if (error) {`
			`reject(error);`
			`} else {`
			`resolve(token);`
			`}`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`
Add secretKey module 2018-06-09 06:01:13 +00:00			`);`
Prettify everything 2018-02-18 02:00:56 +00:00			`});`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`

Small tweaks 2018-04-04 05:32:32 +00:00			`const revokedTokensSet = "revoked-tokens";`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00
			`function verifyToken(token) {`
			`return new Promise((resolve, reject) => {`
Prettify everything 2018-02-18 02:00:56 +00:00			`const options = { algorithms: ["RS256"] };`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00
Add secretKey module 2018-06-09 06:01:13 +00:00			`jwt.verify(token, secretKey.public, options, (error, payload) => {`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`if (error) {`
Prettify everything 2018-02-18 02:00:56 +00:00			`reject(error);`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`} else {`
			`if (payload.jti) {`
Small tweaks 2018-04-04 05:32:32 +00:00			`db.sismember(revokedTokensSet, payload.jti, (error, value) => {`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`if (error) {`
Prettify everything 2018-02-18 02:00:56 +00:00			`reject(error);`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`} else {`
Prettify everything 2018-02-18 02:00:56 +00:00			`resolve(value === 0 ? payload : null);`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`
Prettify everything 2018-02-18 02:00:56 +00:00			`});`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`} else {`
Prettify everything 2018-02-18 02:00:56 +00:00			`resolve(null);`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`
			`}`
Prettify everything 2018-02-18 02:00:56 +00:00			`});`
			`});`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`

			`function revokeToken(token) {`
			`return verifyToken(token).then(payload => {`
			`if (payload) {`
			`return new Promise((resolve, reject) => {`
Small tweaks 2018-04-04 05:32:32 +00:00			`db.sadd(revokedTokensSet, payload.jti, error => {`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`if (error) {`
Prettify everything 2018-02-18 02:00:56 +00:00			`reject(error);`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`} else {`
Prettify everything 2018-02-18 02:00:56 +00:00			`resolve();`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`
Prettify everything 2018-02-18 02:00:56 +00:00			`});`
			`});`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`
Prettify everything 2018-02-18 02:00:56 +00:00			`});`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`

			`function removeAllRevokedTokens() {`
			`return new Promise((resolve, reject) => {`
Small tweaks 2018-04-04 05:32:32 +00:00			`db.del(revokedTokensSet, error => {`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`if (error) {`
Prettify everything 2018-02-18 02:00:56 +00:00			`reject(error);`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`} else {`
Prettify everything 2018-02-18 02:00:56 +00:00			`resolve();`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`
Prettify everything 2018-02-18 02:00:56 +00:00			`});`
			`});`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`

			`function getPublicKey() {`
Add secretKey module 2018-06-09 06:01:13 +00:00			`return secretKey.public;`
Add auth and blacklist APIs 2017-11-11 20:18:13 +00:00			`}`

			`module.exports = {`
			`createToken,`
			`verifyToken,`
			`revokeToken,`
			`removeAllRevokedTokens,`
			`getPublicKey`
Prettify everything 2018-02-18 02:00:56 +00:00			`};`