refactor: json web token relocated

2024-12-16 21:56:25 -05:00 · 2018-06-03 08:51:18 +02:00 · 2018-06-03 08:51:18 +02:00 · 74f1198cf3
commit 74f1198cf3
parent 87e3faa624
3 changed files with 35 additions and 16 deletions
--- a/src/lib/auth.js
+++ b/src/lib/auth.js
@ -1,13 +1,13 @@
 // @flow

 import {loadPlugin} from '../lib/plugin-loader';
-import jwt from 'jsonwebtoken';
 import {ErrorCode} from './utils';
+import {aesDecrypt, aesEncrypt, signPayload, verifyPayload} from './crypto-utils';

 import type {Config, Logger, Callback} from '@verdaccio/types';
 import type {$Response, NextFunction} from 'express';
-import type {$RequestExtend} from '../../types';
-import {aesDecrypt, aesEncrypt} from './crypto-utils';
+import type {$RequestExtend, JWTPayload} from '../../types';
+

 const LoggerApi = require('./logger');
 /**
@ -18,6 +18,7 @@ class Auth {
  logger: Logger;
  secret: string;
  plugins: Array<any>;
+  static DEFAULT_EXPIRE_WEB_TOKEN: string = '7d';

  constructor(config: Config) {
    this.config = config;
@ -300,18 +301,14 @@ class Auth {
    };
  }

-  issueUIjwt(user: any, expire_time: string) {
-    return jwt.sign(
-      {
-        user: user.name,
-        group: user.real_groups && user.real_groups.length ? user.real_groups : undefined,
-      },
-      this.secret,
-      {
-        notBefore: '1000', // Make sure the time will not rollback :)
-        expiresIn: expire_time || '7d',
-      }
-    );
+  issueUIjwt(user: any, expiresIn: string) {
+    const {name, real_groups} = user;
+    const payload: JWTPayload = {
+      user: name,
+      group: real_groups && real_groups.length ? real_groups : undefined,
+    };
+
+    return signPayload(payload, this.secret, {expiresIn: expiresIn || Auth.DEFAULT_EXPIRE_WEB_TOKEN});
  }

  /**
@ -322,7 +319,7 @@ class Auth {
  decode_token(token: string) {
    let decoded;
    try {
-      decoded = jwt.verify(token, this.secret);
+      decoded = verifyPayload(token, this.secret);
    } catch (err) {
      throw ErrorCode.getCode(401, err.message);
    }
--- a/src/lib/crypto-utils.js
+++ b/src/lib/crypto-utils.js
@ -1,6 +1,8 @@
 // @flow

 import {createDecipher, createCipher, createHash, pseudoRandomBytes} from 'crypto';
+import jwt from 'jsonwebtoken';
+import type {JWTPayload, JWTSignOptions} from '../../types';

 export const defaultAlgorithm = 'aes192';

@ -41,3 +43,14 @@ export function stringToMD5(data: Buffer | string) {
 export function generateRandomHexString(length: number = 8) {
  return pseudoRandomBytes(length).toString('hex');
 }
+
+export function signPayload(payload: JWTPayload, secret: string, options: JWTSignOptions) {
+  return jwt.sign(payload, secret, {
+    notBefore: '1000', // Make sure the time will not rollback :)
+    ...options,
+  });
+}
+
+export function verifyPayload(token: string, secret: string) {
+  return jwt.verify(token, secret);
+}
--- a/types/index.js
+++ b/types/index.js
@ -113,6 +113,15 @@ export interface IStorage {
  getSecret(config: Config): Promise<any>;
 }

+export type JWTPayload = {
+  user: string;
+  group: string | void;
+}
+
+export type JWTSignOptions = {
+  expiresIn: string;
+}
+
 export type $RequestExtend = $Request & {remote_user?: any}
 export type $ResponseExtend = $Response & {cookies?: any}
 export type $NextFunctionVer = NextFunction & mixed;