strapi/packages/strapi-plugin-users-permissions/services/Jwt.js

'use strict';

/**
 * Jwt.js service
 *
 * @description: A set of functions similar to controller's actions to avoid code duplication.
 */

const _ = require('lodash');
const jwt = require('jsonwebtoken');

const defaultJwtOptions = { expiresIn: '30d' };

module.exports = {
  getToken(ctx) {
    const params = _.assign({}, ctx.request.body, ctx.request.query);

    let token = '';

    if (ctx.request && ctx.request.header && ctx.request.header.authorization) {
      const parts = ctx.request.header.authorization.split(' ');

      if (parts.length === 2) {
        const scheme = parts[0];
        const credentials = parts[1];
        if (/^Bearer$/i.test(scheme)) {
          token = credentials;
        }
      } else {
        throw new Error(
          'Invalid authorization header format. Format is Authorization: Bearer [token]'
        );
      }
    } else if (params.token) {
      token = params.token;
    } else {
      throw new Error('No authorization header was found');
    }

    return this.verify(token);
  },

  issue(payload, jwtOptions = {}) {
    _.defaults(jwtOptions, defaultJwtOptions);
    return jwt.sign(
      _.clone(payload.toJSON ? payload.toJSON() : payload),
      process.env.JWT_SECRET ||
        _.get(strapi.plugins['users-permissions'], 'config.jwtSecret') ||
        'oursecret',
      jwtOptions
    );
  },

  verify(token) {
    return new Promise(function(resolve, reject) {
      jwt.verify(
        token,
        process.env.JWT_SECRET ||
          _.get(strapi.plugins['users-permissions'], 'config.jwtSecret') ||
          'oursecret',
        {},
        function(err, tokenPayload = {}) {
          if (err) {
            return reject(new Error('Invalid token.'));
          }
          resolve(tokenPayload);
        }
      );
    });
  },
};
Register new user with hashed password 2017-11-16 14:12:03 +01:00			`'use strict';`

			`/**`
			`* Jwt.js service`
			`*`
			`* @description: A set of functions similar to controller's actions to avoid code duplication.`
			`*/`

			`const _ = require('lodash');`
			`const jwt = require('jsonwebtoken');`

Added default options to enable re-use 2018-01-26 07:32:28 +01:00			`const defaultJwtOptions = { expiresIn: '30d' };`

Register new user with hashed password 2017-11-16 14:12:03 +01:00			`module.exports = {`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`getToken(ctx) {`
Use request route to detect current action 2017-11-27 16:47:16 +01:00			`const params = _.assign({}, ctx.request.body, ctx.request.query);`

			`let token = '';`

			`if (ctx.request && ctx.request.header && ctx.request.header.authorization) {`
			`const parts = ctx.request.header.authorization.split(' ');`

			`if (parts.length === 2) {`
			`const scheme = parts[0];`
			`const credentials = parts[1];`
			`if (/^Bearer$/i.test(scheme)) {`
			`token = credentials;`
			`}`
			`} else {`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`throw new Error(`
			`'Invalid authorization header format. Format is Authorization: Bearer [token]'`
			`);`
Use request route to detect current action 2017-11-27 16:47:16 +01:00			`}`
			`} else if (params.token) {`
			`token = params.token;`
			`} else {`
			`throw new Error('No authorization header was found');`
			`}`

			`return this.verify(token);`
Sort functions by name 2017-12-07 15:27:11 +01:00			`},`

Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`issue(payload, jwtOptions = {}) {`
Added default options to enable re-use 2018-01-26 07:32:28 +01:00			`_.defaults(jwtOptions, defaultJwtOptions);`
Sort functions by name 2017-12-07 15:27:11 +01:00			`return jwt.sign(`
			`_.clone(payload.toJSON ? payload.toJSON() : payload),`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`process.env.JWT_SECRET \|\|`
			`_.get(strapi.plugins['users-permissions'], 'config.jwtSecret') \|\|`
			`'oursecret',`
			`jwtOptions`
Sort functions by name 2017-12-07 15:27:11 +01:00			`);`
			`},`

Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`verify(token) {`
			`return new Promise(function(resolve, reject) {`
Sort functions by name 2017-12-07 15:27:11 +01:00			`jwt.verify(`
			`token,`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`process.env.JWT_SECRET \|\|`
			`_.get(strapi.plugins['users-permissions'], 'config.jwtSecret') \|\|`
			`'oursecret',`
Sort functions by name 2017-12-07 15:27:11 +01:00			`{},`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`function(err, tokenPayload = {}) {`
Update permissions from UI in database 2018-01-22 18:19:44 +01:00			`if (err) {`
Moved user validation logic from JWT service to permissions policy 2018-01-29 19:26:28 +01:00			`return reject(new Error('Invalid token.'));`
Sort functions by name 2017-12-07 15:27:11 +01:00			`}`
Moved user validation logic from JWT service to permissions policy 2018-01-29 19:26:28 +01:00			`resolve(tokenPayload);`
Sort functions by name 2017-12-07 15:27:11 +01:00			`}`
			`);`
			`});`
Refactor users-permissions to use the new strapi.query 2019-07-15 23:16:50 +02:00			`},`
Register new user with hashed password 2017-11-16 14:12:03 +01:00			`};`