mirror of
https://github.com/gosticks/DefinitelyTyped.git
synced 2025-10-16 12:05:41 +00:00
47c53f1ca2
* [jsonwebtoken] set correct types for decode and verify functions * [jsonwebtoken] make compliant with older TypeScript versions * [jsonwebtoken] update to TypeScript 2.2 types * [jsonwebtoken] use constant as function parameter instead of casting object
105 lines
2.9 KiB
TypeScript
105 lines
2.9 KiB
TypeScript
/**
|
|
* Test suite created by Maxime LUCE <https://github.com/SomaticIT>
|
|
*
|
|
* Created by using code samples from https://github.com/auth0/node-jsonwebtoken.
|
|
*/
|
|
|
|
import jwt = require("jsonwebtoken");
|
|
import fs = require("fs");
|
|
|
|
var token: string;
|
|
var cert: Buffer;
|
|
|
|
interface ITestObject {
|
|
'foo': string
|
|
}
|
|
|
|
const testObject = { foo: 'bar' }
|
|
|
|
/**
|
|
* jwt.sign
|
|
* https://github.com/auth0/node-jsonwebtoken#usage
|
|
*/
|
|
// sign with default (HMAC SHA256)
|
|
token = jwt.sign(testObject, 'shhhhh');
|
|
|
|
// sign with default (HMAC SHA256) and single audience
|
|
token = jwt.sign(testObject, 'shhhhh', { audience: "theAudience"});
|
|
|
|
// sign with default (HMAC SHA256) and multiple audiences
|
|
token = jwt.sign(testObject, 'shhhhh', { audience: ["audience1", "audience2"]});
|
|
|
|
// sign with default (HMAC SHA256) and a keyid
|
|
token = jwt.sign(testObject, 'shhhhh', { keyid: "theKeyId"});
|
|
|
|
// sign with RSA SHA256
|
|
cert = fs.readFileSync('private.key'); // get private key
|
|
token = jwt.sign(testObject, cert, { algorithm: 'RS256'});
|
|
|
|
|
|
// sign asynchronously
|
|
jwt.sign(testObject, cert, { algorithm: 'RS256' }, function(err: Error, token: string) {
|
|
console.log(token);
|
|
});
|
|
|
|
/**
|
|
* jwt.verify
|
|
* https://github.com/auth0/node-jsonwebtoken#jwtverifytoken-secretorpublickey-options-callback
|
|
*/
|
|
// verify a token symmetric
|
|
jwt.verify(token, 'shhhhh', function(err, decoded) {
|
|
const result = decoded as ITestObject
|
|
|
|
console.log(result.foo) // bar
|
|
});
|
|
|
|
// invalid token
|
|
jwt.verify(token, 'wrong-secret', function(err, decoded) {
|
|
// err
|
|
// decoded undefined
|
|
});
|
|
|
|
// verify a token asymmetric
|
|
cert = fs.readFileSync('public.pem'); // get public key
|
|
jwt.verify(token, cert, function (err, decoded) {
|
|
const result = decoded as ITestObject
|
|
|
|
console.log(result.foo) // bar
|
|
});
|
|
|
|
// verify audience
|
|
cert = fs.readFileSync('public.pem'); // get public key
|
|
jwt.verify(token, cert, { audience: 'urn:foo' }, function(err, decoded) {
|
|
// if audience mismatch, err == invalid audience
|
|
});
|
|
|
|
// verify issuer
|
|
cert = fs.readFileSync('public.pem'); // get public key
|
|
jwt.verify(token, cert, { audience: 'urn:foo', issuer: 'urn:issuer' }, function(err, decoded) {
|
|
// if issuer mismatch, err == invalid issuer
|
|
});
|
|
|
|
// verify algorithm
|
|
cert = fs.readFileSync('public.pem'); // get public key
|
|
jwt.verify(token, cert, { algorithms: ['RS256'] }, function(err, decoded) {
|
|
// if algorithm mismatch, err == invalid algorithm
|
|
});
|
|
|
|
// verify without expiration check
|
|
cert = fs.readFileSync('public.pem'); // get public key
|
|
jwt.verify(token, cert, { ignoreExpiration: true }, function(err, decoded) {
|
|
// if ignoreExpration == false and token is expired, err == expired token
|
|
});
|
|
|
|
/**
|
|
* jwt.decode
|
|
* https://github.com/auth0/node-jsonwebtoken#jwtdecodetoken
|
|
*/
|
|
var decoded = jwt.decode(token);
|
|
|
|
decoded = jwt.decode(token, { complete: false });
|
|
|
|
decoded = jwt.decode(token, { json: false });
|
|
|
|
decoded = jwt.decode(token, { complete: false, json: false });
|