Skip to content

adnanrahic/a-crash-course-on-serverless-auth

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
4 branches 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
auth
 
 
user
 
 
.gitignore
 
 
db.js
 
 
package-lock.json
 
 
package.json
 
 
readme.md
 
 
sample.secrets.json
 
 
serverless.yml
 
 

readme.md

A crash course on Serverless Authentication/Authorization

A short and easy boilerplate showcasing JWT auth with Nodejs, the Serverless framework, MongoDB and AWS Lambda.

  • The auth folder has a VerifyToken.js file which is the base of the authorizer function.
  • The VerifyToken.auth method is added to the authorizer field in the serverless.yml for API Gateway routes you wish to keep private. See the me function. AuthHandler.me uses event.requestContext.authorizer.principalId to access the userId of the user accessing the resource if the JWT is valid. Otherwise returns 'Unauthorized'.

Note: The concept of middlewares can be applied to this for understanding it easily.

About

A short and easy boilerplate showcasing JWT auth with Nodejs, the Serverless framework, MongoDB and AWS Lambda.

Topics

nodejs mongodb aws-lambda serverless mongoose serverless-framework

Resources

Readme
Activity

Stars

158 stars

Watchers

9 watching

Forks

45 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages