Storageless JWT token generator backend for oauth2-server
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
src
test
.eslintrc.json
.gitignore
.npmignore
.travis.yml
LICENSE
README.md
package-lock.json
package.json

README.md

oauth2-server-jwt

Build Status Greenkeeper badge

Storageless JWT token generator backend for oauth2-server

Features

  • Respects oauth2-server token lifetime configuration for each type of token
  • Generates JWT access tokens, refresh tokens, and authorization codes

Limitations

For proper verification of aud, scope, and redirectUri, you will need to implement model.getClient() separately.

If you need to support the password grant type, you will also need to implement model.getUser() separately.

Suggested implementation: oauth2-server-mongoose

Requirements

Installation

$ npm install --save @compwright/oauth2-server oauth2-server-jwt

Usage

const OAuth2Server = require('@compwright/oauth2-server');
const jwtMixin = require('oauth2-server-jwt');
const mongooseMixin = require('oauth2-server-mongoose');

const oauth = new OAuth2Server({
    model: {
        ...jwtMixin({
            accessTokenSecret,                  // String (required)
            refreshTokenSecret,                 // String (required)
            authorizationCodeSecret,            // String (required)
            issuer,                             // String (required)
            userId: 'id'                        // String
            algorithms: ['HS256']               // Array[String]
        }),
        ...mongooseMixin()
    }
});

License

MIT license