This example, written in Javascript (Node.js), shows how jwt tokens can be used to authenticate the client. The server consists of three files:
exampleService.js
- exposes a single resource:
example.model - requires a token to access the resource and its
setmethod
authService.js
- exposes an authentication method,
auth.jwtHeader. jwtHeaderauth method verifies the jwt token and sets it as connection token.
server.js
- starts the exampleService.js and authService.js micro-services
- serves
/index.htmlwhich is the example client - serves
/loginwhich sets the jwt token cookie - serves
/logoutwhich clears the jwt token cookie
To access the resource with HTTP GET requests, Resgate needs to be configured with the header authentication method to use. Start Resgate with the following flag:
resgate --headauth auth.jwtHeader- Have NATS Server and Resgate (with the headauth flag) running
- Have node.js installed
Run the following commands:
npm install
npm startOpen the client
http://localhost:8084
Access denied
When loading the client without a token set, the client should not be able to access the model, instead showing the Access denied error message.
Gain access
Go to http://localhost:8084/login, to set the jwt token, and then return back to the client. The editable input box should now show with the model's message.
Remove access
Go to http://localhost:8084/logout, to clear the jwt token, and then return back to the client. The message Access denied should show again.
Accessing via REST
Try accessing the model as web resource (REST), both with the jwt token set or cleared.
GET http://localhost:8080/api/example/model
POST http://localhost:8080/api/example/model/set
Body
{ "message": "Updated through HTTP" }