Skip to content

simple-eiffel/simple_jwt

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
Documentation
Documentation
 
 
docs
docs
 
 
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
README.md
README.md
 
 
build.sh
build.sh
 
 
simple_jwt.ecf
simple_jwt.ecf
 
 

Repository files navigation

simple_ library logo

simple_jwt

Documentation | Watch the Build Video

JSON Web Token (JWT) library for Eiffel.

Features

  • HS256 Algorithm - HMAC-SHA256 signing
  • Token Creation - Generate signed JWTs
  • Token Verification - Validate signatures and expiration
  • Claims Decoding - Extract payload data
  • Design by Contract - Full preconditions/postconditions
  • RFC 7519 Compliant - Standard JWT implementation

Installation

Add to your ECF:

<library name="simple_jwt" location="$SIMPLE_JWT\simple_jwt.ecf"/>

Set environment variables:

SIMPLE_JWT=D:\prod\simple_jwt
SIMPLE_FOUNDATION_API=D:\prod\simple_foundation_api

Note: simple_jwt uses simple_foundation_api for encoding and hashing operations.

Usage

Create a Token

local
    jwt: SIMPLE_JWT
    token: STRING
do
    create jwt.make ("your-secret-key")

    token := jwt.create_token_with_claims (
        "user@example.com",  -- subject
        "my-application",    -- issuer
        3600,                -- expires in 1 hour
        Void                 -- no custom claims
    )
end

Verify a Token

local
    jwt: SIMPLE_JWT
do
    create jwt.make ("your-secret-key")

    if jwt.verify_with_expiration (token) then
        print ("Token is valid%N")
    end
end

Decode Claims

local
    jwt: SIMPLE_JWT
    subject: detachable STRING
do
    create jwt.make ("secret")

    subject := jwt.get_string_claim (token, "sub")

    if attached jwt.decode_claims (token) as claims then
        -- Access any claim
    end
end

Custom Claims

local
    jwt: SIMPLE_JWT
    custom: JSON_OBJECT
do
    create jwt.make ("secret")
    create custom.make_empty
    custom.put_string ("admin", "role")
    custom.put_integer (12345, "user_id")

    token := jwt.create_token_with_claims ("admin", "app", 7200, custom)
end

API Reference

Token Creation

Feature Description
create_token (claims) Create JWT from JSON claims
create_token_with_claims (sub, iss, exp, custom) Create JWT with standard claims

Token Verification

Feature Description
verify (token) Verify signature only
verify_with_expiration (token) Verify signature and expiration
is_expired (token) Check if token is expired

Token Decoding

Feature Description
decode_claims (token) Get payload as JSON_OBJECT
decode_header (token) Get header as JSON_OBJECT
get_string_claim (token, name) Get string claim
get_integer_claim (token, name) Get integer claim

JWT Structure

header.payload.signature
  • Header: {"alg":"HS256","typ":"JWT"}
  • Payload: Claims (sub, iss, iat, exp, custom)
  • Signature: HMAC-SHA256(header.payload, secret)

Dependencies

  • simple_foundation_api - Base64URL encoding, HMAC-SHA256 signatures, UUID generation
  • json - JSON parsing (EiffelStudio contrib)

License

MIT License - Copyright (c) 2024-2025, Larry Rix

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages