2021-01-07 05:45:46 +01:00
< h1 align = "center" > Thream/socketio-jwt< / h1 >
2019-07-23 15:22:23 +02:00
2020-12-27 17:50:47 +01:00
< p align = "center" >
< strong > Authenticate socket.io incoming connections with JWTs.< / strong >
< / p >
2015-05-29 14:42:14 +02:00
2020-12-27 17:50:47 +01:00
< p align = "center" >
2021-07-23 23:15:52 +02:00
< a href = "./CONTRIBUTING.md" > < img src = "https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=flat" / > < / a >
2020-12-27 17:50:47 +01:00
< a href = "./LICENSE" > < img src = "https://img.shields.io/badge/licence-MIT-blue.svg" alt = "Licence MIT" / > < / a >
2021-07-23 23:15:52 +02:00
< a href = "./CODE_OF_CONDUCT.md" > < img src = "https://img.shields.io/badge/Contributor%20Covenant-v2.0%20adopted-ff69b4.svg" alt = "Contributor Covenant" / > < / a >
< br / >
< a href = "https://github.com/Thream/socketio-jwt/actions/workflows/build.yml" > < img src = "https://github.com/Thream/socketio-jwt/actions/workflows/build.yml/badge.svg?branch=develop" / > < / a >
< a href = "https://github.com/Thream/socketio-jwt/actions/workflows/lint.yml" > < img src = "https://github.com/Thream/socketio-jwt/actions/workflows/lint.yml/badge.svg?branch=develop" / > < / a >
< a href = "https://github.com/Thream/socketio-jwt/actions/workflows/test.yml" > < img src = "https://github.com/Thream/socketio-jwt/actions/workflows/test.yml/badge.svg?branch=develop" / > < / a >
< br / >
2020-12-27 17:50:47 +01:00
< a href = "https://conventionalcommits.org" > < img src = "https://img.shields.io/badge/Conventional%20Commits-1.0.0-yellow.svg" alt = "Conventional Commits" / > < / a >
2021-07-23 23:15:52 +02:00
< a href = "https://github.com/semantic-release/semantic-release" > < img src = "https://img.shields.io/badge/%20%20%F0%9F%93%A6%F0%9F%9A%80-semantic--release-e10079.svg" alt = "semantic-release" / > < / a >
< a href = "https://www.npmjs.com/package/@thream/socketio-jwt" > < img src = "https://img.shields.io/npm/v/@thream/socketio-jwt.svg" alt = "npm version" > < / a >
2020-12-27 17:50:47 +01:00
< / p >
2019-07-16 11:33:44 +02:00
2020-12-27 17:50:47 +01:00
## 📜 About
2019-07-16 11:33:44 +02:00
2020-12-27 18:08:49 +01:00
Authenticate socket.io incoming connections with JWTs.
2012-09-05 20:14:36 +02:00
2023-08-06 11:45:16 +02:00
This repository was originally forked from [auth0-socketio-jwt ](https://github.com/auth0-community/auth0-socketio-jwt ) and it is not intended to take any credit but to improve the code from now on.
2019-01-15 17:43:44 +01:00
2022-04-07 10:11:48 +02:00
## Prerequisites
- [Node.js ](https://nodejs.org/ ) >= 16.0.0
2023-08-06 11:45:16 +02:00
- [Socket.IO ](https://socket.io/ ) >= 3.0.0
2022-04-07 10:11:48 +02:00
2020-12-29 04:30:34 +01:00
## 💾 Install
2019-01-15 17:43:44 +01:00
2022-02-18 17:20:59 +01:00
**Note:** It is a package that is recommended to use/install on both the client and server sides.
2020-12-27 17:50:47 +01:00
```sh
2020-12-29 04:30:34 +01:00
npm install --save @thream/socketio -jwt
2012-09-05 20:14:36 +02:00
```
2020-12-27 17:50:47 +01:00
## ⚙️ Usage
2012-09-05 20:14:36 +02:00
2020-12-29 04:30:34 +01:00
### Server side
2016-10-20 18:18:40 +02:00
2020-12-29 04:30:34 +01:00
```ts
2023-10-23 23:44:50 +02:00
import { Server } from "socket.io"
import { authorize } from "@thream/socketio-jwt"
2016-10-20 18:18:40 +02:00
2020-12-29 04:30:34 +01:00
const io = new Server(9000)
2020-12-27 17:25:44 +01:00
io.use(
2020-12-29 04:30:34 +01:00
authorize({
2023-10-23 23:44:50 +02:00
secret: "your secret or public key",
}),
2020-12-27 17:25:44 +01:00
)
2014-09-04 07:47:17 +02:00
2023-10-23 23:44:50 +02:00
io.on("connection", async (socket) => {
2021-01-04 14:35:59 +01:00
// jwt payload of the connected client
console.log(socket.decodedToken)
2020-12-29 04:30:34 +01:00
const clients = await io.sockets.allSockets()
2021-01-04 14:35:59 +01:00
if (clients != null) {
for (const clientId of clients) {
const client = io.sockets.sockets.get(clientId)
2023-10-23 23:44:50 +02:00
client?.emit("messages", { message: "Success!" })
2021-01-04 14:35:59 +01:00
// we can access the jwt payload of each connected client
console.log(client?.decodedToken)
}
2014-09-04 07:47:17 +02:00
}
2020-12-27 17:25:44 +01:00
})
2015-11-18 21:36:24 +01:00
```
2015-12-26 05:17:01 +01:00
2021-01-07 14:30:37 +01:00
### Server side with `jwks-rsa` (example)
```ts
2023-10-23 23:44:50 +02:00
import jwksClient from "jwks-rsa"
import { Server } from "socket.io"
import { authorize } from "@thream/socketio-jwt"
2021-01-07 14:30:37 +01:00
const client = jwksClient({
2023-10-23 23:44:50 +02:00
jwksUri: "https://sandrino.auth0.com/.well-known/jwks.json",
2021-01-07 14:30:37 +01:00
})
const io = new Server(9000)
io.use(
authorize({
secret: async (decodedToken) => {
const key = await client.getSigningKeyAsync(decodedToken.header.kid)
2021-01-28 18:53:56 +01:00
return key.getPublicKey()
2023-10-23 23:44:50 +02:00
},
}),
2021-01-07 14:30:37 +01:00
)
2023-10-23 23:44:50 +02:00
io.on("connection", async (socket) => {
2021-01-07 14:30:37 +01:00
// jwt payload of the connected client
console.log(socket.decodedToken)
// You can do the same things of the previous example there...
})
```
2021-03-08 13:45:39 +01:00
### Server side with `onAuthentication` (example)
```ts
2023-10-23 23:44:50 +02:00
import { Server } from "socket.io"
import { authorize } from "@thream/socketio-jwt"
2021-03-08 13:45:39 +01:00
const io = new Server(9000)
io.use(
authorize({
2023-10-23 23:44:50 +02:00
secret: "your secret or public key",
2022-02-18 17:20:59 +01:00
onAuthentication: async (decodedToken) => {
2021-03-08 14:33:53 +01:00
// return the object that you want to add to the user property
// or throw an error if the token is unauthorized
2023-10-23 23:44:50 +02:00
},
}),
2021-03-08 13:45:39 +01:00
)
2023-10-23 23:44:50 +02:00
io.on("connection", async (socket) => {
2021-03-08 13:45:39 +01:00
// jwt payload of the connected client
console.log(socket.decodedToken)
// You can do the same things of the previous example there...
// user object returned in onAuthentication
console.log(socket.user)
})
```
2021-02-18 20:14:56 +01:00
### `authorize` options
- `secret` is a string containing the secret for HMAC algorithms, or a function that should fetch the secret or public key as shown in the example with `jwks-rsa` .
- `algorithms` (default: `HS256` )
2021-03-08 14:33:53 +01:00
- `onAuthentication` is a function that will be called with the `decodedToken` as a parameter after the token is authenticated. Return a value to add to the `user` property in the socket object.
2021-02-18 20:14:56 +01:00
2020-12-29 04:30:34 +01:00
### Client side
2015-12-26 05:17:01 +01:00
2020-12-29 04:30:34 +01:00
```ts
2023-10-23 23:44:50 +02:00
import { io } from "socket.io-client"
import { isUnauthorizedError } from "@thream/socketio-jwt/build/UnauthorizedError.js"
2015-12-26 05:17:01 +01:00
2021-02-22 13:00:53 +01:00
// Require Bearer Token
2023-10-23 23:44:50 +02:00
const socket = io("http://localhost:9000", {
auth: { token: `Bearer ${yourJWT}` },
2020-12-27 17:25:44 +01:00
})
2015-12-26 05:17:01 +01:00
2020-12-29 04:30:34 +01:00
// Handling token expiration
2023-10-23 23:44:50 +02:00
socket.on("connect_error", (error) => {
2022-02-18 17:20:59 +01:00
if (isUnauthorizedError(error)) {
2023-10-23 23:44:50 +02:00
console.log("User token has expired")
2015-12-26 05:17:01 +01:00
}
2020-12-27 17:25:44 +01:00
})
2019-10-29 11:39:38 +01:00
2020-12-29 04:30:34 +01:00
// Listening to events
2023-10-23 23:44:50 +02:00
socket.on("messages", (data) => {
2020-12-29 04:30:34 +01:00
console.log(data)
2020-12-27 17:25:44 +01:00
})
2019-10-29 11:39:38 +01:00
```
2020-12-27 17:50:47 +01:00
## 💡 Contributing
2020-12-27 17:25:44 +01:00
2020-12-27 17:50:47 +01:00
Anyone can help to improve the project, submit a Feature Request, a bug report or even correct a simple spelling mistake.
2020-12-27 17:25:44 +01:00
2021-03-08 14:33:53 +01:00
The steps to contribute can be found in the [CONTRIBUTING.md ](./CONTRIBUTING.md ) file.
2019-01-15 17:43:44 +01:00
2020-12-27 17:50:47 +01:00
## 📄 License
2019-01-15 17:43:44 +01:00
2020-12-27 17:50:47 +01:00
[MIT ](./LICENSE )