Thream/socketio-jwt
Archived
2
1
Fork 0
Code Issues Pull Requests Releases Activity

Fixed auth.required

Browse Source 
Misc:
- Resolved conflicts
- Added test case, to fail if server grants prohibited admin access
- Simplified test logic
- Prevented usage of "var" (used const / let instead)
- Formatting
- Cleanup
- Typos
This commit is contained in:
Fabian Arndt
2019-10-13 15:52:14 +02:00
parent f3becae0a9 3128fdfee2
commit 27c59c3b0f
11 changed files with 222 additions and 236 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
README.md
View File

@@ -52,7 +52,7 @@ io.sockets
**Client side**
```javascript
var socket = io.connect('http://localhost:9000');
const socket = io.connect('http://localhost:9000');
socket.on('connect', function () {
socket
.emit('authenticate', {token: jwt}) //send the jwt
@@ -71,8 +71,8 @@ socket.on('connect', function () {
The previous approach uses a second roundtrip to send the jwt. There is a way you can authenticate on the handshake by sending the JWT as a query string, the caveat is that intermediary HTTP servers can log the url.
```javascript
var io = require('socket.io')(server);
var socketioJwt = require('socketio-jwt');
const io = require('socket.io')(server);
const socketioJwt = require('socketio-jwt');
```
With socket.io < 1.0:
@@ -108,7 +108,7 @@ For more validation options see [auth0/jsonwebtoken](https://github.com/auth0/no
Append the jwt token using query string:
```javascript
var socket = io.connect('http://localhost:9000', {
const socket = io.connect('http://localhost:9000', {
'query': 'token=' + your_jwt
});
```
@@ -116,7 +116,7 @@ var socket = io.connect('http://localhost:9000', {
Append the jwt token using 'Authorization Header' (Bearer Token):
```javascript
var socket = io.connect('http://localhost:9000', {
const socket = io.connect('http://localhost:9000', {
'extraHeaders': { Authorization: `Bearer ${your_jwt}` }
});
```
@@ -144,7 +144,7 @@ io.use(socketioJwt.authorize({
When you sign the token with an expiration time (example: 60 minutes):
```javascript
var token = jwt.sign(user_profile, jwt_secret, {expiresIn: 60*60});
const token = jwt.sign(user_profile, jwt_secret, {expiresIn: 60*60});
```
Your client-side code should handle it as below:
@@ -234,7 +234,7 @@ the provided token.
**Server side**
```javascript
var SECRETS = {
const SECRETS = {
'user1': 'secret 1',
'user2': 'secret 2'
}