Thream/socketio-jwt
Archived
2
1
Fork 0
Code Issues Pull Requests Releases Activity

feat: add algorithms option

Browse Source
This commit is contained in:
divlo
2020-12-30 14:50:56 +01:00
parent 92d1ecd7e0
commit abbabc588e
1 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
src/authorize.ts
View File

@@ -1,4 +1,4 @@
import jwt from 'jsonwebtoken'
import jwt, { Algorithm } from 'jsonwebtoken'
import { Socket } from 'socket.io'
import { UnauthorizedError } from './UnauthorizedError'
@@ -14,10 +14,11 @@ type SocketIOMiddleware = (
interface AuthorizeOptions {
secret: string
algorithms?: Algorithm[]
}
export const authorize = (options: AuthorizeOptions): SocketIOMiddleware => {
const { secret } = options
const { secret, algorithms = ['HS256'] } = options
return (socket, next) => {
let token: string | null = null
const authorizationHeader = socket.request.headers.authorization
@@ -43,7 +44,7 @@ export const authorize = (options: AuthorizeOptions): SocketIOMiddleware => {
socket = Object.assign(socket, { encodedToken: token })
let payload: any
try {
payload = jwt.verify(token, secret)
payload = jwt.verify(token, secret, { algorithms })
} catch {
return next(
new UnauthorizedError('invalid_token', {