jwt-authentication

JWT Authentication Example

This example, written in Javascript (Node.js), shows how jwt tokens can be used to authenticate the client. The server consists of three files:

exampleService.js

• exposes a single resource: example.model
• requires a token to access the resource and its set method

authService.js

• exposes an authentication method, auth.jwtHeader.
• jwtHeader auth method verifies the jwt token and sets it as connection token.

server.js

• starts the exampleService.js and authService.js micro-services
• serves /index.html which is the example client
• serves /login which sets the jwt token cookie
• serves /logout which clears the jwt token cookie

Running Resgate

To access the resource with HTTP GET requests, Resgate needs to be configured with the header authentication method to use. Start Resgate with the following flag:

resgate --headauth auth.jwtHeader

Prerequisite

• Have NATS Server and Resgate (with the headauth flag) running
• Have node.js installed

Install and run

Run the following commands:

npm install
npm start

Open the client

http://localhost:8084

Things to try out

Access denied
When loading the client without a token set, the client should not be able to access the model, instead showing the Access denied error message.

Gain access
Go to http://localhost:8084/login, to set the jwt token, and then return back to the client. The editable input box should now show with the model's message.

Remove access
Go to http://localhost:8084/logout, to clear the jwt token, and then return back to the client. The message Access denied should show again.

Accessing via REST
Try accessing the model as web resource (REST), both with the jwt token set or cleared.

Web resources

Get model

GET http://localhost:8080/api/example/model

Update model

POST http://localhost:8080/api/example/model/set

Body

{ "message": "Updated through HTTP" }