Micro Auth0 helper
npm install @orikami/micro-auth0Helper to get user using Auth0
``
npm install --save @orikami/micro-auth0
By default, micro-auth0 is configured to use RS256 with the orikami.eu.auth0.com public key. It will not check for any roles by default.
You can customize and verify the configuration as follows:
1. Create a SPA application in Auth0: https://manage.auth0.com/#/applications
2. Settings > Advanced > OAuth > JsonWebToken Signature Algorithm: RS256
3. Settings > Certificates > Signing Certificate contains the .
If you want to customize configuration, create a auth0.js in your project:
`js...
module.exports = {
publickey: // default: orikami.eu.auth0.com`
roles: {
key: "https://orikami-api.nl/roles",
// allowed: ['developer'],
},
jwt: {
algorithms: ["RS256"],
// audience: "https://orikami-api.nl/v1/",
// ignoreExpiration: false
// issuer: "",
// subject: "",
// maxAge: "",
// clockTolerance: 10
}
}
If you define roles.allowed, micro-auth0 will check if the role in the token. Currently, this is configured using the Authorization extension of Auth0.
See https://orikami.eu8.webtask.io/adf6e2f2b84784b57522e3b19dfc9201/admins/login
`
const auth0 = require("@orikami/micro-auth0")(require("./auth0.js"));
const handler = require("./index");
module.exports = auth0(handler);
`
If you change the publickey in the auth0.js file be aware that the Certificate string has no tabs or extra space in it.
- 1.0.0 - Change default config with ENV variables AUTH0_PUBLICKEY, AUTH0_ROLES_KEY and AUTH0_JWT_ALGORITHMS
- 0.3.0 - Check for token query param in x-forwarded-uri`
- 0.1.0 - Refactor
- 0.0.2 - Initial release