oauth2-server-jwt

Storageless JWT token generator backend for oauth2-server

Usage no npm install needed!

<script type="module">
  import oauth2ServerJwt from 'https://cdn.skypack.dev/oauth2-server-jwt';
</script>

README

oauth2-server-jwt

Build Status Dependency Status Download Status Sponsor on GitHub

Storageless JWT token generator backend for oauth2-server

Features

  • Respects oauth2-server token lifetime configuration for each type of token
  • Generates JWT access tokens, refresh tokens, and authorization codes

Limitations

For proper verification of aud, scope, and redirectUri, you will need to implement model.getClient() separately.

If you need to support the password grant type, you will also need to implement model.getUser() separately.

Suggested implementation: oauth2-server-mongoose

Requirements

Installation

$ npm install --save @compwright/oauth2-server oauth2-server-jwt

Usage

const OAuth2Server = require('@compwright/oauth2-server');
const jwtMixin = require('oauth2-server-jwt');
const mongooseMixin = require('oauth2-server-mongoose');

const oauth = new OAuth2Server({
    model: {
        ...jwtMixin({
            accessTokenSecret,                  // String (required)
            refreshTokenSecret,                 // String (required)
            authorizationCodeSecret,            // String (required)
            issuer,                             // String (required)
            userId: 'id'                        // String
            algorithms: ['HS256']               // Array[String]
        }),
        ...mongooseMixin()
    }
});

License

MIT license