jsontokens

Release 4.0.1

node.js library for encoding, decoding, and verifying JSON Web Tokens (JWTs)

Homepage Repository npm TypeScript Download

Keywords
jwt, json, web, token, encode, decode, verify, ecdsa, secp256k1, ec, elliptic, curve, signature, sign
License
MIT
Install
npm install jsontokens@4.0.1

Documentation

JSON Tokens JS

CircleCI npm npm npm Slack

node.js library for signing, decoding, and verifying JSON Web Tokens (JWTs) with the ES256K signature scheme (which uses the secp256k elliptic curve). This is currently the only supported signing and verification scheme for this library.

Installation

npm install jsontokens

Signing Tokens

import { TokenSigner } from 'jsontokens'

const rawPrivateKey = '278a5de700e29faae8e40e366ec5012b5ec63d36ec77e8a2417154cc1d25383f'
const tokenPayload = {"iat": 1440713414.85}
const token = new TokenSigner('ES256K', rawPrivateKey).sign(tokenPayload)

Creating Unsecured Tokens

import { createUnsecuredToken } from 'jsontokens'

const unsecuredToken = createUnsecuredToken(tokenPayload)

Decoding Tokens

import { decodeToken } = from 'jsontokens'
const tokenData = decodeToken(token)

Verifying Tokens

The TokenVerifier class will validate that a token is correctly signed. It does not perform checks on the claims in the payload (e.g., the exp field)--- checking the expiration field, etc., is left as a requirement for callers.

import { TokenVerifier } from 'jsontokens'
const rawPublicKey = '03fdd57adec3d438ea237fe46b33ee1e016eda6b585c3e27ea66686c2ea5358479'
const verified = new TokenVerifier('ES256K', rawPublicKey).verify(token)

Example Tokens

eyJ0eXAiOiJKV1QiLA0KICJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJqb2UiLA0KICJleHAiOjEzMDA4MTkzODAsDQogImh0dHA6Ly9leGFtcGxlLmNvbS9pc19yb290Ijp0cnVlfQ.dBjftJeZ4CVP-mB92K27uhbUJU1p1r_wW1gFWFOEjXk

Stats

Dependencies
3
Dependent packages
91
Dependent repositories
282
Total releases
26
Latest release
First release
Stars
45
Forks
32
Watchers
7
Contributors
10
Repository size
4.87 MB
SourceRank
16

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

4.0.1
4.0.0
3.1.1
3.1.0
3.0.0
3.0.0-alpha.2
3.0.0-alpha.1
3.0.0-alpha.0
2.0.3-beta.0
2.0.2
See all 26 releases

Contributors

Ryan Shea Matthew Little Aaron Blankstein janniks Valentin Sundermann Larry Salibra Semantic Release Bot dependabot[bot] Charlie Luke Hedger


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2023-11-30 22:53:31 UTC

Login to resync this project