hapi-auth-jwt
hapi-auth-jwt copied to clipboard
ryanfitz
JSON Web Token (JWT) authentication plugin
Hello, I've upgraded an old Nodejs project to the latest Hapi version... I've read your documentation but I got this error when I start the Nodejs application... Here's my code...
updated hoek as it had vulnarbilities please refer to https://hackerone.com/reports/310439 I also updated Lab and Hapi since it was breaking your test due to os.tmpDir being deprecated.
{ "statusCode": 400, "error": "Bad Request", "message": "Bad HTTP authentication header format" } kindly help me to resolve it i am new to hapi
hapi-auth-jwt requires an old version of `jsonwebtoken` (5.x), which depends on `ms` which has a ReDoS vulnerability. Please update `jsonwebtoken` to use at least 7.4.1 which has fixed this issue....
I need two keys. One for api key (the vendor of the service with the scope) and the authorization key (the user's only).
how can we put the Token in blacklist so it will be not accessible anymore same like require('express-jwt-blacklist')
In order to easily support multi tenant scenarios, it would be useful to have optionally have a callback function take the JWT and return the key. To keep the API...
I've merged the latest from your master branch and updated the README with instructions on how to use the dynamic keys function. Closes #9 and includes #10
