examples/jwt.js

// `jwt.js` - how to used in combination with JSON Web Tokens (JWT) `securityDefinition`

const Hapi = require('hapi');
const jwt = require('jsonwebtoken');
const Blipp = require('blipp');
const Inert = require('inert');
const Vision = require('vision');

const HapiSwagger = require('../');

let swaggerOptions = {
    info: {
        title: 'Test API Documentation',
        description: 'This is a sample example of API documentation.'
    },
    securityDefinitions: {
        jwt: {
            type: 'apiKey',
            name: 'Authorization',
            in: 'header'
        }
    }
};

const people = {
    // our "users database"
    56732: {
        id: 56732,
        name: 'Jen Jones',
        scope: ['a', 'b']
    }
};

const privateKey = 'hapi hapi joi joi';
const token = jwt.sign({ id: 56732 }, privateKey, { algorithm: 'HS256' });

// bring your own validation function
const validate = (decoded, request, callback) => {
    // do your checks to see if the person is valid
    if (!people[decoded.id]) {
        return callback(null, false);
    }
    return callback(null, true, people[decoded.id]);
};

const ser = async () => {
    const server = new Hapi.Server({
        host: 'localhost',
        port: 3000
    });

    await server.register(
        [
            require('hapi-auth-jwt2'),
            Inert,
            Vision,
            Blipp,
            {
                register: HapiSwagger,
                options: swaggerOptions
            }
        ],
        err => {
            if (err) {
                console.log(err);
            }

            server.auth.strategy('jwt', 'jwt', {
                key: privateKey, // Never Share your secret key
                validateFunc: validate, // validate function defined above
                verifyOptions: { algorithms: ['HS256'] } // pick a strong algorithm
            });

            server.auth.default('jwt');

            server.route([
                {
                    method: 'GET',
                    path: '/',
                    config: {
                        auth: false,
                        handler: function(request, reply) {
                            reply({ text: 'Token not required' });
                        }
                    }
                },
                {
                    method: 'GET',
                    path: '/restricted',
                    config: {
                        auth: 'jwt',
                        tags: ['api'],
                        handler: function(request, reply) {
                            reply({
                                text: 'You used a Token! ' + request.auth.credentials.name
                            }).header('Authorization', request.headers.authorization);
                        }
                    }
                },
                {
                    method: 'GET',
                    path: '/token',
                    config: {
                        auth: false,
                        tags: ['api'],
                        handler: function(request, reply) {
                            reply({ token: token });
                        }
                    }
                }
            ]);
        }
    );
};

ser()
    .then(server => {
        console.log(`Server listening on ${server.info.uri}`);
    })
    .catch(err => {
        console.error(err);
        process.exit(1);
    });