Skip to content

codephilip/authentication-middleware

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
docker
docker
 
 
example-service
example-service
 
 
examples
examples
 
 
scripts
scripts
 
 
src
src
 
 
.eslintrc.js
.eslintrc.js
 
 
.gitignore
.gitignore
 
 
Auth_Middleware.postman_collection.json
Auth_Middleware.postman_collection.json
 
 
Auth_Middleware.postman_environment.json
Auth_Middleware.postman_environment.json
 
 
Auth_Middleware.postman_environment.production.json
Auth_Middleware.postman_environment.production.json
 
 
Auth_Middleware.postman_environment.staging.json
Auth_Middleware.postman_environment.staging.json
 
 
POSTMAN_SETUP.md
POSTMAN_SETUP.md
 
 
QUICK_START.md
QUICK_START.md
 
 
README.md
README.md
 
 
SUBMODULE_SETUP.md
SUBMODULE_SETUP.md
 
 
debug-token.js
debug-token.js
 
 
package.json
package.json
 
 
simple-test.js
simple-test.js
 
 
test-auth.js
test-auth.js
 
 

Repository files navigation

Auth Middleware

A reusable authentication and authorization middleware for Express microservices, designed to be used as a GitHub submodule.

Features

  • JWT-based authentication
  • Role-based authorization
  • Rate limiting
  • Token refresh mechanism
  • CSRF protection
  • Secure cookie handling
  • Redis-based token management
  • Integrated logging with local logging middleware

Installation

As a GitHub Submodule (Recommended for Production)

# Add as submodule in your microservice
git submodule add git@github.com:codephilip/authentication-middleware.git shared/auth-middleware

# Initialize and update submodule
git submodule update --init --recursive

# Install dependencies
cd shared/auth-middleware
npm install

As a Local Dependency (Development)

# Clone the repository
git clone git@github.com:codephilip/authentication-middleware.git
cd authentication-middleware

# Install dependencies
npm install

Setup

  1. Install dependencies:
npm install
  1. Initialize the middleware in your Express app:
const { initializeAuth } = require('./shared/auth-middleware/src/index');

const auth = initializeAuth({
  jwtSecret: process.env.JWT_SECRET,
  jwtRefreshSecret: process.env.JWT_REFRESH_SECRET,
  redisUrl: process.env.REDIS_URL,
  jwtAudience: 'your-service-name',
  jwtIssuer: 'auth-service'
});

// Apply essential middleware
app.use(...auth.essential);

// Protected route example
app.get('/protected',
  auth.authenticate,
  auth.authorize(['READ']),
  (req, res) => {
    res.json({ message: 'Protected resource' });
  }
);

Configuration

The initializeAuth function accepts the following configuration:

/**
 * @typedef {Object} AuthConfig
 * @property {string} jwtSecret - JWT secret key
 * @property {string} jwtRefreshSecret - JWT refresh secret key
 * @property {string} [jwtAudience] - JWT audience
 * @property {string} [jwtIssuer] - JWT issuer
 * @property {string} redisUrl - Redis connection URL
 * @property {string} [cookieDomain] - Cookie domain
 * @property {boolean} [secureCookies] - Whether to use secure cookies
 */

API Reference

Middleware Components

  • auth.essential: Array of essential middleware (authenticate, rateLimiter, securityHeaders, csrfProtection)
  • auth.authenticate: Authentication middleware
  • auth.authorize(permissions): Authorization middleware
  • auth.logout: Logout handler
  • auth.errorHandler: Error handling middleware

TokenManager

  • TokenManager.generateTokenPair(payload): Generate access and refresh tokens
  • TokenManager.revokeUserTokens(userId): Revoke all tokens for a user
  • TokenManager.isTokenBlacklisted(token): Check if a token is blacklisted

Local Development

  1. Install dependencies:
npm install
cd example-service
npm install
  1. Start Redis (required for token management):
docker run --name redis -p 6379:6379 -d redis:alpine
  1. Run the example service:
npm run dev
  1. Visit http://localhost:3000/api-docs to view the API documentation and test the endpoints.

Testing

To run tests:

npm test
npm run test:coverage

Logging

This middleware uses a local logging implementation for structured logging. All authentication and authorization events are logged with appropriate context and severity levels.

Example log output:

{
  "level": "info",
  "service": "auth-middleware",
  "component": "AUTH",
  "message": "Authentication successful",
  "metadata": {
    "userId": "123",
    "roles": ["USER"]
  },
  "timestamp": "2024-01-20T12:00:00.000Z"
}

Docker

Build and start all services

docker-compose up --build

Run tests in auth-middleware container

docker-compose exec auth-service npm test

View logs

docker-compose logs -f auth-service

Production Usage

Using as a Submodule

  1. Add to your microservice:
git submodule add git@github.com:codephilip/authentication-middleware.git shared/auth-middleware
  1. Update your service's package.json:
{
  "dependencies": {
    "auth-middleware": "file:./shared/auth-middleware"
  }
}
  1. Initialize in your Express app:
const { initializeAuth } = require('./shared/auth-middleware/src/index');

Submodule Management

Update the submodule to latest version:

git submodule update --remote shared/auth-middleware

Update to specific version:

cd shared/auth-middleware
git checkout v1.0.0
cd ../..
git add shared/auth-middleware
git commit -m "Update auth-middleware to v1.0.0"

Clone a project with submodules:

git clone --recursive <your-repo-url>

Version Management

This middleware follows semantic versioning. To update to a specific version:

cd shared/auth-middleware
git fetch --tags
git checkout v1.0.0  # Replace with desired version
cd ../..
git add shared/auth-middleware
git commit -m "Update auth-middleware to v1.0.0"

JavaScript Implementation

This middleware is implemented in pure JavaScript (ES6+) and can be used directly without any TypeScript compilation step. All type definitions have been converted to JSDoc comments for better IDE support and documentation.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages