1. Advisor
  2. paseto
  3. paseto code examples
View all paseto analysis

How to use paseto - 5 common examples

To help you get started, we’ve selected a few paseto examples, based on popular ways it is used in public projects.

Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.

github stefanvanherwijnen / quasar-auth-starter / backend / console / configure.js View on Github external
const generateNewKey = async () => {
  try {
    let sk = new SymmetricKey(new encoder)
    sk.generate().then(() => {
      let b64 = sk.encode() 
      env.PASETO_KEY = b64
      let output = envfile.stringifySync(env)
      fs.writeFileSync(sourcePath, output)
      console.log('New PASETO key has been sucessfully generated.')
    });
  } catch (err) {
    throw err
  }
}
github stefanvanherwijnen / quasar-auth-starter / backend / src / api / helpers / paseto-auth.ts View on Github external
public async getSharedKey(): Promise {
    const sharedKey  = new Paseto.SymmetricKey(new Paseto.V2())

    return sharedKey.base64(process.env.PASETO_KEY).then((): Paseto.SymmetricKey => {
      return sharedKey
    })
  }
github stefanvanherwijnen / quasar-auth-starter / backend / src / api / helpers / paseto-auth.ts View on Github external
public async getTokenBuilder(): Promise {
    return new Paseto.Builder()
      .setPurpose('local')
      .setKey(await this.getSharedKey())
      .setIssuedAt(new Date())
      .setExpiration(this.getExpireTime())
      .setIssuer(this.getIssuer())
  }
github stefanvanherwijnen / quasar-auth-starter / backend / src / api / helpers / paseto-auth.ts View on Github external
public async check(req: Request): Promise {
    let parser = new Paseto.Parser(await this.getSharedKey())
    parser = parser.addRule(new Rules.notExpired()).addRule(new Rules.issuedBy(this.getIssuer()))
    try {
      const token = await parser.parse(this.getTokenFromRequest(req))
      Object.assign(req, {token: token})

      const id = token.getClaims().id
      const user = await User.query().eager('roles').findById(id).throwIfNotFound()
      const iat = token.getClaims().iat

      if (user) {
        if (user.tokensRevokedAt && (new Date(iat) < new Date(user.tokensRevokedAt))) {
          return false
        }
        Object.assign(req, {user: user})
      } else {
        return false
github stefanvanherwijnen / quasar-auth-starter / backend / src / api / helpers / paseto-auth.ts View on Github external
public async check(req: Request): Promise {
    let parser = new Paseto.Parser(await this.getSharedKey())
    parser = parser.addRule(new Rules.notExpired()).addRule(new Rules.issuedBy(this.getIssuer()))
    try {
      const token = await parser.parse(this.getTokenFromRequest(req))
      Object.assign(req, {token: token})

      const id = token.getClaims().id
      const user = await User.query().eager('roles').findById(id).throwIfNotFound()
      const iat = token.getClaims().iat

      if (user) {
        if (user.tokensRevokedAt && (new Date(iat) < new Date(user.tokensRevokedAt))) {
          return false
        }
        Object.assign(req, {user: user})
      } else {
        return false
      }

paseto

PASETO for Node.js with no dependencies

GitHub
MIT
Latest version published 2 years ago

Package Health Score

56 / 100
Full package analysis

Popular paseto functions

Similar packages