Skip to content

lahirumaramba/edge_token_verifier

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
.github/workflows
.github/workflows
 
 
.vscode
.vscode
 
 
examples
examples
 
 
firebase
firebase
 
 
scripts
scripts
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
deno.json
deno.json
 
 
deno.lock
deno.lock
 
 
mod.ts
mod.ts
 
 

Repository files navigation

edge_token_verifier

Experimental token verifier that works on the Edge.

Hello there! This is an early stage experimental Deno module to verify tokens on edge runtimes. We are also experimenting with dnt to create the the Node.js compatible module.

We are currently testing the module on different edge runtimes. The current releases are only for testing purposes.

import { AppCheckTokenVerifier } from 'https://deno.land/x/[email protected]/mod.ts';

Node.js

import { AppCheckTokenVerifier } from '@lahirumaramba/edge-token-verifier';

Examples on the Edge

Netlify Edge Functions

// examples/netlify-edge/netlify/edge-functions/hello.ts
import { AppCheckTokenVerifier } from 'https://deno.land/x/[email protected]/mod.ts';

export default async (request: Request) => {
  const appCheckToken = request.headers.get('X-Firebase-AppCheck');
  const appCheckClaims = await verifyAppCheckToken(appCheckToken);

  if (!appCheckClaims) {
    return Response.json(
      { message: 'Unauthorized access. Invalid App Check token.' },
      { status: 401, headers: { "content-type": "application/json" } },
    );
  }
  return new Response(`Hello world Netlify Edge: App:${appCheckClaims.app_id}`);
};

const tokenVerifier = new AppCheckTokenVerifier();
const verifyAppCheckToken = async (appCheckToken: string | null) => {
  if (!appCheckToken) {
    return null;
  }
  try {
    return await tokenVerifier.verify(appCheckToken, 'project-id');
  } catch (_err) {
    return null;
  }
};

export const config = { path: '/api' };

Vercel Edge Functions (Next.js Middleware)

// examples/edge-token-vc/middleware.ts
import { NextResponse } from 'next/server';
import type { NextRequest } from 'next/server';
import { AppCheckTokenVerifier } from '@lahirumaramba/edge-token-verifier';

export async function middleware(request: NextRequest) {
  const verifyAppCheckToken = async (appCheckToken: string | null) => {
    if (!appCheckToken) {
      return null;
    }
    const tokenVerifier = new AppCheckTokenVerifier();
    try {
      return await tokenVerifier.verify(appCheckToken, 'project-id');
    } catch (_err) {
      return null;
    }
  };
  const appCheckToken = request.headers.get('X-Firebase-AppCheck');
  const appCheckClaims = await verifyAppCheckToken(appCheckToken);

  if (!appCheckClaims) {
    return NextResponse.json(
      { message: 'Unauthorized access. Invalid App Check token.' },
      { status: 401, headers: { 'content-type': 'application/json' } },
    );
  }
  return NextResponse.next();
}

export const config = {
  matcher: '/api/hello/:path*',
};

About

Experimental token verifier that works on the Edge

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 2

v0.2.0 Latest
Jan 29, 2023
+ 1 release

Packages

No packages published

Languages