This is an example codebase that implements user registration and supports authorization using JWTs using serverless functions and the wonderful FaunaDB.
I wrote this to teach myself how JWTs work and also implement user registration and login/logout, etc flows serverlessly.
- sign up as new user (or re-sign up as a deleted user which is transparent to the user)
- login and get JWT with 1 hour expiry (multiple logged in sessions supported)
- access protected route with only with a valid token
- logout (kills all logged in sessions and invalidates all tokens for the user)
- delete user
- In-situ encrypted JWT signing/validation key pair to overcome AWS Lambda having a hard limit of 4kb on env vars when JSON-stringified
- todos in code
- switch to
argon2frombcryptWaiting on vercel/nft#53 to switch to argon2
api/*holds the lambdas that map to each supported routemodels/*holds the models for the entities in the system (User & Token) and some helperserrors/*holds the custom error tooling for the codebaseutils/*hold code structure and type level utilties
I wanted to play with a different way of approaching authoring the code in this repository. Instead
of messing with try/catch-es and lots of error handling madness, I have instead opted to push
those to the edges as you can see in models/User.helpers.ts and instead
wrap those values in Maybes and/or Eithers. These values are then accessed in a declarative
manner using match. Their usage, imho, has greatly simplified the code as you can see in the
api/*.ts. It's not everyone's ☕and I get that.
More info can be found in files with the same names under they utils/ directory.