middleware/authentication/adapters/jwt.js

var jwt = require("jsonwebtoken");

/**
 * JWT adapter.
 *
 * @type {*}
 */
module.exports = function(adapterId, adapterType, config)
{
    var r = {};

    r.parse = function(req) {

        var value = null;
        if (config.header)
        {
            value = req.headers[config.header.toLowerCase()];
        }
        else if (config.cookie)
        {
            value = req.cookies[config.cookie.toLowerCase()];
        }

        // Strip Bearer from JWT if exist
        if (value.substr(0, 7) === 'Bearer ')
        {
            value = value.substr(7)
        }

        if (!value)
        {
            return null;
        }

        // unpack the jwt

        var trusted = config.trusted ? true : false;

        var object = null;
        if (config.secret)
        {
            object = jwt.verify(value, config.secret);
            trusted = true;
        }
        else
        {
            object = jwt.decode(value);
        }

        // allow for the profile field to be picked off the object
        // otherwise, we simply pass the entire JWT object forward
        var profileField = config.profile_field;
        if (!profileField) {
            profileField = "profile";
        }
        var profile = null;
        if (object[profileField]) {
            profile = object[profileField];
        }
        if (!profile) {
            profile = object;
        }

        // pick off user id
        var user_identifier_field = config.field;
        if (!user_identifier_field)
        {
            user_identifier_field = "preferred_username";
        }

        var user_identifier = profile[user_identifier_field];

        // if not found, try "unique_name"
        if (!user_identifier) {

            user_identifier = profile["unique_name"];
        }

        var properties = {};

        // required
        properties.token = value;
        properties.trusted = trusted;

        if (profile) {
            properties.profile = profile;
        }

        if (user_identifier) {
            properties.user_identifier = user_identifier;
        }

        return properties;
    };

    return r;
};