2.2.3

update readme
add skipValidation option for verify
2023-10-02 23:19:51 +02:00 · 2023-10-02 23:18:05 +02:00 · 2023-10-02 23:10:45 +02:00 · 2023-10-02 23:10:20 +02:00 · 2023-08-25 16:01:57 +02:00 · 2023-08-25 16:00:30 +02:00
5 changed files with 26 additions and 11 deletions
--- a/.editorconfig
+++ b/.editorconfig
@@ -0,0 +1,10 @@
 root = true
 [*]
 end_of_line = lf
 insert_final_newline = false
 [src/**/*.ts]
 charset = utf-8
 indent_style = space
 indent_size = 4
--- a/README.md
+++ b/README.md
@@ -104,7 +104,7 @@ Argument    | Type     | Status   | Default | Description
 ----------- | -------- | -------- | ------- | -----------
 `token`     | `string` | required | -       | The token string generated by `jwt.sign()`.
 `secret`    | `string` | required | -       | The string which was used to sign the payload.
-`options`   | `object` | optional | `{ algorithm: 'HS256', throwError: false }` | The options object supporting `algorithm` and `throwError`. (See [Available Algorithms](#available-algorithms))
+`options`   | `object` | optional | `{ algorithm: 'HS256', skipValidation: false, throwError: false }` | The options object supporting `algorithm`, `skipValidation` and `throwError`. (See [Available Algorithms](#available-algorithms))
 #### `throws`
 If `options.throwError` is `true` and the token is invalid, an error will be thrown.
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,12 +1,12 @@
 {
  "name": "@tsndr/cloudflare-worker-jwt",
-  "version": "2.2.1",
+  "version": "2.2.3",
  "lockfileVersion": 2,
  "requires": true,
  "packages": {
    "": {
      "name": "@tsndr/cloudflare-worker-jwt",
-      "version": "2.2.1",
+      "version": "2.2.3",
      "license": "MIT",
      "devDependencies": {
        "@cloudflare/workers-types": "^3.13.0",
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@tsndr/cloudflare-worker-jwt",
-  "version": "2.2.1",
+  "version": "2.2.3",
  "description": "A lightweight JWT implementation with ZERO dependencies for Cloudflare Worker",
  "main": "index.js",
  "types": "index.d.ts",
--- a/src/index.ts
+++ b/src/index.ts
@@ -33,7 +33,7 @@ export interface JwtHeader {
 * @typedef JwtPayload
 * @prop {string} [iss] Issuer
 * @prop {string} [sub] Subject
- * @prop {string} [aud] Audience
+ * @prop {string | string[]} [aud] Audience
 * @prop {string} [exp] Expiration Time
 * @prop {string} [nbf] Not Before
 * @prop {string} [iat] Issued At
@@ -47,7 +47,7 @@ export interface JwtPayload {
    sub?: string
    /** Audience */
-    aud?: string
+    aud?: string | string[]
    /** Expiration Time */
    exp?: number
@@ -87,6 +87,11 @@ export interface JwtSignOptions extends JwtOptions {
 * @prop {boolean} [throwError=false] If `true` throw error if checks fail. (default: `false`)
 */
 export interface JwtVerifyOptions extends JwtOptions {
    /**
     * If `true` all expiry checks will be skipped
    */
    skipValidation?: boolean
    /**
     * If `true` throw error if checks fail. (default: `false`)
     *
@@ -229,11 +234,11 @@ export async function sign(payload: JwtPayload, secret: string | JsonWebKey, opt
 * @throws {Error | string} Throws an error `string` if the token is invalid or an `Error-Object` if there's a validation issue.
 * @returns {Promise<boolean>} Returns `true` if signature, `nbf` (if set) and `exp` (if set) are valid, otherwise returns `false`.
 */
-export async function verify(token: string, secret: string | JsonWebKey, options: JwtVerifyOptions | JwtAlgorithm = { algorithm: 'HS256', throwError: false }): Promise<boolean> {
+export async function verify(token: string, secret: string | JsonWebKey, options: JwtVerifyOptions | JwtAlgorithm = { algorithm: 'HS256', skipValidation: false, throwError: false }): Promise<boolean> {
    if (typeof options === 'string')
        options = { algorithm: options, throwError: false }
-    options = { algorithm: 'HS256', throwError: false, ...options }
+    options = { algorithm: 'HS256', skipValidation: false, throwError: false, ...options }
    if (typeof token !== 'string')
        throw new Error('token must be a string')
@@ -256,21 +261,21 @@ export async function verify(token: string, secret: string | JsonWebKey, options
    const { payload } = decode(token)
-    if (!payload) {
+    if (!options.skipValidation && !payload) {
        if (options.throwError)
            throw 'PARSE_ERROR'
        return false
    }
-    if (payload.nbf && payload.nbf > Math.floor(Date.now() / 1000)) {
+    if (!options.skipValidation && payload.nbf && payload.nbf > Math.floor(Date.now() / 1000)) {
        if (options.throwError)
            throw 'NOT_YET_VALID'
        return false
    }
-    if (payload.exp && payload.exp <= Math.floor(Date.now() / 1000)) {
+    if (!options.skipValidation && payload.exp && payload.exp <= Math.floor(Date.now() / 1000)) {
        if (options.throwError)
            throw 'EXPIRED'
Author	SHA1	Message	Date
Toby	1394e4e33d	2.2.3	2023-10-02 23:19:51 +02:00
Toby	47028970b4	update readme	2023-10-02 23:18:05 +02:00
Toby	6ac43d493d	add skipValidation option for verify	2023-10-02 23:10:45 +02:00
Toby	cc66bd9c47	add .editorconfig	2023-10-02 23:10:20 +02:00
Toby	a8f95f1c6d	2.2.2	2023-08-25 16:01:57 +02:00
Tom Lokhorst	b2886c0778	Allow array in Audience	2023-08-25 16:00:30 +02:00