2.2.5

add .editorconfig
2.2.4
2023-10-02 23:41:42 +02:00 · 2023-10-02 23:41:30 +02:00 · 2023-10-02 23:37:16 +02:00 · 2023-10-02 23:37:01 +02:00 · 2023-10-02 23:19:51 +02:00 · 2023-10-02 23:18:05 +02:00
7 changed files with 1051 additions and 3400 deletions
--- a/.editorconfig
+++ b/.editorconfig
@@ -0,0 +1,10 @@
+root = true
+
+[*]
+end_of_line = lf
+insert_final_newline = false
+
+[src/**/*.ts]
+charset = utf-8
+indent_style = space
+indent_size = 4
--- a/.npmignore
+++ b/.npmignore
@@ -4,3 +4,4 @@ test/
 .nvmrc
 index.test.js
 tsconfig.json
+.editorconfig
--- a/.nvmrc
+++ b/.nvmrc
@@ -1 +0,0 @@
-v16
--- a/README.md
+++ b/README.md
@@ -104,7 +104,7 @@ Argument    | Type     | Status   | Default | Description
 ----------- | -------- | -------- | ------- | -----------
 `token`     | `string` | required | -       | The token string generated by `jwt.sign()`.
 `secret`    | `string` | required | -       | The string which was used to sign the payload.
-`options`   | `object` | optional | `{ algorithm: 'HS256', throwError: false }` | The options object supporting `algorithm` and `throwError`. (See [Available Algorithms](#available-algorithms))
+`options`   | `object` | optional | `{ algorithm: 'HS256', skipValidation: false, throwError: false }` | The options object supporting `algorithm`, `skipValidation` and `throwError`. (See [Available Algorithms](#available-algorithms))

 #### `throws`
 If `options.throwError` is `true` and the token is invalid, an error will be thrown.
--- a/package-lock.json
+++ b/package-lock.json
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@tsndr/cloudflare-worker-jwt",
-  "version": "2.2.2",
+  "version": "2.2.5",
  "description": "A lightweight JWT implementation with ZERO dependencies for Cloudflare Worker",
  "main": "index.js",
  "types": "index.d.ts",
@@ -26,8 +26,8 @@
  },
  "homepage": "https://github.com/tsndr/cloudflare-worker-jwt#readme",
  "devDependencies": {
-    "@cloudflare/workers-types": "^3.13.0",
-    "jest": "^28.1.1",
-    "typescript": "^4.7.4"
+    "@cloudflare/workers-types": "^4.20231002.0",
+    "jest": "^29.7.0",
+    "typescript": "^5.2.2"
  }
 }
--- a/src/index.ts
+++ b/src/index.ts
@@ -87,6 +87,11 @@ export interface JwtSignOptions extends JwtOptions {
 * @prop {boolean} [throwError=false] If `true` throw error if checks fail. (default: `false`)
 */
 export interface JwtVerifyOptions extends JwtOptions {
+    /**
+     * If `true` all expiry checks will be skipped
+    */
+    skipValidation?: boolean
+
    /**
     * If `true` throw error if checks fail. (default: `false`)
     *
@@ -229,11 +234,11 @@ export async function sign(payload: JwtPayload, secret: string | JsonWebKey, opt
 * @throws {Error | string} Throws an error `string` if the token is invalid or an `Error-Object` if there's a validation issue.
 * @returns {Promise<boolean>} Returns `true` if signature, `nbf` (if set) and `exp` (if set) are valid, otherwise returns `false`.
 */
-export async function verify(token: string, secret: string | JsonWebKey, options: JwtVerifyOptions | JwtAlgorithm = { algorithm: 'HS256', throwError: false }): Promise<boolean> {
+export async function verify(token: string, secret: string | JsonWebKey, options: JwtVerifyOptions | JwtAlgorithm = { algorithm: 'HS256', skipValidation: false, throwError: false }): Promise<boolean> {
    if (typeof options === 'string')
        options = { algorithm: options, throwError: false }

-    options = { algorithm: 'HS256', throwError: false, ...options }
+    options = { algorithm: 'HS256', skipValidation: false, throwError: false, ...options }

    if (typeof token !== 'string')
        throw new Error('token must be a string')
@@ -256,21 +261,21 @@ export async function verify(token: string, secret: string | JsonWebKey, options

    const { payload } = decode(token)

-    if (!payload) {
+    if (!options.skipValidation && !payload) {
        if (options.throwError)
            throw 'PARSE_ERROR'

        return false
    }

-    if (payload.nbf && payload.nbf > Math.floor(Date.now() / 1000)) {
+    if (!options.skipValidation && payload.nbf && payload.nbf > Math.floor(Date.now() / 1000)) {
        if (options.throwError)
            throw 'NOT_YET_VALID'

        return false
    }

-    if (payload.exp && payload.exp <= Math.floor(Date.now() / 1000)) {
+    if (!options.skipValidation && payload.exp && payload.exp <= Math.floor(Date.now() / 1000)) {
        if (options.throwError)
            throw 'EXPIRED'
Author	SHA1	Message	Date
Toby	7027999975	2.2.5	2023-10-02 23:41:42 +02:00
Toby	166b074782	add .editorconfig	2023-10-02 23:41:30 +02:00
Toby	decbd238e9	2.2.4	2023-10-02 23:37:16 +02:00
Toby	894ac2c9f5	update dependencies	2023-10-02 23:37:01 +02:00
Toby	1394e4e33d	2.2.3	2023-10-02 23:19:51 +02:00
Toby	47028970b4	update readme	2023-10-02 23:18:05 +02:00
Toby	6ac43d493d	add skipValidation option for verify	2023-10-02 23:10:45 +02:00
Toby	cc66bd9c47	add .editorconfig	2023-10-02 23:10:20 +02:00