stackoom
  简体   繁体   中英

How to verify AWS Cognito Access Token on NodeJS

 原文  2017-08-20 04:29:53       node.js/ amazon-web-services/ amazon-cognito

Question

I found an example on how to verify Cognito access tokens with Python . How do I do the same with NodeJS? Is there no SDK function to do this?

So far I have 

authorizeCognitoJwt(token) {
    const COGNITO_POOL_ID = 'ap-southeast-1_xxx'
    const COGNITO_JWT_SET = {
    'keys': [
        {
        'alg': 'RS256',
        'e': 'AQAB',
        'kid': 'ChkV+...=',
        'kty': 'RSA',
        'n': 'tkjexS...johc5Q',
        'use': 'sig'
        },
        {
        'alg': 'RS256',
        'e': 'AQAB',
        'kid': 'Ve...Eb8dw6Y=',
        'kty': 'RSA',
        'n': 'hW19H...0c9Q',
        'use': 'sig'
        }
    ]
    }
    const decodedJwt = jwt.decode(token, {complete: true})
    console.log(decodedJwt)

    if (decodedJwt.payload.iss !== `https://cognito-idp.us-east-1.amazonaws.com/${COGNITO_POOL_ID}`) {
    return 'INVALID_ISSUER'
    }

    if (decodedJwt.payload.token_use !== 'access') {
    return 'INVALID_TOKEN_USE'
    }

    var jwtKey = COGNITO_JWT_SET.keys.find(k => k.kid === decodedJwt.header.kid)
    if (!jwtKey) {
    return 'INVALID_TOKEN_KID'
    }

    var verifiedKey = jwt.verify(token, /* how do I get the key? */)

    return 'VALID'
}

But am stuck at how do I get keys from COGNITO_JWT_SET

1 answers

solution1
 2 ACCPTED  2017-08-20 04:59:59

You can get the COGNITO_JWT_SET by using this URL.

Refer the blog post Integrating Amazon Cognito User Pools with API Gateway in AWS Mobile Blog for a complete example with code.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question NodeJS AWS KMS sign and verify token How can I signup with AWS cognito using facebook token or google accesstoken using nodejs or lambda functions? how to jwt token verify using nodejs How to verify routes with JWT token in NodeJS how to verify jwt token in nodejs / never expire? How to manually expire the token of login cognito -user in Nodejs Retrieve the access token, secret access key and session token from aws cognito How do you use AWS Cognito with a custom NodeJS server? How to force AWS Cognito: signUp() to execute synchronously (nodejs) How to verify a Bearer token with .pfx certificate and password in NodeJs?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM