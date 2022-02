This Plugin Requires

NodeJS Runtime

Features

Verify JWT Token issued by Azure Active Directory B2C

Automatically use the rotated public key from Azure Public Keys URL

Install Plugin

npm install --save azure-jwt-verify

Using Azure JWT Verify in your code

You need to define the following constants based on your Azure Active Directory B2C application configurations

Initialize module

var azureJWT = require ( 'azure-jwt-verify' );

Configuration and the JWT to verify

var jwtToken = "YOUR_JWT_TOKEN_TO_VERIFY" ; const config = { JWK_URI : "" , ISS : "" , AUD : "" };

JWK_URI and the ISS(Issuer) can be obtained from the metadata endpoint of the policies created in the B2C tenant.

AUD(Audience) is the Client ID of the application accessing the tenant.

Verify Function

azureJWT.verify(jwtToken, config).then( function ( decoded ) { }, function ( error ) { })

Response Examples

For valid and authorize JWT token.

Response body:

{ "status" : "success" , "message" : { "exp" : 1486111778 , "nbf" : 1486108178 , "ver" : "1.0" , "iss" : "https://login.microsoftonline.com/9434db1e-33cd-4607-b350-9d947127a5de/v2.0/" , "sub" : "ff8490cb-2bda-4cc8-b801-4a22a8620c59" , "aud" : "dfc54797-efe3-4db3-a1e1-422b4ecf27d7" , "nonce" : "defaultNonce" , "iat" : 1486108178 , "auth_time" : 1486108178 , "oid" : "ff8490cb-2bda-4cc8-b801-4a22a8620c59" , "name" : "jon snow" , "extension_NIC" : "933132325V" , "emails" : [ "hellodishan@gmail.com" ], "tfp" : "B2C_1_b2c_1_sign_in" } }

For valid but expired JWT token.

Response body:

{ "status" : "error" , "message" : { "name" : "TokenExpiredError" , "message" : "jwt expired" , "expiredAt" : "2017-02-02T12:30:11.000Z" } }

For invalid JWT token.

Response body:

{ "status" : "error" , "message" : "Error Decoding JWT Token" }

License

MIT