ywywadmin/yourwillyourwish
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
f85e93c7a63edc902887367344f073585933abdd
yourwillyourwish/lib/auth/jwt.ts
Developer f85e93c7a6 Initial commit
2026-02-06 21:44:04 -06:00

39 lines
1007 B
TypeScript
Raw Blame History

import { SignJWT, jwtVerify } from "jose";
import { loadSystemConfig } from "../system-config";
export type SessionToken = {
sub: string; // userId
role: "ADMIN" | "USER";
email: string;
forcePasswordReset: boolean;
};
async function getSecret() {
const cfg = await loadSystemConfig();
const s = cfg.auth?.jwtSecret || process.env.JWT_SECRET;
if (!s) return null;
return new TextEncoder().encode(s);
}
export async function signSession(payload: SessionToken) {
const secret = await getSecret();
if (!secret) throw new Error("JWT secret not configured");
const token = await new SignJWT(payload)
.setProtectedHeader({ alg: "HS256" })
.setIssuedAt()
.setExpirationTime("7d")
.sign(secret);
return token;
}
export async function verifySession(token: string) {
const secret = await getSecret();
if (!secret) return null;
try {
const { payload } = await jwtVerify(token, secret);
return payload as any as SessionToken;
} catch {
return null;
}
}
Reference in New Issue View Git Blame Copy Permalink