Add JWT audience

syncs-usyd · Oct 12, 2019 · 8044376 · 8044376
1 parent a11683c
commit 8044376
Show file tree

Hide file tree

Showing 3 changed files with 7 additions and 2 deletions.
diff --git a/config.example.json b/config.example.json
@@ -4,6 +4,7 @@
         "pass": "password"
     },
     "jwt": {
+        "audience": "https://api.syncs.org.au",
         "secret": "supersecret",
         "duration": "6h"
     },

diff --git a/src/core/auth/auth.module.ts b/src/core/auth/auth.module.ts
@@ -14,8 +14,11 @@ const config = require("../../../config.json");
         PassportModule,
         JwtModule.register({
             secret: config.jwt.secret,
-            signOptions: { expiresIn: config.jwt.duration },
-        })
+            signOptions: {
+                audience: config.jwt.audience,
+                expiresIn: config.jwt.duration,
+            },
+        }),
     ],
     exports: [AuthService],
     providers: [AuthService, LocalStrategy, JwtStrategy],

diff --git a/src/core/auth/jwt.strategy.ts b/src/core/auth/jwt.strategy.ts
@@ -10,6 +10,7 @@ export class JwtStrategy extends PassportStrategy(Strategy) {
             jwtFromRequest: ExtractJwt.fromAuthHeaderAsBearerToken(),
             ignoreExpiration: false,
             secretOrKey: config.jwt.secret,
+            audience: config.jwt.audience,
         });
     }