Learning Outcomes:
- Understand the idea of token-based authentication
- What is digital signing?
- What are JSON Web Tokens (JWTs)?
- How to implement token-based authentication using JWTs and Node
Featured npm Packages:
The first form of authentication is typically requiring a user to send their username and password.
But how can we ensure a user remains "logged in" for an extended period? Or equivalently: How can subsequent requests be authenticated by the server, without the browser re-sending the username and password?
Token-based authentication is another way to authenticate a user. The idea is that upon login we create a token (a string) and send it back to the browser. The browser then sends the token with subsequent requests, and if the token can be verified (i.e. it is a legitimate token issued by the server), the user is authenticated.
N.B. In this workshop, we will transfer our token between the server and browser on a cookie, but it is also common to send tokens in a request header.
N.B. This token authentication is stateless, because no data persists on the server in relation to individual tokens. This is in contrast with stateful sessions, where a session is created in a database, and the session id is sent to the browser. Then the browser sends the id with each request, and the server checks in the database to validate the session. Being stateless, token-based authentication is less memory-intensive than session-based authentication, but both methods also have other pros and cons, which you can read about online.
- A more useful cookie
- Signing
- JSON Web Tokens
- exercise 1: creating and validating JWT cookies
- optional extra exercise 2- implement a HMAC
A very simple cookie (key and value) could look like logged_in=true or username=druscilla but sometimes we want to store more, and better-structured data.
⭐ How about JSON? ⭐
For example, inside a cookie, it might be useful to store:
- a user's id, and
- their access privileges.
We could write in our handler:
const userInformation = {
userId: 45,
accessPrivileges: {
user: true,
admin: false
}
};
const cookieValue = JSON.stringify(userInformation);
res.setHeader(
'Set-Cookie',
`data=${cookieValue}; HttpOnly; Secure`
);Great! We now have a cookie that we can add as much information to as we need, but we still have the same big security problem: This cookie can be very easily tampered with. (For example, by opening up the DevTools 'Application' tab and setting admin to true)
So when our server reads a cookie from an incoming request, how can we be sure that the cookie has not been edited?
We can use hashing in order to know if our cookie has been altered.
However, we need to be sure only we can produce the correct hash. So if an attacker changes the cookie, they cannot produce the correct hash, and we will know the data has changed.
A HMAC (Hash-based message authentication code) is a code which authenticates a message using a hash. In other words, it is exactly what we need!
A HMAC requires:
- a
secret: a long random string which is private, - a
value: the message you want to sign, and - a
mathematical algorithmto create the hash.
You can store the HMAC alongside the original message to verify that the message/cookie/whatever has not been tampered with. This is known as signing.
Metaphor Alert: Think of the signature like a personal wax seal on a letter- the contents of the letter cannot be changed without breaking the seal, and the correct seal cannot be reproduced without the stamp!
N.B. If you use a long enough string as a secret key, with a modern hashing algorithm, the key will be safe from a bruteforce attack with current levels of computing power.
This whole 'signed JSON' idea is such a good one that there is an entire open standard associated with it known as JSON Web Tokens.
JWT uses base64 encoding which is a way of converting binary data into plain text. Encoding is not the same as encrypting so sensitive information should not be stored within a JWT. We use JWTs for authentication and transferring data that you don't want to be tampered with.
A JWT is just a string, composed of three sections, joined together by full stops. The sections are:
1. Header - base64 encoded object about the type of token (jwt) and the type of hashing algorithm (ie HMAC SHA256).
{
alg: 'SHA256'
type: 'JWT'
}2. Payload - base64 encoded object with your 'claims' in it. Mostly just a fancy name for the data you want to store in your JWT, but it can also hold 'reserved claims', which are some useful standard values, such as iss (issuer), exp (expiration time), sub (subject), and aud (audience).
{
"name": "John Doe",
"user": true,
"admin": false
}3. Signature - a hash of parts 1) and 2) joined by a full stop.
hashFunction(`${encodedHeader}.${encodedPayload}`);The overall structure of a JWT is:
[header].[payload].[signature]
Here is an example of a JWT:
eyJhbGciOiJIUzI1NiJ9.aGtqa2hr.IhQxjhZL2hMAR2MDKTD1hppR8KEO9cvEgsE_esJGHUA
So to build it in Node.js:
const base64Encode = str =>
Buffer.from(str).toString('base64');
const base64Decode = str =>
Buffer.from(str, 'base64').toString();
// Usually two parts:
const header = {
alg: 'SHA256', // The hashing algorithm to be used
typ: 'JWT' // The token 'type'
};
// Your 'claims'
const payload = {
userId: 99,
username: 'ada'
};
const encodedHeader = base64Encode(JSON.stringify(header));
const encodedPayload = base64Encode(JSON.stringify(payload));
const signature = hashFunction(`${encodedHeader}.${encodedPayload}`);
// 'Udcna0ETPpRw5m3po3COjicb_cGJvgtnoLZyLnftaaI'
const jwt = `${encodedHeader}.${encodedPayload}.${signature}`;
// Result!
// 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJvayI6dHJ1ZSwiaWF0IjoxNTAxOTY2MjY5fQ.Udcna0ETPpRw5m3po3COjicb_cGJvgtnoLZyLnftaaI'This JWT is protected from tampering, because it is signed. The payload and header are base64 encoded (to reduce the length), but they can easily be converted back to plain text- their contents are not secret. So do not store sensitive user information in a JWT being sent as a cookie, such as bank balance, DOB etc. To protect the information from being read, you would need to encrypt it, but in general, it is advised to never store sensitive data on a cookie.
The full JWT spec is rather large, so as fun as it would be to implement it ourselves, let's go with a library.
We will be using jsonwebtoken, to create our JWTs. I also recommend using cookie to parse your incoming req.headers.cookie header.
Read the docs for both!
$ cd exercise-1$ npm i$ npm start- Navigate to
localhost:3000
You will see that index.html has three buttons, now you must implement the JWT cookie logic on the server side:
| Endpoint | Action |
|---|---|
/login |
Should create a cookie using jwt.sign, attach it to the response, and redirect to / |
/logout |
Should remove the cookie and redirect to / |
/auth_check |
Should check if the cookie exists, validate it with jwt.verify, and send back a 200 or 401 response with an informative message! |
Now we are going to make an program for handling and verifying important communications.
Node.js has a built-in HMAC function.
You will be provided a Node.js module (to be used in your terminal), that accepts a 'secret' and returns an object with two functions on it, which you have to implement:
- sign: This function accepts a value (
string), and uses the Node.js crypto module to create and return a HMACstringof that value usingSHA256algorithm andhexencoder. - validate: This function accepts a value (
string), and a hash (string). It calculates the HMAC of the value and compares it to the hash that was provided. It should return aboolean.
Here is an example of it in use:
const psst = require('./psst.js');
const { sign, validate } = psst('super secret string');
// Regular string
sign('winnie');
// 'f7f697686a57ed3308f7c536c8394ee55beb3540aab58340fba104a997b921ed'
// Or JSON string
sign('{"admin":true}');
// '97076541ba62ce457ef24935d67253227c6081a230150ac468ee9b8e132d2d01'
validate('woof', 'an incorrect signature'); // false
validate(
'winnie', 'f7f697686a57ed3308f7c536c8394ee55beb3540aab58340fba104a997b921ed'
); // true
The file is in ./exercise-2/psst.js.
To check your code, run node ./exercise-2/index.js. The correct response should be a hash and true.
HINT: There is an npm package (that gets 11 million downloads a month) that uses HMACs to sign their cookies. You should be able to get plenty of help from reading its source code. Look at how HMAC is being used. No copy pasting!