This application was created using the create express component, and demonstrates how to verify the JWT authentication tokens used by AWS Cognito in an express based node.js service. See my article AWS Cognito example using React UI and Node.js REST APIs — part 3 (JWT secured REST APIs) for more information.
- Modify
src/config/app-config.json
to match your user pool and application URLs. When running locally with the UI, thesignoutUri
will property need to behttp://localhost:3000/
and thecallbackUri
property will need to behttp://localhost:3000/callback
. - Run
npm install
to setup and install the dependencies. - Run
DEBUG=cognito-demo-service:* npm start
to start the service. - The service will start listening at
http:localhost:3010
. - Using curl call the GET /users REST API:
curl -X GET http://localhost:3010/users -H 'Authorization: Bearer <your_JWT_token>'
and if successful you should see the following type of response:
Successfully verified JWT token. Extracted information: {"sub":"1f0be62f-ffcd-49ca-b5a4-18f0bf62e0e6","token_use":"access","scope":["openid","profile","https://cognito-demo-api.arronharden.com/hello-world.all","email"],"username":"arron"}
The source for an example React UI application which invokes this REST API is contained in the repo at https://github.com/arronharden/cognito-demo-ui. A running instance of this React application is hosted at https://cognito-demo.arronharden.com.
A running instance of this REST API is hosted at https://cognito-demo-api.arronharden.com.
I'm a cloud/SaaS architect and lead full stack engineer, living in Milton Keynes (UK). More information about me can be found on my profile at https://arronharden.com.