Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/jangbl/jwt-server-to-server

JSON Web Tokens (JWT) server to server communication with Node.js servers
https://github.com/jangbl/jwt-server-to-server

hmac hmac-sha256 hs256 javascript json-web-signature json-web-token json-web-tokens jws jwt jwt-authentication jwt-bearer-tokens jwt-middleware jwt-token node node-js nodejs rs256 server-to-server server2server tutorial

Last synced: 5 days ago
JSON representation

JSON Web Tokens (JWT) server to server communication with Node.js servers

Host: GitHub
URL: https://github.com/jangbl/jwt-server-to-server
Owner: jangbl
Created: 2020-04-26T08:57:30.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2023-05-13T10:55:14.000Z (over 1 year ago)
Last Synced: 2024-10-03T21:37:57.678Z (about 1 month ago)
Topics: hmac, hmac-sha256, hs256, javascript, json-web-signature, json-web-token, json-web-tokens, jws, jwt, jwt-authentication, jwt-bearer-tokens, jwt-middleware, jwt-token, node, node-js, nodejs, rs256, server-to-server, server2server, tutorial
Language: JavaScript
Size: 436 KB
Stars: 10
Watchers: 1
Forks: 1
Open Issues: 10
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# JWT server to server communication in Node.js

## About

This repository is the source code for the [JWT server to server communication in Node.js tutorial series on Youtube](https://www.youtube.com/playlist?list=PL1Nml43UBm6dge_ykMszBCtaSJ9RnxQNJ) on YouTube provided by [productioncoder.com](https://productioncoder.com).

Please help this repo with a ⭐️ if you find it useful! 😁

[![JWT server to server communication](images/jwt-server-to-server.png)](https://www.youtube.com/playlist?list=PL1Nml43UBm6dge_ykMszBCtaSJ9RnxQNJ)

For updates, please follow [@_jgoebel](https://twitter.com/_jgoebel) on Twitter.

## 2 How to run this application

### 2.1 Install dependencies

Install the dependencies by running

```
npm install
```

### 2.2 HMAC communication

To initiate an HMAC server to server communication, you need to spin up two server so they can talk to each other

We recommend opening two terminal windows for this. In the first terminal run

```
npm run serverA
```

In the second terminal window run:

```
npm run serverB
```

You now have two servers running on port `3000` and on port `8080`.

### 2.3. RSA-based server to server communication

Make sure that you create two RSA keypairs and paste it in the root directory with the following file names

```
serverA-private.key
serverA-public.key
serverB-private.key
serverB-public.key
```

If you do not want to generate an RSA keypair with openssl via the command line, you can use an online service like [jsencrypt](https://travistidwell.com/jsencrypt/demo/index.html) if you just want to try out the project locally.

### 2.4. Let the servers talk to each other

To let one server send a message to the other server, you can hit the following unprotected `REST` endpoint with curl or with Postman:

```
POST localhost:8080/produce
```

Note that both servers support the `POST /produce` endpoint. Therfore, you can also hit

```
POST localhost:3000/produce
```

Both servers will not print log messages that indicate that they just exchanged information with `JWT` tokens in the header.

### 3 Security

To make this communcation truly secure, we would need to make use of a secure transport protocol such as `https`.

Since this is a tutorial and we did not want to complicate it further by using self-signed certificates, we just use `http` for the sake of simplicity.

We do this, so the tutorial is easier to understand. In a \_production scenario you need to use a secure protocol such as `https` / `TLS` to ensure a secure communication.