Authentication

JWT authentication and authorization

Authentication

JWT Token Generation

const token = await generateToken(
  user.id,
  user.username,
  env.JWT_SECRET,
  roles
)

Token Verification

const token = getAuthToken(request)
const payload = await verifyToken(token, env.JWT_SECRET)
const userId = payload.userId

Permission Checking

async function hasPermission(
  userId: number,
  permission: string,
  env: Env
): Promise<boolean> {
  const roles = await getUserRoles(userId, env)
  if (roles.includes('admin')) return true
  
  const permissions = await getUserPermissions(userId, env)
  return permissions.includes('*') || permissions.includes(permission)
}

API Endpoints
Database Access

Edit this page

API Endpoints

Creating and structuring API endpoints

Database Access

Querying D1 database

On this page

JWT Token Generation
Token Verification
Permission Checking
Related Guides

Star on GitHub Create Issues

Authentication

Authentication

JWT Token Generation

Token Verification

Permission Checking

Related Guides