Skip to content

GSG-CA/JWT-WS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
exercise-1
exercise-1
 
 
exercise-2
exercise-2
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

JWT Stateless Session Workshop

Based on FAC original workshop.

Learning Outcomes:

  • Understand the idea of token-based authentication
  • What is digital signing?
  • What are JSON Web Tokens (JWTs)?
  • How to implement token-based authentication using JWTs and Express

Featured npm Packages:

Introduction

The first form of authentication is typically requiring a user to send their username and password. But how can we ensure a user remains "logged in" for an extended period? Or equivalently: How can subsequent requests be authenticated by the server, without the browser re-sending the username and password?

Token-based authentication is another way to authenticate a user. The idea is that upon login we create a token (a string) and send it back to the browser. The browser then sends the token with subsequent requests, and if the token can be verified (i.e. it is a legitimate token issued by the server), the user is authenticated.

N.B. In this workshop, we will transfer our token between the server and browser on a cookie, but it is also common to send tokens in a request header.

N.B. This token authentication is stateless, because no data persists on the server in relation to individual tokens. This is in contrast with stateful sessions, where a session is created in a database, and the session id is sent to the browser. Then the browser sends the id with each request, and the server checks in the database to validate the session. Being stateless, token-based authentication is less memory-intensive than session-based authentication, but both methods also have other pros and cons, which you can read about online.

Contents

A more useful cookie

A very simple cookie (key and value) could look like logged_in=true or username=druscilla but sometimes we want to store more, and better-structured data.

⭐ How about JSON? ⭐

For example, inside a cookie, it might be useful to store:

  1. a user's id, and
  2. their access privileges.

We could write in our handler:

const userInformation = {
  userId: 45,
  accessPrivileges: {
    user: true,
    admin: false
  }
};

const cookieValue = JSON.stringify(userInformation);

res.cookie("data", cookieValue, { httpOnly: true, secure: true });

Great! We now have a cookie that we can add as much information to as we need, but we still have the same big security problem: This cookie can be very easily tampered with. (For example, by opening up the DevTools 'Application' tab and setting admin to true)

So when our server reads a cookie from an incoming request, how can we be sure that the cookie has not been edited?

Signing

We can use hashing in order to know if our cookie has been altered.

However, we need to be sure only we can produce the correct hash. So if an attacker changes the cookie, they cannot produce the correct hash, and we will know the data has changed.

A HMAC (Hash-based message authentication code) is a code which authenticates a message using a hash. In other words, it is exactly what we need!

A HMAC requires:

  • a secret: a long random string which is private,
  • a value: the message you want to sign, and
  • a mathematical algorithm to create the hash.

You can store the HMAC alongside the original message to verify that the message/cookie/whatever has not been tampered with. This is known as signing.

Metaphor Alert: Think of the signature like a personal wax seal on a letter- the contents of the letter cannot be changed without breaking the seal, and the correct seal cannot be reproduced without the stamp!

N.B. If you use a long enough string as a secret key, with a modern hashing algorithm, the key will be safe from a bruteforce attack with current levels of computing power.

JSON Web Tokens

This whole 'signed JSON' idea is such a good one that there is an entire open standard associated with it known as JSON Web Tokens.

JWT uses base64url encoding which is a way of converting binary data into plain text. Encoding is not the same as encrypting so sensitive information should not be stored within a JWT. We use JWTs for authentication and transferring data that you don't want to be tampered with.

A JWT is just a string, composed of three sections, joined together by full stops. The sections are:

1. Header - base64url encoded object about the type of token (jwt) and the type of hashing algorithm (ie HMAC SHA256).

{
  alg: "SHA256";
  type: "JWT";
}

2. Payload - base64url encoded object with your 'claims' in it. Mostly just a fancy name for the data you want to store in your JWT, but it can also hold 'reserved claims', which are some useful standard values, such as iss (issuer), exp (expiration time), sub (subject), and aud (audience).

{
  "name": "John Doe",
  "user": true,
  "admin": false
}

3. Signature - a hash of parts 1) and 2) joined by a full stop.

hashFunction(`${encodedHeader}.${encodedPayload}`);

The overall structure of a JWT is:

[header].[payload].[signature]

Here is an example of a JWT:

eyJhbGciOiJIUzI1NiJ9.aGtqa2hr.IhQxjhZL2hMAR2MDKTD1hppR8KEO9cvEgsE_esJGHUA

So to manually build it in Node.js:

Note: base64url first landed in v15.7.0:

// const base64urlEncode = str => Buffer.from(str).toString("base64url");
// const base64urlDecode = str => Buffer.from(str, "base64url").toString();
const base64url = require('base64url');

const createHash = ({ value, secretKey }) =>
  crypto.createHmac("sha256", secretKey).update(value).digest("base64url");

const header = {
  alg: "HS256",
  typ: "JWT"
};

const payload = {
  userId: 99,
  username: "user"
};

const encodedHeader = base64url(JSON.stringify(header)); // eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9
const encodedPayload = base64url(JSON.stringify(payload)); // eyJ1c2VySWQiOjk5LCJ1c2VybmFtZSI6InVzZXIifQ

const signature = createHash({
  value: `${encodedHeader}.${encodedPayload}`,
  secretKey: "this is a secret",
});
// zeTCbWm2-Lpkoityi6Zll6vX8Ahs2x1J0Jp0tbPp_G0

const jwt = `${encodedHeader}.${encodedPayload}.${signature}`;
// eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VySWQiOjk5LCJ1c2VybmFtZSI6InVzZXIifQ.zeTCbWm2-Lpkoityi6Zll6vX8Ahs2x1J0Jp0tbPp_G0

This JWT is protected from tampering, because it is signed. The payload and header are base64url encoded (to reduce the length and makes it easy to process "parts", since the part-separator ('.') is guaranteed to not occur inside the parts themselves), but they can easily be converted back to plain text- their contents are not secret. So do not store sensitive user information in a JWT being sent as a cookie, such as bank balance, DOB etc. To protect the information from being read, you would need to encrypt it, but in general, it is advised to never store sensitive data on a cookie.

exercise 1: creating and validating JWT cookies

The full JWT spec is rather large, so as fun as it would be to implement it ourselves, let's go with a library.

We will be using jsonwebtoken, to create our JWTs. I also recommend using cookie-parser to parse your incoming cookies.

Read the docs for both!

Set up

  • $ cd exercise-1
  • $ npm i
  • $ npm start
  • Navigate to localhost:3000

Task

You will see that index.html has three buttons, now you must implement the JWT cookie logic on the server side:

Endpoint Action
/login Should create a cookie using jwt.sign, attach it to the response, and redirect to /
/logout Should remove the cookie and redirect to /
/auth-check Should check if the cookie exists, validate it with jwt.verify, and send back a 200 or 401 response with an informative message!

optional extra exercise 2- implement a HMAC

Now we are going to make an program for handling and verifying important communications.

Node.js has a built-in HMAC function.

You will be provided a Node.js module (to be used in your terminal), that accepts a 'secret' and returns an object with two functions on it, which you have to implement:

  • sign: This function accepts a value (string), and uses the Node.js crypto module to create and return a HMAC string of that value using SHA256 algorithm and hex encoder.
  • validate: This function accepts a value (string), and a hash (string). It calculates the HMAC of the value and compares it to the hash that was provided. It should return a boolean.

Here is an example of it in use:

const psst = require('./psst.js');

const { sign, validate } = psst('super secret string');

// Regular string
sign('winnie');
// 'f7f697686a57ed3308f7c536c8394ee55beb3540aab58340fba104a997b921ed'

// Or JSON string
sign('{"admin":true}');
// '97076541ba62ce457ef24935d67253227c6081a230150ac468ee9b8e132d2d01'

validate('woof', 'an incorrect signature'); // false
validate(
  'winnie', 'f7f697686a57ed3308f7c536c8394ee55beb3540aab58340fba104a997b921ed'
); // true

The file is in ./exercise-2/psst.js.

To check your code, run node ./exercise-2/index.js. The correct response should be a hash and true.

HINT: There is an npm package (that gets 11 million downloads a month) that uses HMACs to sign their cookies. You should be able to get plenty of help from reading its source code. Look at how HMAC is being used. No copy pasting!

About

No description, website, or topics provided.

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages