3 Repos
Middleware components that intercept requests to verify the authenticity and validity of security tokens.
Distinct from Access Token Validators: Candidates were tools for testing tokens (validators), not the middleware that enforces validation in a request pipeline.
Explore 3 awesome GitHub repositories matching security & cryptography · Token Validation Middleware. Refine with filters or upvote what's useful.
This project is a .NET identity stack and server framework used to build certified OpenID Connect and OAuth 2.0 identity providers. It provides the core logic required to issue and validate security tokens and manage user authentication across various grant types and protocol flows. The framework includes a protocol translation layer that bridges OpenID Connect and SAML to enable interoperability between different identity providers. It also supports a stateless mode of operation, which removes built-in validation and storage to allow for manual control over token and client verification. Th
Ships security layer middleware for verifying the authenticity and validity of access tokens to protect API endpoints.
express-jwt ist eine Middleware für Express-Anwendungen, die JSON Web Tokens validiert, um Routen zu sichern und Anfragen zu authentifizieren. Sie fungiert als Sicherheitswächter, der Token-Signaturen und Ablaufdaten überprüft, bevor der Zugriff auf Backend-Endpunkte gewährt wird. Das Projekt bietet einen Request-Credential-Extractor, um Tokens aus Headern, Cookies oder Query-Parametern abzurufen. Es unterstützt dynamisches Key-Retrieval, um die erforderlichen Secrets oder öffentlichen Schlüssel zur Laufzeit basierend auf Anfrageattributen oder Token-Headern abzurufen. Die Middleware handhabt die JSON-Web-Token-Validierung, einschließlich der Behandlung von Token-Ablaufdaten und der Möglichkeit, Token-Identifikatoren gegen Sperrlisten zu prüfen, um kryptografisch gültige Tokens zu entwerten. Zudem mappt sie dekodierte Payload-Attribute aus validierten Tokens direkt auf das Request-Objekt.
Implements an Express middleware specifically for validating the authenticity and validity of JWTs.
Gizmo is a microservice development toolkit and HTTP server framework designed for building distributed services. It provides a collection of libraries for managing service lifecycles, including standardized configuration, logging, and health checks. The toolkit includes a PubSub messaging interface that abstracts the publishing and consuming of messages across different brokers and HTTP endpoints, featuring built-in mocking for integration testing. It also provides a security layer for validating inbound authentication tokens using public key signatures and custom decoders. The project cove
Implements middleware that intercepts requests to verify the authenticity and validity of security tokens.