jwt now an env variable instead of hard-coded

a1ba253d · Matt Kirby · 4567d19a · a1ba253d · a1ba253d · a1ba253d
Commit a1ba253d authored 1 year ago by Matt Kirby
--- a/backend-services/comment-service-2/src/Middleware/Auth.ts
+++ b/backend-services/comment-service-2/src/Middleware/Auth.ts
@@ -2,7 +2,7 @@ import jwt, { Secret, JwtPayload } from 'jsonwebtoken';
 import { Request, Response, NextFunction } from 'express';
 import Config from '../../config'
-export const SECRET_KEY: Secret = Config.JWT_SECRET;
+export const SECRET_KEY: Secret = process.env.JWT_PRIVATE_KEY || "";
 export interface CustomJWTRequest extends Request {
 token?: string | JwtPayload | TokenData;

--- a/backend-services/friend-service/src/Middleware/Auth.ts
+++ b/backend-services/friend-service/src/Middleware/Auth.ts
@@ -2,7 +2,7 @@ import jwt, { Secret, JwtPayload } from 'jsonwebtoken';
 import { Request, Response, NextFunction } from 'express';
 import Config from '../../config'
-export const SECRET_KEY: Secret = Config.JWT_SECRET;
+export const SECRET_KEY: Secret = process.env.JWT_PRIVATE_KEY || "" ;
 export interface CustomJWTRequest extends Request {
 token?: string | JwtPayload | TokenData;

--- a/backend-services/user-service/middleware/auth.js
+++ b/backend-services/user-service/middleware/auth.js
@@ -6,7 +6,7 @@ export default async function Auth(req, res, next){
        const token = req.headers.authorization.split(" ")[1];
-        const decodedToken = await jwt.verify(token, ENV.JWT_SECRET);
+        const decodedToken = await jwt.verify(token, process.env.JWT_PRIVATE_KEY);
        req.user = decodedToken;
        next();

--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -31,6 +31,7 @@ services:
      - "9000"
    environment:
      - MONGO_URI=mongodb://user-mongo:27017/userdb
+      - JWT_PRIVATE_KEY=yB/uX5KdyjHN9P34IE49HxAcrlQ4gfvpVJEzGbo5E/I=
      - ENABLE_USER_DB_SEEDING=true
  friend-service:
@@ -44,6 +45,7 @@ services:
      - MONGO_HOST=friend-mongo
      - MONGO_PORT=27017
      - MONGO_DBNAME=friends
+      - JWT_PRIVATE_KEY=yB/uX5KdyjHN9P34IE49HxAcrlQ4gfvpVJEzGbo5E/I=
  comment-service:
    build:
@@ -56,6 +58,7 @@ services:
      - MONGO_HOST=comment-mongo
      - MONGO_PORT=27017
      - MONGO_DBNAME=comments
+      - JWT_PRIVATE_KEY=yB/uX5KdyjHN9P34IE49HxAcrlQ4gfvpVJEzGbo5E/I=
  frontend-service:
    build: