aim_server_jwt 0.0.1 copy "aim_server_jwt: ^0.0.1" to clipboard
aim_server_jwt: ^0.0.1 copied to clipboard

Published 20 days agoverified publisheraim-dart.dev
SDKDartFlutter
PlatformAndroidiOSLinuxmacOSWindows

Metadata

JWT authentication middleware for Aim framework. Provides stateless authentication with HS256 support, standard claims validation, and Bearer token verification.

More...

0.0.1 #

Initial release - JWT authentication middleware for Aim framework

Features #

  • JWT authentication middleware: Automatic Bearer token validation
  • Token generation: Create JWT tokens with standard and custom claims
  • HMAC-SHA256 (HS256): Secure token signing with minimum 32-character secrets
  • Standard claims support: Full support for iss, sub, aud, exp, iat, nbf claims
  • Automatic validation: Signature verification, expiration, and claim validation
  • Path exclusion: Skip authentication for specific routes (e.g., /login, /public)
  • Type-safe design: Sealed class architecture with compile-time safety
  • Custom exception: JwtException for clear error handling
  • Context integration: JWT payload accessible via c.variables.jwtPayload

Supported Algorithms #

  • HS256 (HMAC-SHA256) - Symmetric key algorithm
  • 🔜 RS256 (RSA-SHA256) - Coming soon
  • 🔜 ES256 (ECDSA-SHA256) - Coming soon

Examples #

import 'dart:io';
import 'package:aim_server/aim_server.dart';
import 'package:aim_server_jwt/aim_server_jwt.dart';

void main() {
  final app = Aim<JwtEnv>(
    envFactory: () => JwtEnv.create(
      JwtOptions(
        algorithm: HS256(
          secretKey: SecretKey(secret: 'your-secret-key-at-least-32-chars'),
        ),
        excludedPaths: ['/login'],
      ),
    ),
  );

  // Apply JWT middleware
  app.use(jwt());

  // Login endpoint
  app.post('/login', (c) async {
    final jwt = Jwt(options: c.variables.jwtOptions);
    final token = jwt.sign({'user_id': 1, 'role': 'admin'});
    return c.json({'token': token});
  });

  // Protected endpoint
  app.get('/profile', (c) async {
    final payload = c.variables.jwtPayload;
    return c.json({
      'user_id': payload['user_id'],
      'role': payload['role'],
    });
  });

  app.serve(host: InternetAddress.anyIPv4, port: 8080);
}

Security #

  • Enforces RFC 7518 minimum secret length (32 characters for HS256)
  • Automatic token expiration validation
  • Signature verification on every request
  • Bearer token format validation
  • Standard JWT claims validation (iss, aud, exp, nbf)

Metadata

1
likes
160
points
158
downloads

Publisher

verified publisheraim-dart.dev

Weekly Downloads

Metadata

JWT authentication middleware for Aim framework. Provides stateless authentication with HS256 support, standard claims validation, and Bearer token verification.

Repository (GitHub)
View/report issues

Documentation

API reference

License

MIT (license)

Dependencies

aim_server, crypto

More

Packages that depend on aim_server_jwt

Back