Skip to contents

Guard a request, aborting with 401 unless it carries a valid token

Source: R/auth.R
aurora_jwt_guard.Rd

Reads the scheme's cookie from request, verifies it, and – if invalid or absent – stops handling with a 401 Unauthorized via reqres::abort_unauthorized(). On success it returns the payload invisibly. Use it inside a @header handler on /api/*, returning plumber2::Next to continue:

Usage

aurora_jwt_guard(auth, request)

Arguments

auth

An aurora_auth_jwt() scheme.

request

The reqres request object (the request handler argument).

Value

The decoded payload, invisibly (or aborts).

Details

#* @any /api/*
#* @header
function(request) {
  aurora_jwt_guard(auth, request)
  plumber2::Next
}