npm - @ahhaohho/auth-middleware - Versions diffs - 1.0.6 → 1.0.7 - Mend

@ahhaohho/auth-middleware 1.0.6 → 1.0.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md +1 -1
package/package.json +1 -1
package/src/strategies/jwt.strategy.js +20 -1

package/README.md CHANGED Viewed

@@ -1,4 +1,4 @@
-# @ahhaohho/auth-middleware
+ㅈ# @ahhaohho/auth-middleware
 Shared authentication middleware with Passport.js for ahhaohho microservices.

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@ahhaohho/auth-middleware",
-  "version": "1.0.6",
+  "version": "1.0.7",
   "description": "Shared authentication middleware with Passport.js for ahhaohho microservices",
   "main": "src/index.js",
   "scripts": {

package/src/strategies/jwt.strategy.js CHANGED Viewed

@@ -65,9 +65,23 @@ function createJwtStrategy() {
                 '[@ahhaohho/auth-middleware] ⚠️ Token verified with previous key (fallback)'
               );
             } catch (previousKeyError) {
+              // 🚨 임시: invalid signature도 허용 (다음 앱 배포 전까지)
+              if (currentKeyError.message.includes('invalid signature') || currentKeyError.message.includes('jwt malformed')) {
+                console.warn('[@ahhaohho/auth-middleware] ⚠️ [TEMPORARY] Allowing invalid signature');
+                request._jwtDecoded = { userId: 'unknown', userRole: 'guest' };
+                request._jwtKeyUsed = 'bypassed';
+                return done(null, keys.current);
+              }
               return done(currentKeyError, false);
             }
           } else {
+            // 🚨 임시: invalid signature도 허용 (다음 앱 배포 전까지)
+            if (currentKeyError.message.includes('invalid signature') || currentKeyError.message.includes('jwt malformed')) {
+              console.warn('[@ahhaohho/auth-middleware] ⚠️ [TEMPORARY] Allowing invalid signature');
+              request._jwtDecoded = { userId: 'unknown', userRole: 'guest' };
+              request._jwtKeyUsed = 'bypassed';
+              return done(null, keys.current);
+            }
             return done(currentKeyError, false);
           }
         }
@@ -108,10 +122,15 @@ function createJwtStrategy() {
       );
       // req.user에 주입할 사용자 정보 반환
+      // FLC 토큰 지원: email, name, loginMethod 추가
       const user = {
         userId: decoded.userId,
         userRole: decoded.userRole,
-        phoneNumber: decoded.phoneNumber
+        phoneNumber: decoded.phoneNumber,
+        email: decoded.email,
+        name: decoded.name,
+        loginMethod: decoded.loginMethod,
+        imwebId: decoded.imwebId
       };
       return done(null, user);