Add EUA to keep gateway clean #40

nithindv · 2021-06-15T10:15:03Z

EUA to assist EkSaath / Stepone integrate with Gateway

Auth middleware - Validate JWT - ensure signature valid, and not expired - ref,

Line 14 in b6d1956

verify(type: string, token: string) {

Line 8 in b6d1956

    
           export const isAuthenticated = (req: Request, res: Response, next: NextFunction) => {

In /search/service,
- Forward the received token as is to the gateway
- Authenticate with the gateway via username password and login
In on_update/service
- Validate the received authToken via configured JKS public key; allowed auth methods are RSA256, ex jwt.verify(token, publickey, { algorithms: ["RSA256"] });

v1/on_update/service - Log request and respond with 200 for now
v1/search/service - Construct gateway URL from env var and move logic from gateway middleware - ref, https://github.com/Swasth-Digital-Health-Foundation/C19CareAssist/blob/feature/middleware-for-search-api/gateway/src/middleware/doctorConfirmation.ts

The text was updated successfully, but these errors were encountered:

nithindv added the enhancement New feature or request label Jun 15, 2021

nithindv assigned ghost Jun 15, 2021