· 7 years ago · Nov 17, 2018, 07:28 AM
1const jwt = require("jsonwebtoken");
2
3module.exports = function(req, res, next) {
4 if (!req.headers.authorization) {
5 return res.status(401).json({ message: "Unauthorized User" });
6 }
7
8 let token = req.headers.authorization.split(" ")[1];
9 if (token === "null") {
10 return res.status(401).json({ message: "Unauthorized User" });
11 }
12
13 let decoded = jwt.verify(token, "secretKey");
14 if (!decoded) {
15 return res.status(401).json({ message: "Unauthorized User" });
16 }
17 req.user = decoded.subject;
18 next();
19};