In NestJS and passport, how do I create an endpoint that accepts a valid or invalid JWT?

Question

In NestJS and passport, how do I create an endpoint that accepts a valid or invalid JWT?

35 views Asked by Dave At 17 November 2023 at 14:56

I'm using NestJS 10 with passport-jwt. I have a controller method in which the user can access whether or not they include a valid JWT in the Authorization header. If they include a JWT, I would like to know who the user is

  @UseGuards(OptionalAccessTokenGuard)
  @Post('paymentIntent')
  createPaymentIntent(
    @Req() req: Request,
    @Body() createOrderDto: CreateOrderDto,
  ): Promise<PaymentIntent> {
    const userId = req?.user['sub'];
    return this.ordersService.createPaymentIntent(userId, createOrderDto);
  }

The guard I have is defined as such

@Injectable()
export class OptionalAccessTokenGuard extends AuthGuard('jwt') {
  async canActivate(context: ExecutionContext) {
    await super.canActivate(context);
    return true;
  }
}

THe problem is, if the user submits an invalid JWT (it has expired or there is some other problem), this method returns a 401. How can I adjust the guard or method such that submitting an invalid or expired JWT will still allow the method to proceed, only that the user ID is not obtained?

Original Q&A

There are 1 answers

**Jay McDoniel** · Accepted Answer · 2023-11-17 17:37:12

Jay McDoniel On 17 November 2023 at 17:37 BEST ANSWER

Add a try/catch around the super.canActivate, so that if it throws an error it can still return true

TechQA.

In NestJS and passport, how do I create an endpoint that accepts a valid or invalid JWT?

There are 1 answers

Related Questions in JWT

Related Questions in CONTROLLER

Related Questions in NESTJS

Related Questions in PASSPORT-JWT

Popular Questions

Popular Tags

Trending Questions