$30 off During Our Annual Pro Sale. View Details »

NestJS + Passport と Firebase Auth で宣言的な JWT 認証を実装する / NestJS Meetup Tokyo #1

ci7lus
November 29, 2019
Programming
5
5k

NestJS + Passport と Firebase Auth で宣言的な JWT 認証を実装する / NestJS Meetup Tokyo #1

「NestJS meetup Tokyo #1 @ Eureka ( https://nest-jp.connpass.com/event/152260/ )」で話した、「NestJS + Passport と Firebase Auth で宣言的な JWT 認証を実装する」のスライドです。

ci7lus

November 29, 2019
Tweet

Other Decks in Programming

See All in Programming
The Road to 100% test coverage
ruyadorno
2
280
kube-proxy入門
bells17
7
880
壓力測試大冒險:解鎖應用程式的隱藏性能之謎
marcustung
0
140
SONY NEWS NetBSD移植作業とNWS-3260展示 / KOF2023
tsutsui
0
440
Git 和 DevOps - 在混亂的流星群開發流程中找到小確幸
eddie
1
860
LLMを使ったアプリケーション開発の基本とLangChain超入門
os1ma
16
6.1k
JavaScript なしで動作するモダンなコードの書き方
azukiazusa1
14
8.9k
OpenTelemetry の Trace を中心としたパフォーマンス改善
rmatsuoka
0
410
動くコードを書こう / let's code a process
kishida
20
6k
Cloudflare Workers は楽しい!
codehex
7
2.1k
LINEログインのログインフローを理解して使う
minako__ph
0
160
Angular 17 - Rainaissance
gregonnet
0
130

Featured

See All Featured
StorybookのUI Testing Handbookを読んだ
zakiyama
9
4.1k
Docker and Python
trallard
31
2.4k
The Brand Is Dead. Long Live the Brand.
mthomps
48
6k
BBQ
matthewcrist
76
8.5k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
39
4k
The Mythical Team-Month
searls
214
41k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
24
2k
[Rails World 2023 - Day 1 Closing Keynote] - The Magic of Rails
eileencodes
1
870
How to train your dragon (web standard)
notwaldorf
71
4.8k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
0
1k
GraphQLとの向き合い方2022年版
quramy
26
12k
ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design
dotmariusz
101
6.4k

Transcript

  1. NestJS + Passport ͱ Firebase Auth Ͱ
    એݴతͳ JWT ೝূΛ࣮૷͢Δ
    2019.11.29 #nestjs_meetup ͠ʔͳΔ͢(@ci7lus)

    View Slide

  2. ͠ʔͳΔ͢
    (@ci7lus)
    • Organizations
    • An Engineer at ElevenBack LLC.
    • I like
    • TypeScript, Python, Front/Back-End, Server-less, Database
    • Works
    • Candy by ElevenBack LLC. - ϑϦʔϥϯεɾύϥϨϧϫʔΧʔͷͨΊͷ
    ؾʹ͠ͳ͍ձܭ؅ཧΫϥ΢υ(https://candy.ac) ։ൃ

    View Slide

  3. Topics
    1. NestJS ʹ͓͚ΔೝূɾೝՄʹ͍ͭͯ
    2. Firebase Auth Λ૊Έ͜ΜͰΈΔ
    3. خ͍͠఺
    4. ·ͱΊ

    View Slide

  4. Topics
    1. NestJS ʹ͓͚ΔೝূɾೝՄʹ͍ͭͯ
    2. Firebase Auth Λ૊Έ͜ΜͰΈΔ
    3. خ͍͠఺
    4. ·ͱΊ

    View Slide

  5. ΞϓϦέʔγϣϯʹ͓͚Δೝূ
    • Ϣʔβʔ৘ใΛ࣋ͭ Web ΞϓϦέʔγϣϯʹ͓͍ͯɺೝূ৘ใͷ
    ؅ཧ͸ආ͚ΒΕͳ͍
    • ʮೝূ৘ใ͕౉͖͍ͬͯͯΔ͔ʯʮਖ਼͍͠Ϣʔβʔ৘ใ͔ʯ͸
    ҰՕॴʹूதͯ͠؅ཧ͍ͨ͠

    View Slide

  6. NestJS ʹ͓͚ΔೝূɾೝՄ
    • Guards ͱ͍͏ػೳΛ࢖࣮ͬͯ૷͢Δ
    • https://docs.nestjs.com/guards
    • σίϨʔλΛ༻͍ͯએݴతʹΤϯυϙΠϯτΛम০
    • 2 छྨͷ Guards ͕ଘࡏ͢Δ
    • ಛఆͷΤϯυϙΠϯτʹରͯ͠ෳ਺ͷ Guards ΛࢦఆͰ͖Δ
    • ༏ઌॱҐΛઃఆͰ͖Δ

    View Slide

  7. 2छྨͷ Guards: CanActivate
    • https://docs.nestjs.com/guards Ͱղઆ͞Ε͍ͯΔ Guards
    • ࣮ߦ࣌ͷঢ়ଶ͔ΒೝՄΛ൑அ
    • ೝՄΛ Boolean Ͱฦ٫
    • ΤϯυϙΠϯτʹର͠ೝՄʹඞཁͳϝλσʔλΛ௥Ճ͠ɺͦΕΒΛ
    ಡΈऔΔ͜ͱ΋Ͱ͖Δ
    • ೝՄର৅ͷϩʔϧͳͲ

    View Slide

  8. 2छྨͷ Guards: AuthGuard
    • https://docs.nestjs.com/techniques/authentication
    Ͱղઆ͞Ε͍ͯΔ Guards
    • Passport ͷ Strategy Λ༻͍ͯೝՄΛ൑அ
    • ೝՄΛ Boolean / Object Ͱฦ٫
    • طଘͷ Strategy Λར༻͢Δ͜ͱ͕Ͱ͖Δ
    • ར༻͍ͯ͠Δೝূػߏ޲͚ʹ Strategy ͕ఏڙ͞Ε͍ͯΔ৔߹ɺ
    ಋೖ͕༰қ

    View Slide

  9. 2छྨͷ Guards ͷൺֱ
    • CanActivate
    • ݁Ռͷฦ٫͸ Boolean
    • ৘ใͷ࠶ར༻͸Ͱ͖ͳ͍
    • AuthGuard
    • ݁Ռͷฦ٫͸ Object / Boolean
    • ϦΫΤετ಺Ͱฦ٫ͨ͠ΦϒδΣΫτͷ࠶ར༻͕Մೳ
    • Ϣʔβʔೝূ͸͜ΕΛ༻͍Δͷ͕ϕλʔ

    View Slide

  10. Topics
    1. NestJS ʹ͓͚ΔೝূɾೝՄʹ͍ͭͯ
    2. Firebase Auth Λ૊Έ͜ΜͰΈΔ
    3. خ͍͠఺
    4. ·ͱΊ

    View Slide

  11. Firebase Auth Λ༻͍ͨೝূ
    • NestJS ͸ Passport ͷ Strategy Λ༻͍ͯೝূ͕Ͱ͖Δ
    ʢ@nestjs/passportʣ
    • Firebase Auth ͷ Passport Strategy Λ༻͍Δ͜ͱ͕Ͱ͖Δʁ
    • ͋Γͦ͏ɺ୳ͯ͠ΈΑ͏
    • https://www.npmjs.com/package/passport-firebase-auth
    • “0.0.0-beta.1 / Published 3 years ago”
    • ͩΊͦ͏…

    View Slide

  12. Firebase Auth Λ༻͍ͨೝূ
    • https://docs.nestjs.com/techniques/authentication ʹ͋ΔΑ͏ʹɺ
    passport-local Λ༻͍ͯ validate ಺ͰೝূΛ࣮ߦͰ͖ͳ͍͔ʁ
    • Ҿ਺ͱͯ͠ड͚औΕΔ৘ใ͕ඇৗʹ੍ݶ͞Ε͍ͯΔ
    • Username / Password ͷΈ
    • ೝূʹඞཁͳ৘ใΛऔಘͰ͖ͳ͍

    View Slide

  13. Firebase Auth Λ༻͍ͨೝূ
    • ͡Ό͋Ͳ͏͢Δ͔
    • passport-custom ͱ͍͏ϑϧΧελϜՄೳͳ Strategy ͕ଘࡏ͢Δ
    • Ҿ਺ͱͯ͠ϦΫΤετͷ৘ใΛ͢΂ͯड͚औΔ͜ͱ͕Ͱ͖Δ
    • Authorization ϔομʔͷ JWT ΋ݟΒΕΔʂ
    • ͜ΕΛ֦ுͯ͠ @nestjs/passport ͱ࿈ܞͤ͞Δ

    View Slide

  14. ࣮૷ͷצॴ
    • https://docs.nestjs.com/techniques/authentication ͷ
    “auth/local.strategy.ts“ Λࢀߟʹ Strategy Λ֦ு͍ͯ͘͠
    • constructor ͷ super() ʹ౉ͨ͠஋͕ຊདྷͷ Strategy ͷୈ1Ҿ਺ʹ౉
    ͞ΕΔ
    • Strategy ʹରͯ͠ΦϓγϣϯΛ౉͢৔߹͸͜͜Ͱ౉ͤ͹ྑ͍
    • ͜ΕΛলུ͢Δͱୈ1Ҿ਺͔Βͦͷ·· validate ʹ౉Δ
    • Strategy ͷίʔϧόοΫ͸֦ுଆͰΑ͠ͳʹͯ͘͠ΕΔ

    View Slide

  15. ࣮૷ͷצॴ
    • ·ͨɺStrategy ໊͸ࣗ༝ʹมߋ͕Մೳ
    • σϑΥϧτͩͱ “custom”
    • PassportStrategy ͷୈ2Ҿ਺ʹ string Λ౉ͤΔ
    • Θ͔Γ΍͘͢ “firebase” ͳͲʹ͓ͯ͘͠ͱྑ͍
    • PassportStrategy(Strategy, ‘firebase’)
    • ݺͼग़͢ͱ͖͸ @UseGuards(AuthGuard(‘strategyName’))

    View Slide

  16. ࣮૷
    @Injectable()
    export class FirebaseStrategy extends PassportStrategy(Strategy, 'firebase') {
    constructor() {
    super();
    }
    async validate(req: Request) {
    const token = req.headers.authorization;
    if (!token) return false;
    const parsedToken = bearerRegex.exec(token);
    if (!parsedToken) return false;
    try {
    return await auth.verifyIdToken(parsedToken[1]);
    } catch (error) {
    return false;
    }
    }
    }

    View Slide

  17. Topics
    1. NestJS ʹ͓͚ΔೝূɾೝՄʹ͍ͭͯ
    2. Firebase Auth Λ૊Έ͜ΜͰΈΔ
    3. خ͍͠఺
    4. ·ͱΊ

    View Slide

  18. خ͍͠఺
    • ೝূɾೝՄΛൺֱత؆୯ʹಋೖ͢Δ͜ͱ͕Ͱ͖Δ
    • AuthGuard ͕ Passport ͷ֦ுϞδϡʔϧͱͯ͠༻ҙ͞Ε͍ͯΔ
    • ϝϯςφϯε͞Ε͍ͯΔ Strategy ͕طଘ͍ͯ͠Ε͹ΑΓ؆୯
    • ϩʔϧͳͲඞཁʹͳΓ΍͍͢ػೳ΋৫ΓࠐΈࡁΈ
    • σίϨʔλϕʔεͰอޢ͕࣮ࢪͰ͖ΔͷͰָ

    View Slide

  19. خ͍͠఺
    • ΤϯυϙΠϯτͰೝূ৘ใΛ༻͍Δ͜ͱ͕Ͱ͖Δ
    • req.user ʹ UserRecord ͕୅ೖ͞ΕΔ
    • UserRecord ܕΛ෇͚ͯݺͼग़͢ͱศར
    • Strategy ಺Ͱ͸खʹೖͬͨϢʔβ৘ใΛ༻͍ͯԿΛฦͯ͠΋͍͍
    • Firestore ಺ͷϢʔβʔ৘ใͱ݁߹ͯ͠ฦ͢ͱͦͷ··࢖͑Δ
    • Ϣʔβʔ৘ใΛѻ͏ Util Λผ్ఆٛͯ͠ฦͯ͠΋Α͍

    View Slide

  20. Topics
    1. NestJS ʹ͓͚ΔೝূɾೝՄʹ͍ͭͯ
    2. Firebase Auth Λ૊Έ͜ΜͰΈΔ
    3. خ͍͠఺
    4. ·ͱΊ

    View Slide

  21. ·ͱΊ
    • Express ͳͲͰ͸ϛυϧ΢ΣΞͱͯ͠Ұॹͨ͘ʹѻΘΕΔอޢػߏΛ
    ଞϛυϧ΢ΣΞͱ໌ࣔతʹผͷ΋ͷͱͯ͠ѻ͏͜ͱͰɺ࣮૷ͷ༰қ͞
    Λ࣮ݱ͍ͯ͠Δ
    • ಋೖʹ͓͍ͯ͸2ͭͷ Guards ֓೦ͷཧղʹ࣌ؒΛཁͨͨ͠Ίɺ
    ͦͷ఺ʹؔͯ͠೦ೖΓʹղઆͨ͠ʢͭ΋Γʣ
    • ৭ʑศརʂ

    View Slide

  22. ͓ΘΓ

    View Slide