Merge pull request #6 from timelesshaze/fix-auth-header

Add support for using the Bearer scheme in the Auth header

Author: ekryski

src/index.js

@@ -48,6 +48,7 @@ export default function init (options = {}) {
     let strategyOptions = merge({
       secretOrKey: jwtSettings.secret,
       jwtFromRequest: ExtractJwt.fromExtractors([
+        ExtractJwt.fromAuthHeaderWithScheme('Bearer'),
         ExtractJwt.fromHeader(jwtSettings.header.toLowerCase()),
         ExtractJwt.fromBodyField(jwtSettings.bodyKey)
       ])

test/index.test.js

@@ -189,6 +189,26 @@ describe('feathers-authentication-jwt', () => {
       passportJWT.Strategy.restore();
     });
 
+    describe('Bearer scheme', () => {
+      it('authenticates using the default verifier', () => {
+        const req = {
+          query: {},
+          body: {},
+          headers: {
+            authorization: `Bearer ${validToken}`
+          },
+          cookies: {}
+        };
+
+        app.configure(jwt());
+        app.setup();
+
+        return app.authenticate('jwt', { assignProperty: 'payload' })(req).then(result => {
+          expect(result.success).to.equal(true);
+        });
+      });
+    });
+
     describe('custom Verifier', () => {
       it('throws an error if a verify function is missing', () => {
         expect(() => {