Add JWT auth

api/src/auth/AuthenticationModule.kt

@@ -0,0 +1,21 @@
+package be.vandewalleh.auth
+
+import be.vandewalleh.kodein
+import io.ktor.application.Application
+import io.ktor.application.install
+import io.ktor.auth.Authentication
+import io.ktor.auth.UserIdPrincipal
+import io.ktor.auth.jwt.jwt
+import org.kodein.di.generic.instance
+
+fun Application.authenticationModule() {
+    install(Authentication) {
+        jwt {
+            val simpleJwt: SimpleJWT by kodein.instance()
+            verifier(simpleJwt.verifier)
+            validate {
+                UserIdPrincipal(it.payload.getClaim("name").asString())
+            }
+        }
+    }
+}

api/src/auth/SimpleJWT.kt

@@ -0,0 +1,19 @@
+package be.vandewalleh.auth
+
+import com.auth0.jwt.JWT
+import com.auth0.jwt.JWTVerifier
+import com.auth0.jwt.algorithms.Algorithm
+import java.util.*
+
+class SimpleJWT(secret: String) {
+    private val validityInMs = 36_000_00 * 1
+    private val algorithm = Algorithm.HMAC256(secret)
+
+    val verifier: JWTVerifier = JWT.require(algorithm).build()
+    fun sign(name: String): String = JWT.create()
+        .withClaim("name", name)
+        .withExpiresAt(getExpiration())
+        .sign(algorithm)
+
+    private fun getExpiration() = Date(System.currentTimeMillis() + validityInMs)
+}

api/src/features/ConfigurationFeature.kt

@@ -1,5 +1,6 @@
 package be.vandewalleh.features
 
+import be.vandewalleh.auth.SimpleJWT
 import io.ktor.application.Application
 import org.kodein.di.Kodein
 import org.kodein.di.generic.bind
@@ -27,7 +28,11 @@ fun Application.configurationFeature() {
             setPassword(password)
         }
     }
+
+    val simpleJwt = SimpleJWT(environment.config.property("jwt.secret").getString())
+
     configurationModule = Kodein.Module("Configuration") {
         bind<DataSource>() with instance(dataSource)
+        bind<SimpleJWT>() with instance(simpleJwt)
     }
 }

api/src/features/Features.kt

@@ -1,14 +1,18 @@
 package be.vandewalleh.features
 
+import be.vandewalleh.auth.authenticationModule
 import io.ktor.application.Application
 import org.kodein.di.Kodein
 import org.kodein.di.KodeinAware
 
 fun Application.features() {
+    // must be first to be loaded
+    configurationFeature()
+
     locationFeature()
     corsFeature()
     contentNegotiationFeature()
-    configurationFeature()
+    authenticationModule()
 }
 
 abstract class Feature(override val kodein: Kodein) : KodeinAware {