Hugging Face's logo

Spaces:
jbilcke-hf
/
ai-tube
Running on CPU Upgrade

App Files Community
9
ai-tube / src /app /api /auth /getToken.ts
jbilcke-hf's picture
jbilcke-hf HF staff
Modifying AiTube to support Stories Factory use cases
6215321
raw
history blame
No virus
789 Bytes
import { createSecretKey } from "crypto"
import { SignJWT } from "jose"
// https://jmswrnr.com/blog/protecting-next-js-api-routes-query-parameters
export async function getToken(data: Record<string, any> = {}): Promise<string> {
const secretKey = createSecretKey(`${process.env.API_SECRET_JWT_KEY || ""}`, 'utf-8');
const jwtToken = await new SignJWT(data)
.setProtectedHeader({
alg: 'HS256'
}) // algorithm
.setIssuedAt()
.setIssuer(`${process.env.API_SECRET_JWT_ISSUER || ""}`) // issuer
.setAudience(`${process.env.API_SECRET_JWT_AUDIENCE || ""}`) // audience
.setExpirationTime("1 day") // token expiration time - to prevent hackers from re-using our URLs more than a day
.sign(secretKey); // secretKey generated from previous step
return jwtToken
}