JWT Token authentication is added

Author: Shreyas Nayak

.env

@@ -0,0 +1 @@
+JWT_KEY=QX2A0p84VmmLF3NYz3uHPx1hLuhT2U2K

README.md

@@ -75,4 +75,12 @@ function main(event, context, callback) {
 }
 
 main(G_EVENT_NAME,G_CONTEXT,G_CALLBACK);
-```
+```
+
+# Generate token
+Genarte the .env file 
+`JWT_KEY=MY_SECRET_KEY`
+
+`apt-get update`
+
+`apt-get install jq jw`

index.mjs

@@ -9,6 +9,11 @@ import multer from 'multer';
 import axios from 'axios';
 import swaggerUi from 'swagger-ui-express';
 import { v4 as uuidv4 } from 'uuid';
+import dotenv from 'dotenv';
+import jwt from 'jsonwebtoken';
+
+dotenv.config();
+
 
 /* Utility to get __dirname in ES modules */
 const __filename = fileURLToPath(import.meta.url);
@@ -36,6 +41,33 @@ const openApiFilePath = path.join(__dirname, 'openapi.json');
 const openApiDocument = JSON.parse(fs.readFileSync(openApiFilePath, 'utf8'));
 app.use('/api-docs', swaggerUi.serve, swaggerUi.setup(openApiDocument));
 
+
+/* Security Middleware */
+const authenticateToken = (req, res, next) => {
+    const authHeader = req.headers['authorization'];
+    const token = authHeader && authHeader.split(' ')[1];
+    if (!token) return res.status(401).json({
+        "status": "ERROR",
+        "code": 401,
+        "message": "Unauthorized access",
+        "payload": {}
+    });
+
+    jwt.verify(token, process.env.JWT_KEY, (err, decoded) => {
+      if (err || (decoded.expire_at == undefined || decoded.issued_at == undefined || decoded.issuer == undefined || decoded.namespace == undefined)) {
+        return res.status(401).json({
+          "status": "ERROR",
+          "code": 401,
+          "message": "Unauthorized access",
+          "payload": {}
+        });
+      }
+      req.decoded = decoded;
+      next();
+    });
+  };
+
+  
 app.get('/server/health', (req, res) => {
     res.status(200).send('OK');
 });
@@ -44,29 +76,32 @@ app.head('/server/health', (req, res) => {
     res.status(200).send();
 });
 
-app.get('/function/list', (req, res) => {
-    fs.readdir('functions', (err, files) => {
+app.get('/function/list', authenticateToken, (req, res) => {
+    fs.readdir(`functions/${req.decoded.namespace}`, (err, files) => {
         if (err) {
             return res.status(500).json({
                 "status": "ERROR",
                 "code": 500,
-                "message": err.message,
+                "message": "Namespace does not exist, create function before listing",
                 "payload": {}
             });
         }
 
+        // Remove extensions from filenames
+        const fileNamesWithoutExtension = files.map(file => path.basename(file, path.extname(file)));
+
         res.status(200).json({
             "status": "OK",
             "code": 200,
             "message": "",
             "payload": {
-                "functions": files
+                "function_ids": fileNamesWithoutExtension
             }
         });
     });
 });
 
-app.post('/function/create', upload.single('file'), (req, res) => {
+app.post('/function/create', authenticateToken, upload.single('file'), (req, res) => {
     if (!req.file) {
         return res.status(400).json({
             "status": "ERROR",
@@ -79,7 +114,16 @@ app.post('/function/create', upload.single('file'), (req, res) => {
     const file = req.file;
     const file_id = generateAlphanumericName(25);
     const file_name = `${file_id}.mjs`;
-    fs.renameSync(file.path, `functions/${file_name}`);
+    const directory = `functions/${req.decoded.namespace}`;
+    
+    // Ensure the directory exists
+    if (!fs.existsSync(directory)) {
+        fs.mkdirSync(directory, { recursive: true });
+    }
+
+    // Rename the uploaded file and move it to the correct directory
+    fs.renameSync(file.path, path.join(directory, file_name));
+    
     res.status(200).json({
         "status": "OK",
         "code": 200,
@@ -90,16 +134,16 @@ app.post('/function/create', upload.single('file'), (req, res) => {
     });
 });
 
-app.delete('/function/:function_id', (req, res) => {
+app.delete('/function/:function_id', authenticateToken, (req, res) => {
     const function_id = req.params.function_id;
     const file_name = `${function_id}.mjs`;
 
-    fs.unlink(`functions/${file_name}`, (err) => {
+    fs.unlink(`functions/${req.decoded.namespace}/${file_name}`, (err) => {
         if (err) {
             return res.status(500).json({
                 "status": "ERROR",
                 "code": 500,
-                "message": err.message,
+                "message": "Failed to delete function",
                 "payload": {}
             });
         }
@@ -113,16 +157,16 @@ app.delete('/function/:function_id', (req, res) => {
     });
 });
 
-app.post('/function/execute/:function_id', async (req, res) => {
+app.post('/function/execute/:function_id', authenticateToken, async (req, res) => {
     await new Promise((resolve, reject) => {
         if (!req.body || Object.keys(req.body).length === 0) {
             reject(new Error("Request body is empty or not valid JSON"));
             return;
         }
         const function_id = req.params.function_id;
-        fs.readFile(`functions/${function_id}.mjs`, 'utf8', (err, code) => {
+        fs.readFile(`functions/${req.decoded.namespace}/${function_id}.mjs`, 'utf8', (err, code) => {
             if (err) {
-                reject(new Error(err.message));
+                reject(new Error("Function does not exist"));
                 return;
             }
             const { event_name, event_data } = req.body;

jwt_token_stuct.json

@@ -0,0 +1,6 @@
+{
+    "expire_at": "1735713720",
+    "issued_at": "1721994397",
+    "issuer": "shreyas",
+    "namespace": "neo"
+}

openapi.json

@@ -2,9 +2,23 @@
     "openapi": "3.0.0",
     "info": {
       "title": "NodeJS-FAAS",
-      "description": "This project aims to achieve something similar to Function as a Service (FaaS) without the overhead of Docker or Kubernetes, with extremely low infrastructure requirements.",
+      "description": "This project aims to achieve something similar to Function as a Service (FaaS) without the overhead of Docker or Kubernetes, with extremely low infrastructure requirements. \n Github repository link : [Click Here](https://github.com/shreyasnayak/nodejs-faas)",
       "version": "1.0.0"
     },
+    "components": {
+      "securitySchemes": {
+        "BearerAuth": {
+          "type": "http",
+          "scheme": "bearer",
+          "bearerFormat": "JWT"
+        }
+      }
+    },
+    "security": [
+      {
+        "BearerAuth": []
+      }
+    ],  
     "paths": {
       "/server/health": {
         "get": {
@@ -73,7 +87,7 @@
                       "code": 200,
                       "message": "",
                       "payload": {
-                        "functions": ["VmgtJbe8I2.mjs", "nmgtkbe8I2.mjs"]
+                        "function_ids": ["VmgtJbe8I2", "nmgtkbe8I2"]
                       }
                     }
                   }

package-lock.json

@@ -12,7 +12,9 @@
     "axios": "^1.6.8",
     "body-parser": "^1.20.2",
     "cors": "^2.8.5",
+    "dotenv": "^16.4.5",
     "express": "^4.19.2",
+    "jsonwebtoken": "^9.0.2",
     "multer": "^1.4.5-lts.1",
     "swagger-ui-express": "^5.0.1",
     "uuid": "^9.0.1"

package.json

@@ -0,0 +1,21 @@
+const axios = require('axios');
+
+function main(event, context, callback) {
+    if(event=="get_nasa_image") {
+        const { key } = context;
+        axios.get(`https://api.nasa.gov/planetary/apod?api_key=${key}`)
+        .then(response => {
+            if(callback) callback({
+                explanation: response.data.explanation
+            });
+        })
+        .catch(error => {
+            if(callback) callback({
+                error: error.message
+            });
+        });   
+    }
+}
+
+
+main(G_EVENT_NAME,G_CONTEXT,G_CALLBACK);