Middleware jwt

Enable jwt interceptor/middleware for the server.


go get github.com/rookie-ninja/rk-boot
go get github.com/rookie-ninja/rk-echo

General options

These are general options to start an echo server with rk-boot

name description type default value
echo.name The name of echo server string N/A
echo.port The port of echo server integer nil, server won’t start
echo.enabled Enable echo entry bool false
echo.description Description of echo entry. string ""

JWT options

In order to make swagger UI and RK tv work under JWT without JWT token, we need to ignore prefixes of paths as bellow.

   - "/rk/v1/tv"
   - "/sw"
   - "/rk/v1/assets"
name description type default value
echo.interceptors.jwt.enabled Enable JWT interceptor boolean false
echo.interceptors.jwt.signingKey Required, Provide signing key. string ""
echo.interceptors.jwt.ignorePrefix Provide ignoring path prefix. []string []
echo.interceptors.jwt.signingKeys Provide signing keys as scheme of :. []string []
echo.interceptors.jwt.signingAlgo Provide signing algorithm. string HS256
echo.interceptors.jwt.tokenLookup Provide token lookup scheme, please see bellow description. string “header:Authorization”
echo.interceptors.jwt.authScheme Provide auth scheme. string Bearer

The supported scheme of tokenLookup

// Optional. Default value "header:Authorization".
// Possible values:
// - "header:<name>"
// - "query:<name>"
// - "param:<name>"
// - "cookie:<name>"
// - "form:<name>"
// Multiply sources example:
// - "header: Authorization,cookie: myowncookie"

Quick start

1.Create boot.yaml

  - name: greeter                     # Required
    port: 8080                        # Required
    enabled: true                     # Required
      enabled: true                   # Optional, default: false
        enabled: true                 # Optional, default: false
        signingKey: "my-secret"       # Required

2.Create main.go

// Copyright (c) 2021 rookie-ninja
// Use of this source code is governed by an Apache-style
// license that can be found in the LICENSE file.
package rkdemo

import (
    _ "github.com/rookie-ninja/rk-echo/boot"

// Application entrance.
func main() {
	// Create a new boot instance.
	boot := rkboot.NewBoot()

	// Bootstrap

	// Wait for shutdown sig


  • with valid jwt token
$ curl localhost:8080/rk/v1/healthy -H "Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.EpM5XBzTJZ4J8AfoJEcJrjth8pfH28LWdjLo90sYb9g"
  • with invalid jwt token
$ curl localhost:8080/rk/v1/healthy -H "Authorization: Bearer invalid-jwt-token"
        "message":"invalid or expired jwt",
            "token contains an invalid number of segments"


Last modified December 12, 2021 : Update based on rk-boot@v1.4.0 (233e143)