Authentication

$bolt.jwtEncode(aData, cSecret)

Create JWT token. Secret must be at least 32 bytes.

token = $bolt.jwtEncode([:user_id = 123, :role = "admin"], "my-secret-key-at-least-32-bytes!!")

$bolt.jwtEncodeExp(aData, cSecret, nExpires)

Create JWT with expiration (seconds from now). Secret must be at least 32 bytes.

token = $bolt.jwtEncodeExp([:user_id = 123], "my-secret-key-at-least-32-bytes!!", 3600)  # 1 hour

$bolt.jwtDecode(cToken, cSecret)

Decode and verify JWT, returns payload.

data = $bolt.jwtDecode(token, "my-secret-key-at-least-32-bytes!!")
if data != NULL
    userId = data[:user_id]
ok

$bolt.jwtVerify(cToken, cSecret)

Verify JWT validity (returns 1 or 0).

if $bolt.jwtVerify(token, "my-secret-key-at-least-32-bytes!!")
    # Valid token
ok

$bolt.basicAuthDecode(cHeader)

Decode Basic Auth header. Returns a list with :username and :password, or NULL if invalid.

auth = $bolt.header("Authorization")  # "Basic dXNlcjpwYXNz"
creds = $bolt.basicAuthDecode(auth)
if creds != NULL
    user = creds[:username]
    pass = creds[:password]
ok

$bolt.basicAuthEncode(cUsername, cPassword)

Encode Basic Auth credentials.

auth = $bolt.basicAuthEncode("user", "pass")  # "Basic dXNlcjpwYXNz"

Server-Sent Events Security