├── .editorconfig
├── .gitignore
├── .prettierrc
├── LICENSE
├── README.md
├── assets
    ├── 1.png
    ├── 2.png
    ├── 3.png
    ├── 4.png
    ├── 5.png
    ├── 6.png
    ├── 7.png
    └── 8.png
├── components
    ├── Logo.vue
    └── error
    │   ├── 404.vue
    │   └── 500.vue
├── jsconfig.json
├── layouts
    ├── default.vue
    └── error.vue
├── middleware
    ├── authenticated.js
    ├── notAuthenticated.js
    └── refreshToken.js
├── nuxt.config.js
├── package.json
├── pages
    ├── auth
    │   ├── confirm
    │   │   └── _email
    │   │   │   └── index.vue
    │   ├── login.vue
    │   └── register.vue
    ├── index.vue
    └── secret.vue
├── plugins
    └── setTokenAxios.js
├── server
    └── index.js
├── static
    ├── favicon.ico
    └── icon.png
└── store
    └── index.js


/.editorconfig:
--------------------------------------------------------------------------------
 1 | # editorconfig.org
 2 | root = true
 3 | 
 4 | [*]
 5 | indent_style = space
 6 | indent_size = 2
 7 | end_of_line = lf
 8 | charset = utf-8
 9 | trim_trailing_whitespace = true
10 | insert_final_newline = true
11 | 
12 | [*.md]
13 | trim_trailing_whitespace = false
14 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
 1 | # Elastic Beanstalk Files
 2 | .elasticbeanstalk/*
 3 | !.elasticbeanstalk/*.cfg.yml
 4 | !.elasticbeanstalk/*.global.yml
 5 | # Created by .ignore support plugin (hsz.mobi)
 6 | ### Node template
 7 | # Logs
 8 | logs
 9 | *.log
10 | npm-debug.log*
11 | yarn-debug.log*
12 | yarn-error.log*
13 | 
14 | # Runtime data
15 | pids
16 | *.pid
17 | *.seed
18 | *.pid.lock
19 | 
20 | # Directory for instrumented libs generated by jscoverage/JSCover
21 | lib-cov
22 | 
23 | # Coverage directory used by tools like istanbul
24 | coverage
25 | 
26 | # nyc test coverage
27 | .nyc_output
28 | 
29 | # Grunt intermediate storage (http://gruntjs.com/creating-plugins#storing-task-files)
30 | .grunt
31 | 
32 | # Bower dependency directory (https://bower.io/)
33 | bower_components
34 | 
35 | # node-waf configuration
36 | .lock-wscript
37 | 
38 | # Compiled binary addons (https://nodejs.org/api/addons.html)
39 | build/Release
40 | 
41 | # Dependency directories
42 | node_modules/
43 | jspm_packages/
44 | 
45 | # TypeScript v1 declaration files
46 | typings/
47 | 
48 | # Optional npm cache directory
49 | .npm
50 | 
51 | # Optional eslint cache
52 | .eslintcache
53 | 
54 | # Optional REPL history
55 | .node_repl_history
56 | 
57 | # Output of 'npm pack'
58 | *.tgz
59 | 
60 | # Yarn Integrity file
61 | .yarn-integrity
62 | 
63 | # dotenv environment variables file
64 | .env
65 | 
66 | # parcel-bundler cache (https://parceljs.org/)
67 | .cache
68 | 
69 | # next.js build output
70 | .next
71 | 
72 | # nuxt.js build output
73 | .nuxt
74 | 
75 | # Nuxt generate
76 | dist
77 | 
78 | # vuepress build output
79 | .vuepress/dist
80 | 
81 | # Serverless directories
82 | .serverless
83 | 
84 | # IDE / Editor
85 | .idea
86 | 
87 | # Service worker
88 | sw.*
89 | 
90 | # Mac OSX
91 | .DS_Store
92 | 
93 | # Vim swap files
94 | *.swp
95 | 


--------------------------------------------------------------------------------
/.prettierrc:
--------------------------------------------------------------------------------
1 | {
2 |   "semi": false,
3 |   "singleQuote": true
4 | }
5 | 


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) 2019 Klaudiusz Marszałek
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # Nuxt.js & AWS Cognito JWT authentication
 2 | This is Nuxt.js SSR boilerplate app with express.js sever and httpOnly cookie based authentication. You can find out how to securely add sign-up and sign-in functionality to your app and how to get, store and refresh JWT token.
 3 | 
 4 | ## Instalation steps 
 5 | ### 1. Create AWS account and go to the Cognito settings
 6 | ### 2. Click Manage User Pools
 7 | ![](https://github.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/blob/master/assets/1.png)
 8 | ### 3. Type pool name and click Step through settings
 9 | ![](https://github.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/blob/master/assets/2.png)
10 | ### 4. In the attributes tab check the options as below and click next
11 | ![](https://github.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/blob/master/assets/3.png)
12 | ### 5. In the policies tab select as below
13 | ![](https://github.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/blob/master/assets/4.png)
14 | ### 6. Next in the MFA tab select as below
15 | ![](https://github.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/blob/master/assets/5.png)
16 | ### 7. Then in the App clients tab add an app client
17 | ![](https://github.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/blob/master/assets/6.png)
18 | ### 8. Afterwards check as below
19 | ![](https://github.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/blob/master/assets/7.png)
20 | ### 9. Next two steps you can skip and finally you will see some thing like this
21 | ![](https://github.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/blob/master/assets/8.png)
22 | ### 10. Create .env file and save your Pool Id, App client id and Pool region
23 | #### .env file in the root folder
24 | 
25 |     UserPoolId=eu-central-1_X6gk9q9wU
26 |     ClientId=34awgjes6resft2q6w5dwry64
27 | 	PoolRegion=eu-central-1
28 |     
29 | ### 11. Finally install and run your app
30 |  `npm install`
31 |  
32 |   `npm run dev`
33 | 


--------------------------------------------------------------------------------
/assets/1.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/assets/1.png


--------------------------------------------------------------------------------
/assets/2.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/assets/2.png


--------------------------------------------------------------------------------
/assets/3.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/assets/3.png


--------------------------------------------------------------------------------
/assets/4.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/assets/4.png


--------------------------------------------------------------------------------
/assets/5.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/assets/5.png


--------------------------------------------------------------------------------
/assets/6.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/assets/6.png


--------------------------------------------------------------------------------
/assets/7.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/assets/7.png


--------------------------------------------------------------------------------
/assets/8.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/assets/8.png


--------------------------------------------------------------------------------
/components/Logo.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |   <div class="VueToNuxtLogo">
 3 |     <div class="Triangle Triangle--two" />
 4 |     <div class="Triangle Triangle--one" />
 5 |     <div class="Triangle Triangle--three" />
 6 |     <div class="Triangle Triangle--four" />
 7 |   </div>
 8 | </template>
 9 | 
10 | <style>
11 | .VueToNuxtLogo {
12 |   display: inline-block;
13 |   animation: turn 2s linear forwards 1s;
14 |   transform: rotateX(180deg);
15 |   position: relative;
16 |   overflow: hidden;
17 |   height: 180px;
18 |   width: 245px;
19 | }
20 | 
21 | .Triangle {
22 |   position: absolute;
23 |   top: 0;
24 |   left: 0;
25 |   width: 0;
26 |   height: 0;
27 | }
28 | 
29 | .Triangle--one {
30 |   border-left: 105px solid transparent;
31 |   border-right: 105px solid transparent;
32 |   border-bottom: 180px solid #41b883;
33 | }
34 | 
35 | .Triangle--two {
36 |   top: 30px;
37 |   left: 35px;
38 |   animation: goright 0.5s linear forwards 3.5s;
39 |   border-left: 87.5px solid transparent;
40 |   border-right: 87.5px solid transparent;
41 |   border-bottom: 150px solid #3b8070;
42 | }
43 | 
44 | .Triangle--three {
45 |   top: 60px;
46 |   left: 35px;
47 |   animation: goright 0.5s linear forwards 3.5s;
48 |   border-left: 70px solid transparent;
49 |   border-right: 70px solid transparent;
50 |   border-bottom: 120px solid #35495e;
51 | }
52 | 
53 | .Triangle--four {
54 |   top: 120px;
55 |   left: 70px;
56 |   animation: godown 0.5s linear forwards 3s;
57 |   border-left: 35px solid transparent;
58 |   border-right: 35px solid transparent;
59 |   border-bottom: 60px solid #fff;
60 | }
61 | 
62 | @keyframes turn {
63 |   100% {
64 |     transform: rotateX(0deg);
65 |   }
66 | }
67 | 
68 | @keyframes godown {
69 |   100% {
70 |     top: 180px;
71 |   }
72 | }
73 | 
74 | @keyframes goright {
75 |   100% {
76 |     left: 70px;
77 |   }
78 | }
79 | </style>
80 | 


--------------------------------------------------------------------------------
/components/error/404.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |   <b-container fluid>
 3 |     <b-jumbotron class="mt-3" header="404" lead="This page doesn’t exist">
 4 |       The link you clicked on may be broken or no longer exist.
 5 |       <hr class="my-4" />
 6 |       <b-button variant="primary" to="/">Home</b-button>
 7 |     </b-jumbotron>
 8 |   </b-container>
 9 | </template>
10 | <script>
11 | export default {
12 |   name: 'error-404',
13 |   props: {
14 |     error: {
15 |       type: Object,
16 |       default: () => {}
17 |     }
18 |   }
19 | }
20 | </script>
21 | 


--------------------------------------------------------------------------------
/components/error/500.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |    <b-container fluid> 
 3 |     <b-jumbotron class="mt-3" lead="Ups, somethings went wrong">
 4 |       Go to the home page and try again
 5 |       <hr class="my-4">   
 6 |       <b-button variant="primary" to="/">Home</b-button>
 7 |     </b-jumbotron> 
 8 |  </b-container>
 9 | </template>
10 | <script>
11 | export default {
12 |   name: 'error-500',
13 |   props: {
14 |     error: {
15 |       type: Object,
16 |       default: () => {},
17 |     },
18 |   },
19 | };
20 | </script> 


--------------------------------------------------------------------------------
/jsconfig.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "compilerOptions": {
 3 |     "baseUrl": ".",
 4 |     "paths": {
 5 |       "~/*": ["./*"],
 6 |       "@/*": ["./*"],
 7 |       "~~/*": ["./*"],
 8 |       "@@/*": ["./*"]
 9 |     }
10 |   },
11 |   "exclude": ["node_modules", ".nuxt", "dist"]
12 | }
13 | 


--------------------------------------------------------------------------------
/layouts/default.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |   <div>
 3 |     <b-navbar toggleable="lg" type="light" variant="light">
 4 |       <b-navbar-brand to="/">Home</b-navbar-brand> 
 5 |       <b-navbar-toggle target="nav-collapse"></b-navbar-toggle> 
 6 |       <b-collapse id="nav-collapse" is-nav> 
 7 |         <b-navbar-nav class="ml-auto" v-if="$store.state.auth">  
 8 |           <b-nav-form>
 9 |             <b-input-group prepend="@">
10 |               <b-form-input :value="$store.state.auth.email" disabled></b-form-input>
11 |             </b-input-group>
12 |           </b-nav-form> 
13 |           <b-button class="ml-3" @click="logout">Logout</b-button> 
14 |         </b-navbar-nav>
15 |       </b-collapse>
16 |     </b-navbar>  
17 |     <nuxt />
18 |   </div>
19 | </template>
20 | <script> 
21 | 
22 | export default { 
23 |   methods: {
24 |     logout () {
25 |       this.$axios('/auth/logout', {
26 |         method: 'post', 
27 |         headers: {
28 |           Accept: 'application/json',
29 |           Content: 'application/json'
30 |         }
31 |       }).then(res => {
32 |         this.$store.commit('setAuth', null)
33 |         this.$router.push('/')
34 |       }).catch(err => { 
35 |         console.log(err)
36 |         this.$store.commit('setAuth', null)
37 |         this.$router.push('/')
38 |       })
39 |     },
40 |   }
41 | }
42 | </script>
43 | <style>
44 | html {
45 |   font-family: 'Source Sans Pro', -apple-system, BlinkMacSystemFont, 'Segoe UI',
46 |     Roboto, 'Helvetica Neue', Arial, sans-serif;
47 |   font-size: 16px;
48 |   word-spacing: 1px;
49 |   -ms-text-size-adjust: 100%;
50 |   -webkit-text-size-adjust: 100%;
51 |   -moz-osx-font-smoothing: grayscale;
52 |   -webkit-font-smoothing: antialiased;
53 |   box-sizing: border-box;
54 | }
55 | 
56 | *,
57 | *:before,
58 | *:after {
59 |   box-sizing: border-box;
60 |   margin: 0;
61 | }
62 | 
63 | .button--green {
64 |   display: inline-block;
65 |   border-radius: 4px;
66 |   border: 1px solid #3b8070;
67 |   color: #3b8070;
68 |   text-decoration: none;
69 |   padding: 10px 30px;
70 | }
71 | 
72 | .button--green:hover {
73 |   color: #fff;
74 |   background-color: #3b8070;
75 | }
76 | 
77 | .button--grey {
78 |   display: inline-block;
79 |   border-radius: 4px;
80 |   border: 1px solid #35495e;
81 |   color: #35495e;
82 |   text-decoration: none;
83 |   padding: 10px 30px;
84 |   margin-left: 15px;
85 | }
86 | 
87 | .button--grey:hover {
88 |   color: #fff;
89 |   background-color: #35495e;
90 | }
91 | </style>
92 | 


--------------------------------------------------------------------------------
/layouts/error.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |   <div class="nuxt-error">
 3 |     <component :is="errorPage" :error="error" />
 4 |   </div>
 5 | </template>
 6 | <script>
 7 | import error404 from '~/components/error/404.vue';
 8 | import error500 from '~/components/error/500.vue';
 9 | export default {
10 |   name: 'nuxt-error',
11 |   layout: 'default',
12 |   props: {
13 |     error: {
14 |       type: Object,
15 |       default: () => {},
16 |     },
17 |   },
18 |   computed: {
19 |     errorPage() {
20 |       if (this.error.statusCode === 404) {
21 |         return error404;
22 |       }
23 |       
24 |       return error500;
25 |     },
26 |   }
27 | }
28 | </script>


--------------------------------------------------------------------------------
/middleware/authenticated.js:
--------------------------------------------------------------------------------
 1 | export default function ({ store, redirect }) {
 2 |   if(store.state.auth) { 
 3 |     if(new Date(store.state.auth.te) < new Date(Date.now())){
 4 |       store.dispatch("clearAuth", redirect);
 5 |     }
 6 |   } else { 
 7 |     return redirect('/login')
 8 |   }
 9 | }
10 | 


--------------------------------------------------------------------------------
/middleware/notAuthenticated.js:
--------------------------------------------------------------------------------
1 | export default function ({ store, redirect }) { 
2 |   if (store.state.auth) {
3 |     return redirect('/')
4 |   } 
5 | }
6 | 


--------------------------------------------------------------------------------
/middleware/refreshToken.js:
--------------------------------------------------------------------------------
1 | export default function ({ store }) { 
2 |   if(process.client) {
3 |     store.dispatch('refreshToken') 
4 |   }
5 | }
6 | 


--------------------------------------------------------------------------------
/nuxt.config.js:
--------------------------------------------------------------------------------
 1 | module.exports = {
 2 |   mode: 'universal',
 3 |   /*
 4 |   ** Headers of the page
 5 |   */
 6 |   head: {
 7 |     title: process.env.npm_package_name || '',
 8 |     meta: [
 9 |       { charset: 'utf-8' },
10 |       { name: 'viewport', content: 'width=device-width, initial-scale=1' },
11 |       { hid: 'description', name: 'description', content: process.env.npm_package_description || '' }
12 |     ],
13 |     link: [
14 |       { rel: 'icon', type: 'image/x-icon', href: '/favicon.ico' }
15 |     ]
16 |   },
17 |   /*
18 |   ** Customize the progress-bar color
19 |   */
20 |   loading: { color: '#fff' },
21 |   /*
22 |   ** Global CSS
23 |   */
24 |   css: [
25 |   ],
26 |   /*
27 |   ** Plugins to load before mounting the App
28 |   */
29 |   plugins: [
30 |     '~/plugins/setTokenAxios'
31 |   ],
32 |   /*
33 |   ** Nuxt.js dev-modules
34 |   */
35 |   buildModules: [
36 |   ],
37 |   /*
38 |   ** Nuxt.js modules
39 |   */
40 |   modules: [
41 |     // Doc: https://bootstrap-vue.js.org
42 |     'bootstrap-vue/nuxt',
43 |     // Doc: https://axios.nuxtjs.org/usage
44 |     '@nuxtjs/axios',
45 |     '@nuxtjs/pwa',
46 |   ],
47 |   /*
48 |   ** Axios module configuration
49 |   ** See https://axios.nuxtjs.org/options
50 |   */
51 |   axios: {
52 |     baseURL: process.env.BASE_URL || 'http://localhost:3000'
53 |   },
54 |   env: {
55 |     baseUrl: process.env.BASE_URL || 'http://localhost:3000',  
56 |   }, 
57 |   /*
58 |   ** Build configuration
59 |   */
60 |   build: {
61 |     /*
62 |     ** You can extend webpack config here
63 |     */
64 |     extend (config, ctx) {
65 |     }
66 |   }
67 | }
68 | 


--------------------------------------------------------------------------------
/package.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "name": "nuxt-ssr-aws-cognito",
 3 |   "version": "1.0.0",
 4 |   "description": "nuxt ssr aws cognito",
 5 |   "author": "Klaudiusz Marszalek",
 6 |   "private": true,
 7 |   "scripts": {
 8 |     "dev": "cross-env NODE_ENV=development nodemon server/index.js --watch server",
 9 |     "build": "nuxt build",
10 |     "start": "cross-env NODE_ENV=production node server/index.js",
11 |     "generate": "nuxt generate"
12 |   },
13 |   "dependencies": {
14 |     "@nuxtjs/axios": "^5.8.0",
15 |     "@nuxtjs/pwa": "^3.0.0-0",
16 |     "amazon-cognito-identity-js": "^3.2.0",
17 |     "aws-sdk": "^2.575.0",
18 |     "body-parser": "^1.19.0",
19 |     "bootstrap": "^4.3.1",
20 |     "bootstrap-vue": "^2.1.0",
21 |     "cookie-parser": "^1.4.4",
22 |     "cookieparser": "^0.1.0",
23 |     "cross-env": "^6.0.3",
24 |     "dotenv": "^8.2.0",
25 |     "express": "^4.17.1",
26 |     "js-cookie": "^2.2.1",
27 |     "jsonwebtoken": "^8.5.1",
28 |     "jwk-to-pem": "^2.0.1",
29 |     "node-fetch": "^2.6.0",
30 |     "nuxt": "^2.10.2"
31 |   },
32 |   "devDependencies": {
33 |     "nodemon": "^1.19.4",
34 |     "eslint-config-prettier": "^6.6.0",
35 |     "eslint-plugin-prettier": "^3.1.1",
36 |     "prettier": "^1.19.1"
37 |   }
38 | }
39 | 


--------------------------------------------------------------------------------
/pages/auth/confirm/_email/index.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |   <b-container>
 3 |     <b-row align-v="center">
 4 |       <b-col>
 5 |         <b-card bg-variant="light" label-cols-lg="12">
 6 |           <p v-if="error">{{error}}</p>
 7 |           <form @submit.prevent="confirm"> 
 8 |             <b-form-group label-cols-lg="12" label="Confirm" label-size="lg" label-class="font-weight-bold pt-0" class="mb-0">
 9 |               {{email}}
10 |               <b-form-group label-cols-sm="4" label="Code:" label-align-sm="right" label-for="nested-code">
11 |                 <b-form-input id="nested-email" type="text" value=""  v-model="code" required></b-form-input>
12 |               </b-form-group> 
13 | 
14 |               <b-button type="submit">Confirm</b-button>  
15 |             </b-form-group>
16 |           </form>  
17 |         </b-card>
18 |       </b-col>
19 |     </b-row> 
20 |   </b-container>
21 | </template>
22 | 
23 | <script>
24 |  
25 | export default {
26 |   middleware: ['refreshToken','notAuthenticated'],
27 |   validate ({ params }) { 
28 |     if(!params.email) return false 
29 |     return true
30 |   },
31 |   data() {
32 |     return {
33 |       code: '',
34 |       error: '',
35 |       email: ''
36 |     }
37 |   }, 
38 |   asyncData(context) {
39 |     return  {
40 |       email: context.params.email
41 |     }
42 |   },
43 |   methods: {
44 |     confirm() {
45 |       const { code, email } = this
46 |       const data = { code, email }
47 |     
48 |       this.$axios('/auth/confirm', {
49 |         method: 'post', 
50 |         headers: {
51 |           Accept: 'application/json',
52 |           Content: 'application/json'
53 |         },
54 |         data: data
55 |       }).then(res => { 
56 |         const auth = res.data 
57 |         this.$router.push('/auth/login')
58 |       }).catch((err) => {
59 |         this.error = err.response.data.error 
60 |       })
61 |     } 
62 |   }
63 | }
64 | </script>


--------------------------------------------------------------------------------
/pages/auth/login.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |   <b-container>
 3 |     <b-row align-v="center">
 4 |       <b-col>
 5 |         <b-card bg-variant="light" label-cols-lg="12">
 6 |           <p v-if="error">{{error}}</p>
 7 |           <form @submit.prevent="loginUser"> 
 8 |             <b-form-group label-cols-lg="12" label="Sign in" label-size="lg" label-class="font-weight-bold pt-0" class="mb-0">
 9 |               
10 |               <b-form-group label-cols-sm="4" label="Email:" label-align-sm="right" label-for="nested-email">
11 |                 <b-form-input id="nested-email" type="text" value="demo"  v-model="email" required></b-form-input>
12 |               </b-form-group>
13 | 
14 |               <b-form-group  label-cols-sm="4" label="Password:" label-align-sm="right" label-for="nested-password">
15 |                 <b-form-input id="nested-password" type="password" value="demo" v-model="password"></b-form-input>
16 |               </b-form-group> 
17 | 
18 |               <b-button type="submit">Sign In</b-button> 
19 |               <b-button to="/auth/register">Register</b-button> 
20 |             </b-form-group>
21 |           </form>  
22 |         </b-card>
23 |       </b-col>
24 |     </b-row> 
25 |   </b-container>
26 | </template>
27 | 
28 | <script>
29 |  
30 | export default {
31 |   middleware: ['refreshToken','notAuthenticated'],
32 |   data() {
33 |     return {
34 |       email: '',
35 |       password: '',
36 |       error: ''
37 |     }
38 |   }, 
39 |   methods: {
40 |     loginUser() {
41 |       const { email, password } = this
42 |       const data = { email, password }
43 |     
44 |       this.$axios('/auth/login', {
45 |         method: 'post', 
46 |         headers: {
47 |           Accept: 'application/json',
48 |           Content: 'application/json'
49 |         },
50 |         data: data
51 |       }).then(res => { 
52 |         const auth = res.data
53 |         this.$store.commit('setAuth', auth)  
54 |         this.$router.push('/')
55 |       }).catch((err) => {
56 |         this.error = err.response.data.error.message
57 |         this.$store.commit('setAuth', null) 
58 |         if(err.response.data.error.code == 'UserNotConfirmedException') {
59 |           setTimeout(() => {
60 |             this.$router.push('/auth/confirm/'+email)
61 |           },3000)
62 |         }
63 |       })
64 |     } 
65 |   }
66 | }
67 | </script>


--------------------------------------------------------------------------------
/pages/auth/register.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |   <b-container>
 3 |     <b-row align-v="center">
 4 |       <b-col>
 5 |         <b-card bg-variant="light" label-cols-lg="12">
 6 |           <p v-if="error">{{error}}</p>
 7 |           <form @submit.prevent="registerUser"> 
 8 |             <b-form-group label-cols-lg="12" label="Sign up" label-size="lg" label-class="font-weight-bold pt-0" class="mb-0">
 9 |               
10 |               <b-form-group label-cols-sm="4" label="Email:" label-align-sm="right" label-for="nested-email">
11 |                 <b-form-input id="nested-email" type="text" value="" v-model="email" required></b-form-input>
12 |               </b-form-group>
13 | 
14 |               <b-form-group label-cols-sm="4" label="Phone:" label-align-sm="right" label-for="nested-phone">
15 |                 <b-form-input id="nested-phone" type="text" value="" v-model="phone" required></b-form-input>
16 |               </b-form-group>
17 | 
18 |               <b-form-group  label-cols-sm="4" label="Password:" label-align-sm="right" label-for="nested-password">
19 |                 <b-form-input id="nested-password" type="password" value="demo" v-model="password"></b-form-input>
20 |               </b-form-group> 
21 | 
22 |               <b-button type="submit">Sign Up</b-button> 
23 |               <b-button to="/auth/login">Login</b-button> 
24 |             </b-form-group>
25 |           </form>  
26 |         </b-card>
27 |       </b-col>
28 |     </b-row> 
29 |   </b-container>
30 | </template>
31 | 
32 | <script>
33 |  
34 | export default {
35 |   middleware: ['refreshToken','notAuthenticated'],
36 |   data() {
37 |     return {
38 |       email: '',
39 |       password: '',
40 |       phone: '',
41 |       error: ''
42 |     }
43 |   }, 
44 |   methods: {
45 |     registerUser() {
46 |       const { email, password, phone } = this
47 |       const data = { email, password, phone }
48 |     
49 |       this.$axios('/auth/register', {
50 |         method: 'post', 
51 |         headers: {
52 |           Accept: 'application/json',
53 |           Content: 'application/json'
54 |         },
55 |         data: data
56 |       }).then(res => { 
57 |         const auth = res.data
58 |         this.$router.push('/auth/confirm/'+email)
59 |       }).catch((err) => { 
60 |         this.error = err.response.data.error.message
61 |         if(err.response.data.error.code == 'UsernameExistsException') {
62 |           setTimeout(() => {
63 |             this.$router.push('/auth/login')
64 |           },3000)
65 |         }
66 |       })
67 |     } 
68 |   }
69 | }
70 | </script>


--------------------------------------------------------------------------------
/pages/index.vue:
--------------------------------------------------------------------------------
  1 | <template>
  2 |   <div class="container">
  3 |     <div>
  4 |       <logo />
  5 |       <h1 class="title">Nuxt.js SSR & AWS Cognito</h1>
  6 |       <h2 class="subtitle">Cookie<small> (HttpOnly)</small> base authentication boilerplate</h2>
  7 |       <div class="links" v-if="$store.state.auth">
  8 |         <p>
  9 |           You are authenticated. You can see the
 10 |           <NuxtLink to="/secret" class="button--green">
 11 |             secret page
 12 |           </NuxtLink>
 13 |         </p>  
 14 |       </div>
 15 |       <div class="links" v-else>
 16 |         <p>
 17 |           You are not authenticated. 
 18 |           <NuxtLink to="/auth/login" class="button--green">Login</NuxtLink>
 19 |           <NuxtLink to="/auth/register" class="button--green">Register</NuxtLink>
 20 |         </p>
 21 |       </div>
 22 |     </div>
 23 |   </div>
 24 | </template>
 25 | 
 26 | <script>
 27 | const Cookie = process.client ? require('js-cookie') : undefined
 28 | import Logo from '~/components/Logo.vue'
 29 | 
 30 | export default { 
 31 |   middleware: 'refreshToken',
 32 |   data() {
 33 |     return {}
 34 |   },
 35 |   components: {
 36 |     Logo
 37 |   },
 38 |   methods: {
 39 |     logout () {
 40 |       this.$axios('/auth/logout', {
 41 |         method: 'post', 
 42 |         headers: {
 43 |           Accept: 'application/json',
 44 |           Content: 'application/json'
 45 |         }
 46 |       }).then(res => {
 47 |         this.$store.commit('setAuth', null)
 48 |         this.$router.push('/')
 49 |       }).catch(err => { 
 50 |         console.log(err)
 51 |         this.$store.commit('setAuth', null)
 52 |         this.$router.push('/')
 53 |       })
 54 |     },
 55 |     refreshToken() {
 56 |       this.$axios('/auth/refresh-token', {
 57 |         method: 'post', 
 58 |         headers: {
 59 |           Accept: 'application/json',
 60 |           Content: 'application/json'
 61 |         }
 62 |       }).then(result => { 
 63 |           try { 
 64 |             this.$store.commit('setAuth', result.data)
 65 |             this.$router.push('/')
 66 |           } catch(e) {
 67 |             console.log(e);
 68 |             commit('setAuth',null)
 69 |           }
 70 |         }).catch((e)=>{
 71 |           console.log(e.message);
 72 |           commit('setAuth',null)
 73 |         });
 74 |     }
 75 |   }
 76 | }
 77 | </script>
 78 | 
 79 | <style>
 80 | h1 {
 81 | font-size: 60px !important;
 82 | }
 83 | small, .small {
 84 |     font-size: 70%;
 85 |     font-weight: 200;
 86 | }
 87 | .container {
 88 |   margin: 0 auto;
 89 |   min-height: 100vh;
 90 |   display: flex;
 91 |   justify-content: center;
 92 |   align-items: center;
 93 |   text-align: center;
 94 | }
 95 | 
 96 | .title {
 97 |   font-family: 'Quicksand', 'Source Sans Pro', -apple-system, BlinkMacSystemFont,
 98 |     'Segoe UI', Roboto, 'Helvetica Neue', Arial, sans-serif;
 99 |   display: block;
100 |   font-weight: 300;
101 |   font-size: 100px;
102 |   color: #35495e;
103 |   letter-spacing: 1px;
104 | }
105 | 
106 | .subtitle {
107 |   font-weight: 300;
108 |   font-size: 42px;
109 |   color: #526488;
110 |   word-spacing: 5px;
111 |   padding-bottom: 15px;
112 | }
113 | 
114 | .links {
115 |   padding-top: 15px;
116 | }
117 | </style>
118 | 


--------------------------------------------------------------------------------
/pages/secret.vue:
--------------------------------------------------------------------------------
 1 | <template>
 2 |  <b-container fluid> 
 3 |   <b-jumbotron class="mt-3" v-if="$store.state.auth" header="Secret JWT Token" :lead="$store.state.auth.jwt">
 4 |      <strong>Valid to:</strong> {{ new Date($store.state.auth.jwt_expired) }}
 5 |     <hr class="my-4"> 
 6 |     <b-button @click="refreshToken" v-if="$store.state.auth">Refresh token</b-button> 
 7 |     <b-button variant="primary" to="/">Home</b-button>
 8 |   </b-jumbotron> 
 9 |  </b-container>
10 | </template>
11 | 
12 | <script>
13 | export default {
14 |   middleware: ['refreshToken','authenticated'],
15 |     methods: { 
16 |     refreshToken() {
17 |       this.$axios('/auth/refresh-token', {
18 |         method: 'post', 
19 |         headers: {
20 |           Accept: 'application/json',
21 |           Content: 'application/json'
22 |         }
23 |       }).then(result => { 
24 |           try { 
25 |             this.$store.commit('setAuth', result.data) 
26 |           } catch(e) {
27 |             console.log(e);
28 |             commit('setAuth',null)
29 |           }
30 |         }).catch((e)=>{
31 |           console.log(e.message);
32 |           commit('setAuth',null)
33 |         });
34 |     }
35 |   }
36 | }
37 | </script>
38 | <style>
39 | .lead {
40 |     -ms-word-break: break-all;
41 |     word-break: break-all;
42 |     word-break: break-word;
43 | }
44 | </style>


--------------------------------------------------------------------------------
/plugins/setTokenAxios.js:
--------------------------------------------------------------------------------
 1 | export default ({ $axios, store }) => {
 2 |   // $axios.defaults.baseURL = 'http://localhost:3000'
 3 | 
 4 |   // if (process.server) {
 5 |   //   return
 6 |   // }
 7 | 
 8 |   // $axios.interceptors.request.use(request => {
 9 |   //   request.baseURL = 'http://localhost:3000'
10 | 
11 |   //   // Get token from auth.js store
12 |   //   const token = store.state.token
13 | 
14 |   //   // Update token axios header
15 |   //   if (token) {
16 |   //     request.headers.common['Authorization'] = token
17 |   //   }
18 |   //   return request
19 |   // })
20 |   return
21 | }


--------------------------------------------------------------------------------
/server/index.js:
--------------------------------------------------------------------------------
  1 | const express = require('express')
  2 | const consola = require('consola')
  3 | const { Nuxt, Builder } = require('nuxt')
  4 | const app = express()
  5 | const cookiepars = require('cookieparser')
  6 | const bodyParser = require('body-parser')
  7 | const cookieParser = require('cookie-parser')
  8 | const AmazonCognitoIdentity = require('amazon-cognito-identity-js');
  9 | 
 10 | global.fetch = require('node-fetch');
 11 | require('dotenv').config();
 12 |  
 13 | const config = require('../nuxt.config.js')
 14 | config.dev = process.env.NODE_ENV !== 'production'
 15 | 
 16 | async function start () {
 17 | 
 18 |   const nuxt = new Nuxt(config)
 19 |   const { host, port } = nuxt.options.server
 20 | 
 21 |   const userPool = new AmazonCognitoIdentity.CognitoUserPool({    
 22 |     UserPoolId : process.env.UserPoolId,  // Pool Id
 23 |     ClientId : process.env.ClientId, // App client id
 24 |   });
 25 | 
 26 |   if (config.dev) {
 27 |     const builder = new Builder(nuxt)
 28 |     await builder.build()
 29 |   } else {
 30 |     await nuxt.ready()
 31 |   }
 32 | 
 33 |   app.use(cookieParser());
 34 |   app.use(bodyParser.urlencoded({ extended: false })) 
 35 |   app.use(bodyParser.json())
 36 |  
 37 |   app.post('/auth/register', (req, res, next) => { 
 38 |     
 39 |     const attributeList = [
 40 |       new AmazonCognitoIdentity.CognitoUserAttribute({Name: "email", Value: req.body.email}),
 41 |       new AmazonCognitoIdentity.CognitoUserAttribute({Name: "phone_number", Value: req.body.phone}),
 42 |       new AmazonCognitoIdentity.CognitoUserAttribute({Name: "custom:role", Value: "dealer"})
 43 |     ]
 44 | 
 45 |     userPool.signUp(req.body.email, req.body.password, attributeList, null, function(err, result){
 46 |         if (err) { 
 47 |           try {
 48 |             err.message = err.message;
 49 |             return res.status(400).json({error: err});
 50 |           } catch (err) {
 51 |             console.log(err);
 52 |             return res.status(500)
 53 |           } 
 54 |         } 
 55 |         cognitoUser = result.user;
 56 |         res.json({user: cognitoUser.getUsername()});
 57 |     }); 
 58 |   })
 59 | 
 60 |   app.post('/auth/login', (req, res, next) => {
 61 |     const authenticationDetails = new AmazonCognitoIdentity.AuthenticationDetails({
 62 |       Username : req.body.email,
 63 |       Password : req.body.password,
 64 |     }); 
 65 | 
 66 |     const cognitoUser = new AmazonCognitoIdentity.CognitoUser({
 67 |       Username : req.body.email,
 68 |       Pool : userPool
 69 |     }); 
 70 |     
 71 |     cognitoUser.authenticateUser(authenticationDetails, {
 72 |       onSuccess: function(result) { 
 73 |           const expirationTime = new Date(result.getAccessToken().payload.exp*1000)
 74 |           const auth = {
 75 |             jwt: result.getAccessToken().getJwtToken(),
 76 |             jwt_expired: expirationTime,
 77 |             email: req.body.email
 78 |           } 
 79 |           res.cookie('token', result.getRefreshToken().getToken(), { 
 80 |             expires: new Date(result.getAccessToken().payload.auth_time * 1000 + 1000*60*60*24*30), 
 81 |             httpOnly: true }).json(auth); 
 82 |         }, 
 83 |         onFailure: function(err) {
 84 |           if (err) { 
 85 |             try {
 86 |               err.message = err.message;
 87 |               return res.status(400).json({error: err});
 88 |             } catch (err) {
 89 |               console.log(err);
 90 |               return res.status(500)
 91 |             } 
 92 |           }
 93 |         },
 94 |     }); 
 95 |   })
 96 | 
 97 |   app.post('/auth/logout', (req, res) => {
 98 |     res.cookie('token','', { 
 99 |       expires: new Date(Date.now()), 
100 |       httpOnly: true }).json({ ok: true });
101 |   }) 
102 | 
103 |   app.post('/auth/refresh-token', (req, res) => {   
104 |     if (req.headers.cookie) { 
105 |       const parsed = cookiepars.parse(req.headers.cookie) 
106 |       const refreshToken = new AmazonCognitoIdentity.CognitoRefreshToken({RefreshToken: parsed.token}); 
107 |       const cognitoUser = new AmazonCognitoIdentity.CognitoUser({
108 |         Username : '',
109 |         Pool : userPool
110 |       }); 
111 | 
112 |       cognitoUser.refreshSession(refreshToken, (err, result) => {
113 |         if (err) {
114 |           res.status(401).json({ message: 'The Access Token expired' })
115 |         } else {
116 |           const expirationTime = new Date(result.getAccessToken().payload.exp*1000) 
117 |           const auth = {
118 |               jwt: result.getIdToken().getJwtToken(),
119 |               jwt_expired: expirationTime,
120 |               email: result.getIdToken().payload.email,
121 |               refresh_token: result.getRefreshToken().getToken(),
122 |               refresh_token_expired: new Date(result.getIdToken().payload.auth_time * 1000 + 1000*60*60*24*30)
123 |             } 
124 |           res.cookie('token', result.getRefreshToken().getToken(), { 
125 |             expires: new Date(result.getAccessToken().payload.auth_time * 1000 + 1000*60*60*24*30), 
126 |             httpOnly: true }).json(auth);
127 |         }
128 |       }) 
129 |     } else {
130 |       res.status(401).json({ message: 'Missing auth cookie' })
131 |     }
132 |   }) 
133 | 
134 |   app.post('/auth/confirm', (req, res, next) => {
135 |     
136 |     const cognitoUser = new AmazonCognitoIdentity.CognitoUser({
137 |       Username : req.body.email,
138 |       Pool : userPool
139 |     }); 
140 | 
141 |     cognitoUser.confirmRegistration(req.body.code, true, function(err, result) {
142 |       if (err) {
143 |         console.log(err);
144 |         err.message = err.message;
145 |         return res.status(400).json({error: err.message});
146 |       }       
147 |       res.json({success: true});
148 |     })
149 |   })
150 |  
151 |   app.use(nuxt.render)
152 |   
153 |   app.listen(port, host)
154 | 
155 |   consola.ready({
156 |     message: `Server listening on http://${host}:${port}`,
157 |     badge: true
158 |   })
159 | }
160 | start()
161 | 


--------------------------------------------------------------------------------
/static/favicon.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/static/favicon.ico


--------------------------------------------------------------------------------
/static/icon.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/ja-klaudiusz/Nuxt.js-SSR-AWS-Cognito/f1830407da44663bb1c5f692d7b046a9b3d394fe/static/icon.png


--------------------------------------------------------------------------------
/store/index.js:
--------------------------------------------------------------------------------
 1 | const cookieparser = process.server ? require('cookieparser') : undefined
 2 | 
 3 | export const state = () => {
 4 |   return {
 5 |     auth: null
 6 |   }
 7 | }
 8 | export const mutations = {
 9 |   setAuth (state, auth, error) { 
10 |     state.auth = auth
11 |     if(error) console.log('[MUTATION] setAuth', error);
12 |   },
13 |   clearAuth(state, redirect) {
14 |     state.auth = null
15 |     redirect('/auth/login')
16 |   }
17 | }
18 | export const actions = {
19 |   nuxtServerInit ({ commit, dispatch }, { req, res }) {
20 |     if (req.headers.cookie) {
21 |       const parsed = cookieparser.parse(req.headers.cookie)
22 |       try {
23 |         if(parsed.token) {
24 |           return this.$axios.$post('/auth/refresh-token').then(result => {
25 |               try {
26 |                 commit('setAuth',result)  
27 |                 res.cookie('token', result.refresh_token, { expires: new Date(result.refresh_token_expired), httpOnly: true })
28 |               } catch(err) { 
29 |                 commit('setAuth', null, err)
30 |               }
31 |             }).catch((err)=>{
32 |               commit('setAuth', null, err)
33 |             }); 
34 |           } else {
35 |             commit('setAuth',null)
36 |           }
37 |       } catch (err) {
38 |         commit('setAuth', null, err)
39 |       }
40 |     }
41 |   },
42 |   clearAuth({ commit }, redirect) {
43 |     commit('clearAuth', redirect)
44 |   }, 
45 |   refreshToken({commit, state}) {
46 |     if(state.auth) {
47 |       if(new Date(Date.now()) > new Date(state.auth.jwt_expired)) {
48 |         return this.$axios.$post('/auth/refresh-token').then(result => {
49 |           try {
50 |             commit('setAuth',result)  
51 |           } catch(err) {
52 |             commit('setAuth', null, err)
53 |           }
54 |         }).catch((err)=>{
55 |           commit('setAuth', null, err)
56 |         });
57 |       } 
58 |     } else {
59 |       commit('setAuth', null)
60 |     } 
61 |   }
62 | }
63 | 


--------------------------------------------------------------------------------