Skip to content

Instantly share code, notes, and snippets.

@MavoCz

MavoCz/postman_jwt_token_generator.js

Last active October 23, 2022 19:45
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save MavoCz/b4823735423c2ff251fbc46b74b4d5eb to your computer and use it in GitHub Desktop.
Save MavoCz/b4823735423c2ff251fbc46b74b4d5eb to your computer and use it in GitHub Desktop.
Download ZIP
Postman JWT token generator
Raw
postman_jwt_token_generator.js
var removeIllegalCharacters = function (input) {
console.info(input);
return input
.replace(/=/g, '')
.replace(/\+/g, '-')
.replace(/\//g, '_');
};
var base64object = function (input) {
var inputWords = CryptoJS.enc.Utf8.parse(JSON.stringify(input));
var base64 = CryptoJS.enc.Base64.stringify(inputWords);
var output = removeIllegalCharacters(base64);
return output;
};
var header = {
"alg": "HS256"
};
var currentTime = new Date();
var issuedAtTimeSeconds = currentTime / 1000; // iat
var expirationTimeSeconds = currentTime / 1000 + 3600; // exp
var payload = {
"sub": "test@test.com",
"aud": "server.test.com",
"exp": expirationTimeSeconds,
"iat": issuedAtTimeSeconds,
"iss": "server.test.com",
"subtype": "user",
"isAdmin": false,
"userId": "xxxxxxx-xxxxxx"
};
var SECRET_KEY = 'yourverysecretkey';
var unsignedToken = base64object(header) + "." + base64object(payload);
var signatureHash = CryptoJS.HmacSHA256(unsignedToken, SECRET_KEY);
var signature = CryptoJS.enc.Base64.stringify(signatureHash);
var token = unsignedToken + '.' + signature;
var formattedToken = removeIllegalCharacters(token);
pm.environment.set('jwt', formattedToken);
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment