fix(deps): Replace fastify-auth0-verify with fastify-jwt-jwks (#163)

Fixes #82

See: nearform/fastify-auth0-verify#224 (comment)

package.json

@@ -30,7 +30,7 @@
     "date-fns": "^2.29.3",
     "env-var": "^7.3.0",
     "fastify": "^4.14.0",
-    "fastify-auth0-verify": "github:relaycorp/fastify-auth0-verify#auth0-agnostic-generated",
+    "fastify-jwt-jwks": "^1.1.3",
     "fastify-plugin": "^4.5.0",
     "is-valid-domain": "^0.1.6",
     "json-schema-to-ts": "^2.8.0",

src/utilities/fastify/plugins/jwksAuthentication.spec.ts

@@ -1,7 +1,7 @@
 import { jest } from '@jest/globals';
 import type { FastifyInstance } from 'fastify';
 import envVar from 'env-var';
-import fastifyOauth2Verify from 'fastify-auth0-verify';
+import fastifyJwtJwks from 'fastify-jwt-jwks';
 
 import { mockSpy } from '../../../testUtils/jest.js';
 import {
@@ -34,12 +34,12 @@ describe('jwks-authentication', () => {
     );
   });
 
-  test('OAUTH2_JWKS_URL should be used as the domain', async () => {
+  test('OAUTH2_JWKS_URL should be honoured', async () => {
     await jwksPlugin(mockFastify, {});
 
     expect(mockFastify.register).toHaveBeenCalledWith(
-      fastifyOauth2Verify,
-      expect.objectContaining({ domain: OAUTH2_JWKS_URL }),
+      fastifyJwtJwks,
+      expect.objectContaining({ jwksUrl: OAUTH2_JWKS_URL }),
     );
   });
 
@@ -85,7 +85,7 @@ describe('jwks-authentication', () => {
     await jwksPlugin(mockFastify, {});
 
     expect(mockFastify.register).toHaveBeenCalledWith(
-      fastifyOauth2Verify,
+      fastifyJwtJwks,
       expect.objectContaining({ issuer: OAUTH2_TOKEN_ISSUER }),
     );
   });
@@ -114,7 +114,7 @@ describe('jwks-authentication', () => {
     await jwksPlugin(mockFastify, {});
 
     expect(mockFastify.register).toHaveBeenCalledWith(
-      fastifyOauth2Verify,
+      fastifyJwtJwks,
       expect.objectContaining({ issuer: new RegExp(issuerRegex, 'u') }),
     );
   });
@@ -146,7 +146,7 @@ describe('jwks-authentication', () => {
     await jwksPlugin(mockFastify, {});
 
     expect(mockFastify.register).toHaveBeenCalledWith(
-      fastifyOauth2Verify,
+      fastifyJwtJwks,
       expect.objectContaining({ audience: OAUTH2_TOKEN_AUDIENCE }),
     );
   });

src/utilities/fastify/plugins/jwksAuthentication.ts

@@ -1,11 +1,11 @@
 import type { FastifyInstance } from 'fastify';
 import fastifyPlugin from 'fastify-plugin';
-import fastifyAuth0Verify, { type FastifyAuth0VerifyOptions } from 'fastify-auth0-verify';
+import fastifyJwtJwks, { type FastifyJwtJwksOptions } from 'fastify-jwt-jwks';
 import env from 'env-var';
 
-function getOauth2PluginOptions(): FastifyAuth0VerifyOptions {
+function getOauth2PluginOptions(): FastifyJwtJwksOptions {
   const audience = env.get('OAUTH2_TOKEN_AUDIENCE').required().asString();
-  const domain = env.get('OAUTH2_JWKS_URL').required().asUrlString();
+  const jwksUrl = env.get('OAUTH2_JWKS_URL').required().asUrlString();
 
   const issuer = env.get('OAUTH2_TOKEN_ISSUER').asUrlString();
   const issuerRegex = env.get('OAUTH2_TOKEN_ISSUER_REGEX').asRegExp('u');
@@ -16,16 +16,12 @@ function getOauth2PluginOptions(): FastifyAuth0VerifyOptions {
     throw new Error('Either OAUTH2_TOKEN_ISSUER or OAUTH2_TOKEN_ISSUER_REGEX should be set');
   }
 
-  return {
-    audience,
-    domain,
-    issuer: issuer ?? (issuerRegex as any),
-  };
+  return { audience, jwksUrl, issuer: issuer ?? issuerRegex };
 }
 
 async function registerJwksPlugin(fastify: FastifyInstance): Promise<void> {
   const options = getOauth2PluginOptions();
-  await fastify.register(fastifyAuth0Verify, options);
+  await fastify.register(fastifyJwtJwks, options);
 }
 
 const jwksPlugin = fastifyPlugin(registerJwksPlugin, {