Connectum API Reference / @connectum/auth / SessionAuthInterceptorOptions
Interface: SessionAuthInterceptorOptions ​
Defined in: packages/auth/src/types.ts:326
Session-based auth interceptor options.
Two-step authentication: verify session token, then map session data to AuthContext.
Properties ​
cache? ​
readonlyoptionalcache?:CacheOptions
Defined in: packages/auth/src/types.ts:349
LRU cache for session verification results
extractToken? ​
readonlyoptionalextractToken?: (req) =>string|Promise<string|null> |null
Defined in: packages/auth/src/types.ts:347
Custom token extraction. Default: extracts Bearer token from Authorization header.
Parameters ​
req ​
header ​
Headers
Returns ​
string | Promise<string | null> | null
mapSession ​
readonlymapSession: (session) =>AuthContext|Promise<AuthContext>
Defined in: packages/auth/src/types.ts:342
Map raw session data to AuthContext.
Parameters ​
session ​
unknown
Raw session data from verifySession
Returns ​
AuthContext | Promise<AuthContext>
Normalized auth context
propagatedClaims? ​
readonlyoptionalpropagatedClaims?:string[]
Defined in: packages/auth/src/types.ts:359
Filter which claims are propagated in headers. When set, only listed claim keys are included in x-auth-claims header. When not set, all claims are propagated.
propagateHeaders? ​
readonlyoptionalpropagateHeaders?:boolean
Defined in: packages/auth/src/types.ts:353
Propagate auth context as headers for downstream services
skipMethods? ​
readonlyoptionalskipMethods?:string[]
Defined in: packages/auth/src/types.ts:351
Methods to skip authentication for
verifySession ​
readonlyverifySession: (token,headers) =>unknown
Defined in: packages/auth/src/types.ts:335
Verify session token and return raw session data. Must throw on invalid/expired sessions.
Parameters ​
token ​
string
Session token string
headers ​
Headers
Request headers (for additional context)
Returns ​
unknown
Raw session data