npmpackage.info

axios-token-interceptor

An interceptor which makes it easier to work with tokens in axios.

0.2.0

MIT

JavaScript

Installations

npm install axios-token-interceptor

Pull Requests

Open

13

Total

19

Closed

4

Merged

2

Issues

Open

0

Total

5

Closed

5

Releases

Unable to fetch releases

Developer

sandrinodimattia

Developer Guide

BETA

Module System

CommonJS

Min. Node Version

Typescript Support

No

Node Version

12.11.1

NPM Version

6.11.3 Statistics

36 Stars

8 Commits

7 Forks

5 Watching

14 Branches

2 Contributors

Updated on 22 Feb 2023

Languages

JavaScript (100%)

Total Downloads

Cumulative downloads

Total Downloads

4,016,209

Last day

5.2%

8,054

Compared to previous day

Last week

10.8%

43,027

Compared to previous week

Last month

3.4%

175,304

Compared to previous month

Last year

99.1%

1,833,270

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

lock

Dev Dependencies

axios bluebird eslint eslint-config-airbnb-base eslint-plugin-import jest nock

Versions

Axios Token Interceptor

An interceptor which makes it easier to work with tokens in axios.

Usage

1const tokenProvider = require('axios-token-interceptor');
2
3const instance = axios.create({
4  baseURL: 'https://api.example.com'
5});
6
7// Configure the provider with the necessary options.
8const options = { ... };
9instance.interceptors.request.use(tokenProvider(options));
10
11// When a call to an endpoint is made, a token will be provided as a header.
12instance.get('/foo')

Providing a token

There are different ways to provide a token. You can provide the token as a static value:

1instance.interceptors.request.use(tokenProvider({
2  token: 'abc'
3}));
4
5// This will send the "Authorization: Bearer abc" header when making the call to the API endpoint.
6instance.get('/foo')

Instead of providing a static value you can also use a method to get the token:

1instance.interceptors.request.use(tokenProvider({
2  getToken: () => localStorage.get('access_token')
3}));
4
5// This will send the "Authorization: Bearer ..." header when making the call to the API endpoint.
6instance.get('/foo')

And this method can also return a promise:

1instance.interceptors.request.use(tokenProvider({
2  getToken: () => someMethod()
3    .then(response => response.access_token);
4}));
5
6// This will send the "Authorization: Bearer ..." header when making the call to the API endpoint.
7instance.get('/foo')

Customizing the Header

The following options allow you to set the header and the header value:

1instance.interceptors.request.use(tokenProvider({
2  token: 'abc',
3  header: 'X-Api-Key',
4  headerFormatter: (token) => 'token/' + token,
5}));
6
7// This will send the "X-Api-Key: token/abc" header when making the call to the API endpoint.
8instance.get('/foo')

Caching

In cases where getting a token is an expensive operation (eg: exchanging a refresh token for an access token) you'll want to cache this work for as long as the token is valid.

The following example shows how we can cache tokens for 8 hours:

1const cache = tokenProvider.tokenCache(
2  getTokenFromAuthorizationServer().then(res => res.body.access_token),
3  { maxAge: ms('8h') }
4);
5
6instance.interceptors.request.use(tokenProvider({
7  getToken: cache
8}));

Now it could also be that the token itself contains the expiration time (this is typically expires_in you'll get from your Authorization Server). In that case you can also use this to configure the maximum age of the cache:

1const cache = tokenProvider.tokenCache(
2  () => getTokenFromAuthorizationServer().then(res => res.body),
3  { getMaxAge: (body) => body.expires_in * 1000 }
4);
5
6instance.interceptors.request.use(tokenProvider({
7  getToken: cache,
8  headerFormatter: (body) => 'Bearer ' + body.access_token,
9}));

And the cache can also be reset:

1const cache = tokenProvider.tokenCache(
2  getTokenFromAuthorizationServer().then(res => res.body),
3  { getMaxAge: (res) => res.expires_in * 1000 }
4);
5
6cache.reset();

Note that expires_in coming from your authorization server is expressed in seconds, so you'll need to convert it to milliseconds when returning it to the getMaxAgefunction.

No vulnerabilities found.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

1

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

1.9

/10

Last Scanned on 2024-11-18

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

Other packages similar to axios-token-interceptor

@types/axios-token-interceptor

0.2.8

TypeScript definitions for axios-token-interceptor

axios-cache-interceptor

1.6.2

Cache interceptor for axios

aws4-axios

3.3.8

Axios request interceptor for signing requests with AWSv4

axios-jwt

4.0.3

Axios interceptor to store, use, and refresh tokens for authentication.