Installations

npm install balena-auth

Pull Requests

Open

1

Total

30

Closed

4

Merged

25

Issues

Open

0

Total

8

Closed

8

Releases

2

v6.0.1

Published on 23 Feb 2024

v6.0.0

Published on 23 Feb 2024

View all 2 releases

Developer

balena-io-modules

Developer Guide

BETA

Module System

CommonJS

Min. Node Version

>=18.0.0

Typescript Support

Yes

Node Version

18.19.1

NPM Version

10.2.4 Statistics

4 Stars

88 Commits

1 Forks

3 Watching

4 Branches

10 Contributors

Updated on 21 Feb 2023

Languages

TypeScript (97.01%)

JavaScript (2.99%)

Total Downloads

Cumulative downloads

Total Downloads

995,203

Last day

-31.3%

2,001

Compared to previous day

Last week

-12.7%

12,307

Compared to previous week

Last month

-2.3%

53,639

Compared to previous month

Last year

74.7%

395,547

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

4

balena-errors balena-settings-storage jwt-decode tslib

Dev Dependencies

25

Versions

balena-auth

Join our online chat at

Balena session authentication utilities

Role

The intention of this module is to provide low level access to how a balena authentication tokens are parsed and persisted.

THIS MODULE IS LOW LEVEL AND IS NOT MEANT TO BE USED BY END USERS DIRECTLY.

Unless you know what you're doing, use the balena SDK instead.

Installation

Install balena-auth by running:

1$ npm install --save balena-auth

Documentation

The module returns a class that you use to get an instance of the auth module.

It accepts the following params:

Param	Type	Description
options	`Object`	options
[options.dataDirectory]	`string` \| `false`	the directory to use for storage in Node.js or false to create an isolated in memory instance. Values other than false are ignored in the browser.
[options.tokenKey]	`string`	the key used to store the last token in the storage. `token` by default.

Example

1import BalenaAuth from 'balena-auth';
2const auth = new BalenaAuth({
3	dataDirectory: '/opt/cache/balena',
4	tokenKey: 'token'
5});

auth
- ~setKey(key) ⇒ [ 'Promise' ].<void>
- ~hasKey() ⇒ [ 'Promise' ].<Boolean>
- ~removeKey() ⇒ Promise
- ~getType() ⇒ [ 'Promise' ].<TokenType>
- ~getKey() ⇒ [ 'Promise' ].<string>
- ~getAge() ⇒ [ 'Promise' ].<(number|undefined)>
- ~isExpired() ⇒ [ 'Promise' ].<boolean>
- ~isValid() ⇒ [ 'Promise' ].<boolean>
- ~get2FAStatus() ⇒ [ 'Promise' ].<('not_required'|'pending'|'passed')>
- ~needs2FA() ⇒ [ 'Promise' ].<boolean>

auth~setKey(key) ⇒ `[ 'Promise' ].<void>`

Kind: inner method of auth
Summary: Set the key
Access: public

Param	Type
key	`String`

Example

1auth.setKey('...').then(() => { ... });

auth~hasKey() ⇒ `[ 'Promise' ].<Boolean>`

Kind: inner method of auth
Summary: Has a key
Returns: [ 'Promise' ].<Boolean> - has key
Access: public
Example

1auth.hasKey().then((hasKey) => { ... });

auth~removeKey() ⇒ `Promise`

This promise is not rejected if there was no key at the time of removal.

Kind: inner method of auth
Summary: Remove the key
Access: public
Example

1auth.removeKey();

auth~getType() ⇒ `[ 'Promise' ].<TokenType>`

Kind: inner method of auth
Summary: Gets the key type
Access: public
Example

1auth.getType().then((type) => { ... });

auth~getKey() ⇒ `[ 'Promise' ].<string>`

Kind: inner method of auth
Summary: Gets the key
Access: public
Example

1auth.getKey().then((key) => { ... });

auth~getAge() ⇒ `[ 'Promise' ].<(number|undefined)>`

Kind: inner method of auth
Summary: Gets the token age
Access: public
Example

1auth.getAge().then((age) => { ... });

auth~isExpired() ⇒ `[ 'Promise' ].<boolean>`

Kind: inner method of auth
Summary: Checks if token is expired
Access: public
Example

1auth.isExpired().then((expired) => { ... });

auth~isValid() ⇒ `[ 'Promise' ].<boolean>`

Kind: inner method of auth
Summary: Checks if token format is valid
Access: public
Example

1auth.isValid().then((valid) => { ... });

auth~get2FAStatus() ⇒ `[ 'Promise' ].<('not_required'|'pending'|'passed')>`

Kind: inner method of auth
Summary: Gets whether passing a 2FA challenge is pending, passed or not required.
Access: public
Example

1auth.get2FAStatus().then((get2FAStatus) => { ... });

auth~needs2FA() ⇒ `[ 'Promise' ].<boolean>`

Kind: inner method of auth
Summary: Checks whether passing 2FA is pending/needed
Access: public
Example

1auth.needs2FA().then((needs2FA) => { ... });

Support

If you're having any problem, please raise an issue on GitHub and the balena team will be happy to help.

Tests

Run the test suite by doing:

1$ npm test

Contribute

Issue Tracker: github.com/balena-io-modules/balena-auth/issues
Source Code: github.com/balena-io-modules/balena-auth

Before submitting a PR, please make sure that you include tests, and that npm run lint runs without any warning.

License

The project is licensed under the Apache 2.0 license.

No vulnerabilities found.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

10

License

Determines if the project has defined a license.

4

SAST

Determines if the project uses static code analysis.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Maintained

Determines if the project is "actively maintained".

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Fuzzing

Determines if the project uses fuzzing.

0

Security-Policy

Determines if the project has published a security policy.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

Score

3.9

/10

Last Scanned on 2024-11-25

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

balena-auth

Installations

Pull Requests

1

30

4

25

Issues

0

8

8

Releases

Developer

balena-io-modules

Developer Guide

CommonJS

>=18.0.0

Yes

18.19.1

10.2.4

Statistics

Languages

Total Downloads

995,203

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Dev Dependencies

balena-auth

Role

Installation

Documentation

auth~setKey(key) ⇒ [ 'Promise' ].<void>

auth~hasKey() ⇒ [ 'Promise' ].<Boolean>

auth~removeKey() ⇒ Promise

auth~getType() ⇒ [ 'Promise' ].<TokenType>

auth~getKey() ⇒ [ 'Promise' ].<string>

auth~getAge() ⇒ [ 'Promise' ].<(number|undefined)>

auth~isExpired() ⇒ [ 'Promise' ].<boolean>

auth~isValid() ⇒ [ 'Promise' ].<boolean>

auth~get2FAStatus() ⇒ [ 'Promise' ].<('not_required'|'pending'|'passed')>

auth~needs2FA() ⇒ [ 'Promise' ].<boolean>

Support

Tests

Contribute

License

10

10

10

10

4

0

0

0

0

0

0

0

3.9

/10

auth~setKey(key) ⇒ `[ 'Promise' ].<void>`

auth~hasKey() ⇒ `[ 'Promise' ].<Boolean>`

auth~removeKey() ⇒ `Promise`

auth~getType() ⇒ `[ 'Promise' ].<TokenType>`

auth~getKey() ⇒ `[ 'Promise' ].<string>`

auth~getAge() ⇒ `[ 'Promise' ].<(number|undefined)>`

auth~isExpired() ⇒ `[ 'Promise' ].<boolean>`

auth~isValid() ⇒ `[ 'Promise' ].<boolean>`

auth~get2FAStatus() ⇒ `[ 'Promise' ].<('not_required'|'pending'|'passed')>`

auth~needs2FA() ⇒ `[ 'Promise' ].<boolean>`