Installations

npm install exegesis-passport

Pull Requests

Open

8

Total

152

Closed

99

Merged

45

Issues

Open

0

Total

8

Closed

8

Releases

5

v2.0.1

Published on 22 Aug 2019

v2.0.0

Published on 17 May 2019

v1.0.3

Published on 26 Dec 2018

v1.0.2

Published on 16 May 2018

v1.0.1

Published on 16 May 2018

View all 5 releases

Developer

exegesis-js

Developer Guide

BETA

Module System

CommonJS

Min. Node Version

>=6.0.0

Typescript Support

Yes

Node Version

10.16.3

NPM Version

6.11.1 Statistics

3 Stars

157 Commits

3 Watching

44 Branches

2 Contributors

Updated on 13 Dec 2021

Languages

TypeScript (97.17%)

JavaScript (2.83%)

Total Downloads

Cumulative downloads

Total Downloads

29,393

Last day

-36.8%

12

Compared to previous day

Last week

-26%

74

Compared to previous week

Last month

52.6%

261

Compared to previous month

Last year

2%

1,746

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

3

@types/passport @types/passport-strategy passport-strategy-runner

Dev Dependencies

22

Versions

exegesis-passport

This package lets you use passport to authenticate requests in Exegesis.

1import passport from "passport";
2import * as exegesisExpress from "exegesis-express";
3import exegesisPassport from "exegesis-passport";
4import { BasicStrategy } from "passport-http";
5
6passport.use(
7  "basic",
8  new BasicStrategy((username, password, done) => {
9    if (password === "secret") {
10      done(null, { user: username });
11    } else {
12      done(null, false);
13    }
14  })
15);
16
17async function createServer() {
18  const app = express();
19
20  app.use(passport.initialize());
21
22  app.use(
23    await exegesisExpress.middleware(
24      path.resolve(__dirname, "./openapi.yaml"),
25      {
26        // Other options go here...
27        authenticators: {
28          // Authenticate the "basicAuth" security scheme using passport's 'basic' strategy.
29          basicAuth: exegesisPassport("basic"),
30          // Uses Passport's build-in 'session' strategy.
31          sessionToken: exegesisPassport("session", {
32            isPresent: (context) => !!context.req.session,
33          }),
34        },
35      }
36    )
37  );
38
39  const server = http.createServer(app);
40  server.listen(3000);
41}

API

exegesisPassport(passport, strategyName[, options])

Returns an Exegesis authenticator that will authenticate against the given strategyName. This will not set the user in the session.

options.converter is a function(user, pluginContext) which takes in the user authenticated by passport and returns a {user, roles, scopes} object for Exegesis.

options.isPresent is a function(pluginContext, authInfo) which returns true if the given security credentials are present, and false otherwise. Passport does not distinguish between an authentication attempt which did provide credentials and an authentication attempt which provided incorrect credentials, but Exegesis does. If this option is missing, then exgesis-passport will attempt to work out of the field is present, but in most cases this will end up with exegesis-passport treating missing credentials the same as bad credentials.

If options.passportOptions if provided, this will be passed to the passport strategy when it is run.

exegesisPassport(strategy[, options])

You can pass a Passport strategy directly to Exegesis to use the strategy without even having Passport installed:

1const basicStrategy = new BasicStrategy((username, password, done) => {
2  if (password === "secret") {
3    done(null, { user: username });
4  } else {
5    done(null, false);
6  }
7});
8
9exegesisOptions.authenticators = {
10  basicAuth: exegesisPassport(basicStrategy),
11};

options are the same as for exegesisPassport(passport, strategyName[, options]).

Passport

Want to learn more about passport? API docs here.

No vulnerabilities found.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

Dangerous-Workflow

Determines if the project's GitHub Action workflows avoid dangerous patterns.

10

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

Token-Permissions

Determines if the project's workflows follow the principle of least privilege.

0

Pinned-Dependencies

Determines if the project has declared and pinned the dependencies of its build process.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

License

Determines if the project has defined a license.

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

SAST

Determines if the project uses static code analysis.

Score

3.1

/10

Last Scanned on 2024-11-25

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

exegesis-passport

Installations

Pull Requests

8

152

99

45

Issues

0

8

8

Releases

Developer

exegesis-js

Developer Guide

CommonJS

>=6.0.0

Yes

10.16.3

6.11.1

Statistics

Languages

Total Downloads

29,393

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Dev Dependencies

exegesis-passport

API

exegesisPassport(passport, strategyName[, options])

exegesisPassport(strategy[, options])

Passport

10

10

10

0

0

0

0

0

0

0

0

0

0

3.1

/10

Other packages similar to exegesis-passport