Installations

npm install paseto-passport

Developer Guide

BETA

Typescript

No

Module System

CommonJS

Node Version

9.8.0

NPM Version

5.8.0 Pull Requests

Open

10

Total

63

Closed

53

Issues

Open

0

Total

0

Closed

0

Releases

Unable to fetch releases

Languages

1

JavaScript

JavaScript (100%)

Developer

kriasoft

Download Statistics

Total Downloads

0

Last Day

0

Last Week

0

Last Month

0

Last Year

0

GitHub Statistics

MIT License

7 Stars

3 Commits

1 Forks

3 Watchers

11 Branches

2 Contributors

Updated on Sep 19, 2023

Maintainers

1

View All 2 Contributors

Package Meta Information

Latest Version

0.0.1

Package Id

paseto-passport@0.0.1

Unpacked Size

20.72 kB

Size

6.77 kB

File Count

8

NPM Version

5.8.0

Node Version

9.8.0

Total Downloads

Cumulative downloads

Total Downloads

NaN

Last Day

0%

NaN

Compared to previous day

Last Week

0%

NaN

Compared to previous week

Last Month

0%

NaN

Compared to previous month

Last Year

0%

NaN

Compared to previous year

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

5

cookie jsonwebtoken passport-strategy pause uuid

Dev Dependencies

5

eslint eslint-config-airbnb-base eslint-config-prettier eslint-plugin-import prettier

Passport.js framework that uses JWT for sessions

This is an alternative framework for Passport.js that is designed to use JWT tokens for sessions. So that, instead of storing user's ID and metadata in a database (e.g. Redis), it encodes that data into a JSON Web Token and writes that token to a session cookie.

How to Install

1$ npm install jwt-passport

Note: It requires Node.js 6.11 or higher

How to Use

1const uuid = require('uuid');
2const express = require('express');
3const passport = require('passport');
4const jwt = require('jwt-passport');
5
6// We're using Knex.js database client in this examle,
7// but it could be any other database driver.
8const db = require('./db');
9
10passport.framework(
11  jwt({
12    name: '__session',
13    secret: '<secret>',
14    audience: '<audience>',
15    issuer: '<issuer>',
16    expiresIn: '1 hour',
17
18    // Prepare payload for an ID token
19    createToken: req => ({
20      sub: req.user.id,
21      jti: uuid.v4(),
22    }),
23
24    // Save user's token in a database
25    saveToken: token =>
26      db
27        .table('user_tokens')
28        .insert({
29          user_id: token.sub,
30          token_id: token.jti,
31        }),
32
33    // Revoke user's token
34    deleteToken: token =>
35      db
36        .table('user_tokens')
37        .where({ token_id: token.jti })
38        .del(),
39
40    // Check if the token was not revoked and find the corresponding user
41    findUser: token =>
42      db
43        .table('user_tokens')
44        .leftJoin('users', 'users.id', 'user_tokens.user_id')
45        .where({ 'user_tokens.token_id': token.jti })
46        .select('users.*')
47        .first(),
48  });
49);
50
51passport.use(new FacebookStrategy(/* config */));
52passport.use(new TwitterStrategy(/* config */));
53
54const app = express();
55
56// Extend the HTTP request object with
57// req.logIn() and req.logOut() helper methods
58app.use(passport.initialize());
59
60// Attemp to parse session cookie, validate the token
61// and put the authenticated user object onto the contxt (req.user)
62app.use(passport.session());
63
64app.get('/', (req, res) => {
65  res.send(`Welcome, ${req.user ? req.user.displayName : 'guest'}!`);
66});
67
68app.get('/login/:provider', (req, res, next) => {
69  passport.authenticate(req.params.provider, /* options */)(req, res, next);
70});
71
72app.get('/login/:provider/return', (req, res, next) => {
73  passport.authenticate(req.params.provider, /* options */)(req, res, next);
74});

Related Projects

Passport.js — Simple, unobtrusive authentication for Node.js.
Node.js API Starter — Boilerplate for authoring GraphQL APIs with Node.js and PostgreSQL.
React Starter Kit — Boilerpalte for authoring isomorphic web apps with React.js and GraphQL.
React Starter Kit for Firebase — React.js web app boilerplate for serveless architecture.

License

No vulnerabilities found.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

0

Maintained

Determines if the project is "actively maintained".

0

SAST

Determines if the project uses static code analysis.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

1.7

/10

Last Scanned on 2025-07-07

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More

Other packages similar to paseto-passport

Other packages similar to paseto-passport

paseto-passport

Installations

Developer Guide

No

CommonJS

9.8.0

5.8.0

Pull Requests

10

63

53

Issues

0

0

0

Releases

Unable to fetch releases

Languages

Developer

Download Statistics

GitHub Statistics

Maintainers

Package Meta Information

Total Downloads

NaN

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

Dev Dependencies

Passport.js framework that uses JWT for sessions

How to Install

How to Use

Related Articles

Related Projects

License

10

10

0

0

0

0

0

0

0

0

1.7

/10