Gathering detailed insights and metrics for passport-google-strategy
Gathering detailed insights and metrics for passport-google-strategy
Installations
npm install passport-google-strategyReleases
Unable to fetch releases
Developer
humaidk2
Developer Guide
BETA
Module System
CommonJS
Min. Node Version
Typescript Support
No
Node Version
12.13.0
NPM Version
6.14.7
Statistics
15 Commits
2 Watching
1 Branches
1 Contributors
Updated on 12 Aug 2020
Languages
JavaScript (100%)
Total Downloads
Cumulative downloads
Total Downloads
5,112
Last day
-60%
2
Compared to previous day
Last week
46.7%
22
Compared to previous week
Last month
-3.8%
75
Compared to previous month
Last year
1.6%
840
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
2
Versions
passport-google-strategy
passport strategy that uses google-auth library to verify id token before logging in user
This strategy is an authentication strategy based on google's recommended signin practice google-signin
A custom strategy that utilizes google's recommended google-auth-library and is based on passport-strategy
Authentication Strategy
This package helps with the following authentication strategy
Usage
Install
1npm install passport-google-strategy --save
Configure Strategy
1var passport = require("passport"); 2var CustomGoogleStrategy = require("passport-google-strategy"); 3module.exports = function (passport, User) { 4 passport.use( 5 new CustomGoogleStrategy( 6 { clientId: process.env.GOOGLE_CLIENT_ID }, 7 function (req, payload, cb) { 8 User.findOrCreate({ 9 where: { 10 oAuthID: payload.sub, 11 }, 12 defaults: { 13 username: payload.name, 14 email: payload.email, 15 active: true, 16 }, 17 }) 18 .then(function (user) { 19 return cb(null, user[0]); 20 }) 21 .catch(function (err) { 22 return cb(err, null); 23 }); 24 } 25 ) 26 ); 27};
Authenticate Requests
1var passport = require("passport"); 2module.exports = function (app, User) { 3 app.get("/verifygoogle", passport.authenticate("custom-google"), function ( 4 req, 5 res 6 ) { 7 // do something with req.user 8 res.status(200).send({ username: req.session.passport.user.username }); 9 }); 10};
License
No vulnerabilities found.
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0
Reason
Found 0/15 approved changesets -- score normalized to 0
Reason
0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Reason
no SAST tool detected
Details
- Warn: no pull requests merged into dev branch
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'master'
Reason
11 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
- Warn: Project is vulnerable to: GHSA-w7rc-rwvf-8q5r
- Warn: Project is vulnerable to: GHSA-r683-j2x4-v87g
- Warn: Project is vulnerable to: GHSA-92xj-mqp7-vmcj
- Warn: Project is vulnerable to: GHSA-wxgw-qj99-44c2
- Warn: Project is vulnerable to: GHSA-5rrq-pxf6-6jx5
- Warn: Project is vulnerable to: GHSA-8fr3-hfg3-gpgp
- Warn: Project is vulnerable to: GHSA-gf8q-jrpm-jvxq
- Warn: Project is vulnerable to: GHSA-2r2c-g63r-vccr
- Warn: Project is vulnerable to: GHSA-cfm4-qjh2-4765
- Warn: Project is vulnerable to: GHSA-x4jg-mjrx-434g
Score
1.7
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More