npm:@nymdev/express-nymag-user

Usage no npm install needed!

<script type="module">
  import nymdevExpressNymagUser from 'https://cdn.skypack.dev/@nymdev/express-nymag-user';
</script>

README

Express NYMag User

Volunteering user information for internal use. This is not authentication; It just looks for a plain-text, unsigned cookie that contains a username and LDAP groups.

All authorization logic is encapsulated in the implementation of isProtected.

NOTE: Use with care. It's the same as user's volunteering their own username, and is not auth. Temporary until OAuth.

Setup

If redirect_to does not retun valid url (e.g. if host is not defined) and the request should be blocked, the middleware protects via 403.

Usage

const express = require('express'),
  app = express(),
  expressNYMagUser = require('@nymdev/express-nymag-user'),
  authServer = 'http://some_auth_server/login?redirect_to=';

app.use(expressNYMagUser({
  redirectTo: function (originalUrl) {
    return authServer + encodeURIComponent(originalUrl);
  },
  isProtected: function (req) {
    return !!req.query.edit;
  }
}));

Installation

npm install --save @nymdev/express-nymag-auth

Details

Downloads (weekly)
Updated: December 2, 2021
Created: October 14, 2015
Package score learn more: Package Security
ES Module Entrypoint Info
Export Map Info
Keywords
License
README
Repository URL
TypeScript Types Info
License: None
Dependencies: 3
Links: Package Security snyk.io

Homepage github.com
Issues github.com
Repository github.com
Keywords: in-house authentication middleware express cookie
Collaborators: @byronhulcher
@davidandrewfrey
@gloddy
@jonwinton
@justinmccraw
@nymdev
@ughitsaaron
@vicfriedman
@yoshokatana