New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details →
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@autolabz/auth-sdk

Package Overview
Dependencies
Maintainers
1
Versions
6
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@autolabz/auth-sdk

AutoLab 认证 SDK - React 组件库

latest
npmnpm
Version
1.1.5
Version published
Maintainers
1
Created
Source

@autolabz/auth-sdk

AutoLab 认证 SDK - React 组件库

📦 安装

npm install @autolabz/auth-sdk

🚀 快速开始

1. 包裹应用根组件(使用环境变量配置绝对地址)

import { AuthProvider } from '@autolabz/auth-sdk';

function App() {
  const authServiceUrl = import.meta.env.VITE_AUTH_API_BASE_URL; 
  return (
    <AuthProvider authServiceUrl={authServiceUrl}>
      <YourApp />
    </AuthProvider>
  );
}

2. 使用 AuthAvatar 组件

import { AuthAvatar } from '@autolabz/auth-sdk';

function Header() {
  return (
    <div className="header">
      <h1>我的应用</h1>
      <AuthAvatar authPortalUrl={import.meta.env.VITE_OAUTH_PROFILE_URL} />
    </div>
  );
}

3. 使用 useAuth Hook

import { useAuth } from '@autolabz/auth-sdk';

function UserInfo() {
  const { isAuthenticated, user, logout } = useAuth();

  if (!isAuthenticated) {
    return <div>请登录</div>;
  }

  return (
    <div>
      <p>欢迎, {user.nickname}</p>
      <button onClick={logout}>退出登录</button>
    </div>
  );
}

📚 API 文档

AuthProvider

Props类型必需描述
childrenReactNode子组件
authServiceUrlstring认证服务 API 基础地址

useAuth Hook

返回值:

{
  isAuthenticated: boolean;
  user: User | null;
  login: (user: User, refreshToken: string) => void;
  logout: () => Promise<void>;
  refreshAuth: () => void;
}

AuthAvatar

Props类型必需描述
authPortalUrlstring认证门户 URL(建议显式传入完整 URL)

🔑 核心特性

  • ✅ 自动跨标签页状态同步
  • ✅ LocalStorage 持久化
  • ✅ TypeScript 类型支持
  • ✅ 零配置使用
  • ✅ 样式隔离

📝 开发

# 安装依赖
npm install

# 开发模式
npm run dev

# 构建
npm run build

# 测试
npm test

📄 License

MIT

Keywords

react
auth
sso
authentication
sdk

FAQs

Package last updated on 15 Nov 2025

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Axios Maintainer Confirms Social Engineering Attack Behind npm Compromise

Security News

Axios Maintainer Confirms Social Engineering Attack Behind npm Compromise

Axios compromise traced to social engineering, showing how attacks on maintainers can bypass controls and expose the broader software supply chain.

By Sarah Gooding  -  Apr 02, 2026