Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@badrap/preload
Advanced tools
Data preloading for vue-router, similar to Sapper's preload or Nuxt.js's asyncData
Add a preload
function to your vue-router route components, used for prepopulating data before those routes get rendered. Mostly modeled after Sapper's preload
, but also similar to Nuxt.js's asyncData
and Next.js's getInitialProps
.
$ npm i @badrap/preload
A modified of the following examples is available at CodeSandbox.
This module exports a single function. Use this function to decorate your route definitions before passing them to vue-router:
import Vue from "vue";
import VueRouter from "vue-router";
import preload from "@badrap/preload"; // Import preload.
import Foo from "./Foo.vue"; // Import a couple of route components which
import Bar from "./Bar.vue"; // we decorate with preload.
Vue.use(VueRouter);
const routes = preload([
// Use preload here to decorate the route components...
{ path: "/foo", component: Foo },
{ path: "/bar", component: Bar },
]);
const router = new VueRouter({
routes, // ...and pass them to vue-router.
});
new Vue({
router,
template: "<router-view />",
}).$mount("#app");
After this setup dance the route components Foo and Bar can define a new method preload
that is used to prepopulate their data whenever their route gets rendered - on initial render as well as route changes.
Let's define Foo in Foo.vue:
<template>
<div>{{ greeting }}, {{ ip }}!</div>
</template>
<script>
import axios from "axios";
export default {
async preload() {
const { data } = await axios.get("https://api.ipify.org");
return { ip: data };
},
data() {
return { greeting: "Hello" };
},
};
</script>
Rendering the route /foo would then show a div with the text "Hello, 127.0.0.1!", or whatever your IP address happens to be instead of 127.0.0.1. This demonstrates two things:
preload
get combined with the properties returned by data
.preload
can be asynchronous (it doesn't have to, though).The preload
method gets a context object that contains useful information and helpers:
Context property | Meaning |
---|---|
route | The route object for the route that's currently being rendered. |
redirect | A function whose return value you can return from preload to redirect the router to. Takes a location descriptor. |
error | A function whose return value you can return from preload to signal a status error. |
Here's an example that uses all of the above:
<script>
export default {
async preload({ route, redirect, error }) {
const { search } = route.query;
if (!search) {
return error(400, "?search= missing");
}
return redirect(
"https://google.com/search?q=" + encodeURIComponent(search)
);
},
};
</script>
In addition to these properties you can mix in your own when decorating the route components:
const routes = preload(..., {
context: {
appName: "My sweet app"
}
);
After this appName
will be a part of every context object passed to preload
methods of the decorated route components.
In addition to extra context properties you can pass in two hooks. The beforePreload
hook is executed before a route change causes preload
methods to be called. The afterPreload
hook gets executed when all of the preload
calls are done.
const routes = preload(..., {
beforePreload(() => {
// Start a progress indicator here.
}),
afterPreload(err => {
// Stop and hide the progress indicator here.
})
);
The default components that gets shown whenever preload
returns a context.error(...)
value can be replaced:
const routes = preload(..., {
errorComponent: ErrorComponent
});
This library is licensed under the MIT license. See LICENSE.
FAQs
Data preloading for vue-router, similar to Sapper's preload or Nuxt.js's asyncData
The npm package @badrap/preload receives a total of 2 weekly downloads. As such, @badrap/preload popularity was classified as not popular.
We found that @badrap/preload demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.