@busy-human/configurator
Advanced tools
Loads and synchronizes configuration
npm i -g @busy-human/configurator
It is bad practice to store passwords, keys, and other authorization elements directly in your repository. There are secure ways of distributing the configuration and keys between developers but it can be difficult to integrate this into automated workflows.
A configuration should be stored securely and require some form of authentication to access it regardless of where or how it is stored.
This tool uses key-based authentication.
The Configurator can be run from your terminal after it has been installed on the system.
configurator authenticate http://myurl --key=****************
This command will fetch a token which will be saved and associated with your device. The token will then automatically be used on subsequent calls to that url.
After you've successfully authenticated you can get your configuration
configurator get
Generally your package.json should provide the data on which file to get and how to install it. But if you want to call the command directly you can use this pattern:
configurator get --url=http://myurl/myfile
The Configurator can use environment variables to supply its arguments.
CONFIGURATOR_KEY
If this is found on the system and the option is not passed into the command, they will be used when running.
You can add a new property to your package.json to store data about where and how to retrieve the configuration file(s) from.
"configurator": {
"strategy": "key",
"url": "http://myendpoint.com/myconfig"
}
DO NOT store your key in your package.json. This will be ignored by the Configurator and is a bad practice.
This optional argument will tell exactly where the configuration file should be pulled from. Generally it is recommended to call this command without directly specifying the url and to instead define the configuration in your package.json.
The first time you try to connect to a Configurator endpoint you'll be asked for a key. You'll be given a token that expires after about 30 days.
IP Restrictions can be applied in two ways.
FAQs
Manage, install, and sync configurations for your projects
The npm package @busy-human/configurator receives a total of 2 weekly downloads. As such, @busy-human/configurator popularity was classified as not popular.
We found that @busy-human/configurator demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 6 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncovered a malicious PyPI package exploiting Deezer’s API to enable coordinated music piracy through API abuse and C2 server control.
Research
The Socket Research Team discovered a malicious npm package, '@ton-wallet/create', stealing cryptocurrency wallet keys from developers and users in the TON ecosystem.
Security News
Newly introduced telemetry in devenv 1.4 sparked a backlash over privacy concerns, leading to the removal of its AI-powered feature after strong community pushback.