Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@corbado/react-sdk
Advanced tools
This SDK is for developers who want to add Corbado's Authentication management in their applications but want to use a UI flow of their own.
The @corbado/react-sdk
package is tailored for React applications that require more control over authentication flows, providing a flexible and robust solution for managing authentication states without prebuilt UI components.
>=18.17.0
or laternpm install @corbado/react-sdk
Initialize CorbadoProvider
at the root of your application:
import { CorbadoProvider } from '@corbado/react-sdk';
function App() {
return (
<CorbadoProvider projectId='pro-XXXXXXXXXXXXXXXXXXXX'>
{/* Your routes and other components go here */}
</CorbadoProvider>
);
}
export default App;
Utilize the useCorbado
hook to access authentication states like user
and shortSession
.:
import { useCorbado } from '@corbado/react-sdk';
const HomePage = () => {
const { user, shortSession, loading } = useCorbado();
if (loading) {
// Render loading state
}
if (user) {
// Render authenticated state
}
// Additional implementation
};
export default HomePage;
Remember to check loading
state of the hook before using authentication states
The @corbado/react-sdk
allows for the implementation of custom authentication flows, including login, signup, and conditional UI logic.
For signing up users with a passkey, use the signUpWithPasskey
method:
import { useCorbado } from '@corbado/react-sdk';
const SignupPage = () => {
const { signUpWithPasskey } = useCorbado();
const handleSignup = async (email: string, username: string) => {
const result = await signUpWithPasskey(email, username);
if (!result.err) {
// Handle successful signup
} else {
// Handle signup error
}
};
// Render your signup form here
};
For signing up users with a email OTP, use the initSignUpWithEmailOTP
& completeSignUpWithEmailOTP
method:
import { useCorbado } from '@corbado/react-sdk';
const CompleteEmailOtpSignup = () => {
const { initSignUpWithEmailOTP, completeSignUpWithEmailOTP } = useCorbado();
const handleInitSignup = async (email: string, username: string) => {
const result = await initSignUpWithEmailOTP(email, username);
//Handle init response, e.g. by rendering an input field where the user can enter the code he has just received.
};
const handleCompleteSignup = async (otpCode: string) => {
const result = await completeSignUpWithEmailOTP(otpCode);
// Handle completion response
};
// Render form to input OTP
};
To implement a login flow using a passkey, use the loginWithPasskey
method:
import { useCorbado } from '@corbado/react-sdk';
const LoginPage = () => {
const { loginWithPasskey } = useCorbado();
const handleLogin = async (email: string) => {
const result = await loginWithPasskey(email);
if (!result.err) {
// Handle successful login
} else {
// Handle login error
}
};
// Render your login form here
};
Conditional UI logic can be used to streamline the login process. For instance, you might want to automatically prompt the user to use a passkey if available. The loginWithConditionalUI
method can be utilized for this purpose:
import { useCorbado, PasskeyChallengeCancelledError } from '@corbado/react-sdk';
const ConditionalLoginPage = () => {
const { loginWithConditionalUI } = useCorbado();
const handleConditionalLogin = async () => {
const response = await loginWithConditionalUI();
if (!response.err) {
// Handle successful login
} else if (response.val instanceof PasskeyChallengeCancelledError) {
// Handle scenario where passkey challenge was cancelled
} else {
// Handle other errors
}
};
// Render your login form here and call handleConditionalLogin in useEffect
};
Implement logout functionality easily with the logout
method from the useCorbado
hook:
import { useCorbado } from '@corbado/react-sdk';
const LogoutButton = () => {
const { logout } = useCorbado();
const handleLogout = () => {
logout();
// Redirect or perform additional actions after logout
};
// UI logic and styling for logout button
};
export default LogoutButton;
In each of these examples, you're calling different authentication methods provided by @corbado/react-sdk
. These methods return a result object that indicates whether the operation was successful (err
property) and provides additional details or error information (val
property).
Remember to replace the example logic with real implementations that fit the specific needs of your application. The rendering of forms and the handling of form inputs are not covered here, as they can vary greatly depending on your UI library or custom components.
@corbado/react-sdk
package checkout the example application and its source codeFor support and questions please visit our Slack channel. For more detailed information and advanced configuration options, please visit our Documentation Page.
This project is licensed under the MIT License - see the LICENSE file for details.
FAQs
This SDK is for developers who want to add Corbado's Authentication management in their applications but want to use a UI flow of their own.
The npm package @corbado/react-sdk receives a total of 7 weekly downloads. As such, @corbado/react-sdk popularity was classified as not popular.
We found that @corbado/react-sdk demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.