Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

@janiscommerce/api-session

Package Overview
Dependencies
Maintainers
1
Versions
16
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@janiscommerce/api-session

A session manager for APIs

  • 3.1.1
  • Source
  • npm
  • Socket score

Version published
Maintainers
1
Created
Source

api-session

Build Status Coverage Status npm version

A session manager for APIs

📦 Installation

npm install @janiscommerce/api-session

:gear: API

The package exports two classes ApiSession and ApiSessionError.

constructor(authorizationData, client)

Creates an APISession with the authorizationData provided or the client for direct injection.

Parameters
  • authorizationData is an opcional object with the following (also optional) properties: { userId, clientId, clientCode, profileId, permissions, locations, hasAccessToAllLocations }
  • client is an opcional object for client injection without performing any DB gets

validateLocation(locationId)

Validate if the location given is valid for the session. Returns Boolean.

APISession getters

ApiSession has the following getters:

  • userId {string} The ID of the user or undefined in case there is no user
  • userIsDev {boolean} If user is dev
  • serviceName {string} The name of the service or undefined in case there is no service
  • isService {boolean} If session is associated to a service
  • clientId {string} The ID of the client or undefined in case there is no client
  • clientCode {string} The code of the client or undefined in case there is no client
  • profileId {string} The ID of the profile or undefined in case there is no profile
  • locations {array} The List of locations
  • hasAccessToAllLocations {boolean} If has access to all locations
  • permissions {array} The permission keys or undefined in case there are no permissions associated
  • async client {object} Resolves to the client object with the getInstance() method injected. The properties depend on your client internal structure. The client is injected with a getInstance() method to propagate the session to other instances.

Model Client

The package uses the Client Model in our service for getting the clients. For more information see @janiscommerce/model

Usage

const { ApiSession, ApiSessionError } = require('@janiscommerce/api-session');

Examples

const { ApiSession } = require('@janiscommerce/api-session');

const SomeModel = require('../models/some-model');

const session = new ApiSession({
	userId: 1,
	userIsDev: false,
	clientId: 2,
	clientCode: 'janis',
	profileId: 5,
	permissions: [
		'catalog:product:read',
		'catalog:product:write'
	],
	locations: ['location-1'],
	hasAccessToAllLocations: false
});

console.log(`Session created for user ${session.userId} on client ${session.clientCode}.`);

const sessionInjectedModel = session.getSessionInstance(SomeModel, 'some-param', 'some-other-param');

console.log(`Session is propagated for user ${sessionInjectedModel.session.userId} on client ${sessionInjectedModel.session.clientCode}.`);

const client = await sessionInjectedModel.session.client;

console.log(client);
// Outputs your client object

const hasAccess = session.validateLocation('location-1');

console.log(`Session has access to location 1: ${hasAccess}`);
// Outputs 'Session has access to location 1: true'

FAQs

Package last updated on 27 Jan 2021

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc