Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@jxstjh/auth-client
Advanced tools
匹配4a单点SSO的前端工具包.
当你熟悉单点SSO背后的流程后,你会发现其实变通使用的方法非常自由.但是我们强烈建议按照本文档的使用方法
$ npm install @jxstjh/auth-client
import { SiteAnalysis } from '@jxstjh/auth-client'
const IS_PROD = ['production', 'prod'].includes(process.env.NODE_ENV)
window.SA = new SiteAnalysis({
siteAnalysisServer: 'https://count.jxwrd.gov.cn:30111', // 统一上报服务器
appId: 'xxxx', // appId 人工申请
interval: 30, // 上报日志频率 单位秒
production: IS_PROD // 开发模式下不上报
})
// 在全局路由拦截器中 加入页面访问日志
router.afterEach(() => {
window.SA.recordPage() // 记录页面log
// something else...
})
// 登录成功时候 取到用户名
window.SA.setLoginName(loginName)
import { AuthClient } from '@jxstjh/auth-client'
const startupService = () => {
return new Promise((resolve, reject) => {
// doSomething else ...根据实际情况执行其它前置逻辑
const ac = new AuthClient({
routerMode: 'history', // 'history'||'hash' 根据实际项目路由情况选择 缺省值'hash'
SSOServer: 'https://auth-test.jxwrd.gov.cn/',// 必填 sso认证地址
resourceCode: 'code', // 必填 resourceCode || 'code'
})
ac.on('error', (err) => {
return reject(err)
})
ac.on('inited', (e) => {
console.log(e)
// TODO:成功拿到用户信息及token
// 设置好vuex
return resolve()
})
})
}
startupService()
.then(()=>{
new Vue({
router,
store,
render: h => h(App)
})
})
.catch((err) => {
console.log(err)
})
import { AuthClient } from '@jxstjh/auth-client'
const startupService = () => {
return new Promise((resolve, reject) => {
const ac = window.loginData = new AuthClient({
routerMode: 'history', // 'history'||'hash' 根据实际项目路由情况选择 缺省值'hash'
SSOServer: 'https://auth-test.jxwrd.gov.cn/',// 必填 sso认证地址
resourceCode: 'code', // 必填 resourceCode || 'code'
method: 'custom', // 重要,不添加该属性会自动跳转至 4A 登录页
})
ac.on('inited', (e) => {
// TODO:成功拿到用户信息及token
// 设置好vuex
return resolve(e)
})
})
}
startupService()
.then((e) => {
new Vue({
router,
store,
beforeCreate() {
if (e && e.umsAdmin && e.tokenInfo) {
//this.$router.push('/index') // 跳转首页
} else {
//this.$router.push('/login') // 跳转登录页
}
},
render: h => h(App)
})
})
.catch((err) => {
console.log(err)
})
// 登录
window.loginData.login({
username: '', // (必填)账号
password: '', // (必填)密码
}).then((res) => {
console.log(res)
})
FAQs
匹配4a认证的客户端工具包 🌼
The npm package @jxstjh/auth-client receives a total of 9 weekly downloads. As such, @jxstjh/auth-client popularity was classified as not popular.
We found that @jxstjh/auth-client demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.