Research
Two Malicious Rust Crates Impersonate Popular Logger to Steal Wallet Keys
Socket uncovers malicious Rust crates impersonating fast_log to steal Solana and Ethereum wallet keys from source code.
By Kirill Boychenko - Sep 24, 2025
@lokalise/frontegg-oauth-client
Advanced tools
@lokalise/frontegg-oauth-client
Minimalistic Frontegg OAuth implementation for browser applications. It offers APIs for retrieving and refreshing tokens and basic user data.
frontegg-oauth-client
Minimalistic Frontegg OAuth implementation for browser applications. It offers APIs for retrieving and refreshing tokens and basic user data.
This package is an alternative to the official @frontegg/js package.
Installation
Use the package manager npm to install the library.
npm install @lokalise/frontegg-oauth-client
Usage
The library offers several APIs to initiate the OAuth flow and retrieve user data.
// Create client instance
const client = new FronteggOAuthClient({
baseUrl: 'https://frontegg-custom-url.com',
clientId: 'CLIENT_ID',
redirectUri: `${window.location.origin}/oauth/callback`,
logoutRedirectUri: window.location.origin,
})
try {
// Retrieve user
const user = await client.getUserData();
// Retrieve token
const accessToken = user.accessToken;
} catch (error) {
// In case we receive a 401 Unauthorized error, we need to redirect the user to the login page.
if (error instanceof FronteggError && error.status === 401) {
// Retrieve login URL
const loginUrl = await client.getOAuthLoginUrl()
// Redirect to Frontegg login page
window.location.href = loginUrl;
return;
}
// Rethrow unknown error.
throw error
}
You also need to set up the OAuth callback path in your browser app. For that, we use the same client instance as in the code above.
// OAuth callback app - usually /oauth/callback URL
const handleRequest = async (request: Request) => {
const oauthCode = new URL(request.url).searchParams.get('code')
if (!oauthCode) {
throw new Error('Missing oauth code');
}
// After successful login, the client can retrieve
// the access token through the OAuth code.
await client.fetchAccessTokenByOAuthCode(oauthCode)
// Redirect the user to the main app
window.location.href = '/';
}
Credits
This library is brought to you by a joint effort of Lokalise engineers:
FAQs
Minimalistic Frontegg OAuth implementation for browser applications. It offers APIs for retrieving and refreshing tokens and basic user data.
We found that @lokalise/frontegg-oauth-client demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Package last updated on 23 Oct 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025