@magda/authentication-plugin-sdk
Advanced tools
Please information please refer to the Authentication Plugin Spec
Existing Magda Authentication Plugins can be found from here.
You can use this repo as a template to create your own magda authentication plugin.
/**
* Create an express router that can be used to enable session on an express application.
*
* @export
* @param {MagdaSessionRouterOptions} options
* @returns {Router}
*/
export declare function createMagdaSessionRouter(
options: MagdaSessionRouterOptions
): Router;
/**
* Complete destroy Magda session and remove session cookie from the user agent
*
* @export
* @param {Request} req
* @param {Response} res
* @param {SessionCookieOptions} cookieOptions
* @return {*} {Promise<void>}
*/
export declare async function destroyMagdaSession(
req: Request,
res: Response,
cookieOptions: SessionCookieOptions
): Promise<void>;
/**
* Verify the user using the user profile received during the authentication.
* If a user can be located, return UserToken type data.
* Otherwise, create a new user and return UserToken type data .
*
* @export
* @param {AuthApiClient} authApi
* @param {passport.Profile} profile
* @param {string} source
* @param {(
* authApiClient: AuthApiClient,
* userData: User,
* profile: passport.Profile
* ) => Promise<User>} [beforeUserCreated] an optional handler that will be called just before a user is created.
* The user data returned by this handler will be used to create a user record. The following parameters will be provided to the handler:
* - authApiClient: Auth API Client. You can use it to add a role to the user.
* - userData: the user data that is converted from the user profile received using the default conversion logic.
* - profile: the user profile received
*
* @param {(
* authApiClient: AuthApiClient,
* user: User,
* profile: passport.Profile
* ) => Promise<void>} [afterUserCreated] an optional call that will be called when a user has just been created.
* The following parameters will be provided to the handler:
* - authApiClient: Auth API Client. You can use it to add a role to the user.
* - user: the user data of the magda user that is just created.
* - profile: the user profile received
*
* @returns {Promise<UserToken>}
*/
export declare function createOrGetUserToken(
authApi: AuthApiClient,
profile: passport.Profile,
source: string,
beforeUserCreated?: (
authApiClient: AuthApiClient,
userData: User,
profile: passport.Profile
) => Promise<User>,
afterUserCreated?: (
authApiClient: AuthApiClient,
user: User,
profile: passport.Profile
) => Promise<void>
): Promise<UserToken>;
/**
* Join `url` with `baseUrl` if `url` is not an absolute (full) url string
*
* @export
* @param {string} url A full url string or a url path string (/a/b/c).
* @param {string} baseUrl A baseUrl used to generate a full url when a url path string is supplied via the `url` parameter.
* @param {{ [key: string]: string }} [optionalQueries]
* @param {string[]} [allowedUrlHosts] Optional; when specify, the host of `url` parameter will only be used if it is included by this list.
* @returns
*/
export declare function getAbsoluteUrl(
url: string,
baseUrl: string,
optionalQueries?: {
[key: string]: string;
},
allowedUrlHosts?: string[]
): string;
export declare function redirectOnSuccess(
toURL: string,
req: Request,
res: Response
): void;
export declare function redirectOnError(
err: any,
toURL: string,
req: Request,
res: Response
): void;
FAQs
MAGDA Authentication Plugin SDK
We found that @magda/authentication-plugin-sdk demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers have discovered multiple malicious npm packages targeting Solana private keys, abusing Gmail to exfiltrate the data and drain Solana wallets.
Security News
PEP 770 proposes adding SBOM support to Python packages to improve transparency and catch hidden non-Python dependencies that security tools often miss.
Security News
Socket CEO Feross Aboukhadijeh discusses open source security challenges, including zero-day attacks and supply chain risks, on the Cyber Security Council podcast.