Sign inDemoInstall


Package Overview
File Explorer

Advanced tools

Install Socket

Detect and block malicious and high-risk dependencies



A wrapper library around Meeco's various API SDK's and encryption libraries

Version published
Weekly downloads
increased by32.63%
Weekly downloads



Meeco TypeScript SDK

API Docs

For SDK API Docs (TypeDoc docs) See Here


$ npm install -S @meeco/sdk

Usage in Angular

Since Angular 6, the following polyfills are required to be added to your polyfills.ts (in order)

// required for bson library
(window as any).global = window;
// Required for JSRP
const buffer = require('buffer');
(window as any).Buffer = buffer;
(window as any).process = {
  browser: true,

You will also need to configure your compilerOptions in your tsconfig.base.json as follows:

  "compilerOptions": {
    "paths": {
      "stream": ["./node_modules/readable-stream"]
    // ...

Usage Basics

This is not an exhaustive list of functionality - just some basic use-cases. For full usage see the API docs

All examples expect you have your environment configured.

An environment configuration looks something like this:

// Note this can also be an instance of Environment from `@meeco/sdk` for type safety
const environment = {
  vault: {
    url: '<target vault environment url>',
    subscription_key: '<your Meeco subscription key>
  keystore: {
    url: '<target keystore environment url>',
    subscription_key: '<your Meeco subscription key>'

TypeScript / JavaScript

All examples in this Readme use TypeScript. However, JavaScript should also work mostly the same, just replace any import statements with require statements depending on your module system.


// TypeScript style imports
import { UserService } from '@meeco/sdk';
const service = new UserService();
// Node/JavaScript style imports
const Meeco = require('@meeco/sdk');
const service = new Meeco.UserService();

// or
const UserService = require('@meeco/sdk').UserService;
const service = new Meeco.UserService();

// or
const { UserService } = require('@meeco/sdk');
const service = new Meeco.UserService();

Configuring Fetch

The library requires a library that conforms to the Fetch API. Many modern browsers have this already but if you intend to support browsers that don't you will need to provide your own polyfill for it.

Likewise current LTS NodeJS does not have fetch built-in. We have tested the library to be working with the node-fetch polyfill

To configure the fetch library to be used for all library requests calls the configureFetch(fetch) method:

import { configureFetch } from '@meeco/sdk';
import * as fetchPolyfill from 'some-fetch-polyfill-library';


// Continue to use the Meeco SDK as normal...


Most services allow a logger to be configured. The default for this is a no-op function (() => {}). If you would like to log message to the console, you can pass in console.log as the logger. You can pass in any function that takes strings as an argument (for example, if you want to update a progress bar message).

To log warnings or errors you can pass loggers like so

 error: errorLogFunc,
 warn: warnLogFunc,
 log: baseLogFunc,

where each of the logging functions takes a string to print.

API Factories

The SDK offers wrappers around the Meeco Vault API SDK and Keystore API SDK. These attach on common required headers for convenience when making requests. To use them, simply call the API factory with your environment configuration. You can then create factory instances by calling the factory with a user's authentication data and, finally, get the desired Model API off the result:

import { vaultAPIFactory, keystoreAPIFactory } from '@meeco/sdk';

const vaultFactory = vaultAPIFactory(environment);
const keystoreFactory = keystoreAPIFactory(environment);
const aliceVault = vaultFactory(aliceUser);
const bobKeystore = keystoreFactory(bobUser);

// Get api's off the factory instance
const UserApi = bobKeystore.UserApi;

// Alternatively, use object destructuring
const { ItemApi } = aliceVault;

Creating and Fetching Users

To perform most actions with Meeco we need a User - either an existing one or a new one we create.

In order to create a user we need a username (requested from the Keystore API), a secret (derived from the username) and a passphrase/password (entered by the user for account creation).

import { UserService, Secrets } from '@meeco/sdk';

const userService = new UserService(environment);

const username = await userService.generateUsername();
// This secret should be returned to the user for safe keeping
const secret = await Secrets.generateSecret(username);
const user = await userService.create(password, secret);
// We now have the Meeco user `AuthData` to use for future calls and encryption.

In future, if we want to retrieve the user's AuthData we need them to provide their secret (which contains their username) and the passphrase.

import { UserService } from '@meeco/sdk';

const userService = new UserService(environment);
const user = await userService.getAuthData(password, secret);
// We have logged the user back in again and have the encryption keys we need

Dealing with Items

Items are typically created from a template (although you can create ones from a blank template as well). We can get a list of the available templates with the TemplateService

import { TemplateService } from '@meeco/sdk';

// Using a User we created or logged in with as above
const templatesService = new TemplatesService(environment, user.vault_access_token);
const availableTemplates = await templatesService.listTemplates();

 * We now have a list of the available templates.
 * We can also view more information about one of the templates (such
 * as the slots that it provides)

const templateDetails = await service.getTemplate(availableTemplates.item_templates[0].name);

Once we've selected a template we can create our first item.

import { ItemService, UserService } from '@meeco/sdk';
// Get the user's Auth Data
const service = new UserService();
const authData = await userService.getAuthData(password, secret);
// Create the item
const service = new ItemService(environment);
const selectedTemplate = availableTemplates.item_templates[0];
const newItem = NewItem.fromTemplate(selectedTemplate, selectedTemplate.slots, 'My Car', [
    name: 'make_model',
    value: 'Ford Focus',
    name: 'year',
    value: '2017',
const item = await service.create(user.vault_access_token, authData, newItem);

NewItem is a wrapper class that helps with the staging of a new created Item. It provides helpful commands for adding or removing slots and "previewing" the Item.

We can also fetch a list of a user's items or get details about a specific item in a manner similar to templates:

import { ItemService, UserService } from '@meeco/sdk';
// Get the user's Auth Data
const service = new UserService();
const authData = await userService.getAuthData(password, secret);
// Get the user's items
const service = new ItemService(environment);
const items = await service.list(user.vault_access_token);
// Get more details about a particular item
const itemDetails = await service.get(items[0].id, authData);

The SDK provides several convenience classes for the various interactions you will have with Items:

  • NewItem: describe an Item that doesn't yet exist in the backend (as above)
  • DecryptedItem: an Item retrieved with ItemService.get, automatically decrypted using user credentials
  • ItemUpdate: describe an Item update using only its id (i.e. you don't download the Item first).

There are two uses for DecryptedItem within the SDK: updating or sharing it.

DecryptedItem is immutable (the API object it represents can be updated though), so an update must create an ItemUpdate:

const decryptedItem = await new ItemService(environment).get(...);

// you can view item properties as usual;;
// view the Item as a map of slot names to slots
// view the Item as a map of slot names to slot values
decryptedItem.values  // e.g. { email: '' }

// if you need to see the Item as it was sent from the API

// prepare an update
const update = decryptedItem.update({
  label: 'new_label',
  classifications: nodes,
  slots: slots, // new values for slots will be merged with existing

// assign values to the update using a map:
update.assignValues({ make_model: 'BMW' }) // instead of { name: 'make_model', value: 'BMW' }

// delete slots from the update by name
// (delete slots in the API item using ItemService.removeSlot)

new ItemService(environment).update(credentials, update);

To share

const item = await new ItemService(environment).get(credentials, 'item_id');
new ShareService(environment).share(credentials, item);

As you can see, the SDK handles all encryption/decryption in the background. If you would like to manage that yourself, you can easily access the base API method via ItemService:

const itemAPI: Meeco.ItemAPI = new ItemService(...).getAPI(...);
const encryptedItem = api.get(id);
// ... do some client-side encryption modification;

Connecting Users and Sharing Data

A big part of Meeco is securely sharing data. In order to share data the users sharing the data must first be Connected.

import { InvitationService } from '@meeco/sdk';

const invitationService = new InvitationService(environment);

// Alice's Interaction, sending a connection invitation to Bob
const invitation = await invitationService.create('Bob', aliceUser);
// It is up to Alice to share `invitation.token` with Bob so he can accept it (e.g. via Email or SMS)

// Bob's interaction - accepting the invitation (providing the token he got from Alice)
const connection = await invitationService.accept('Alice', invitationToken, bobUser);

Alice and Bob are now connected and can share data. Let's share one of Alice's items with Bob.

import { ShareService } from '@meeco/sdk';

const shareService = new ShareService(environment);

 * Assuming we have connectionWithBob from ConnectionService.listConnections
 * and an aliceItem from ItemService.list
const share = await shareService.shareItem(alice,,;

// Bob should now be able to fetch this item
const item = await shareService.getSharedItem(bob,;

SDK Development

Generating Documentation

npm run docs to run TypeDoc. Note at time of writing we use the "library" mode for typedoc which requires the beta version (npm i typedoc@next)

Running the demo

There is a sample website that uses cryppo to perform various functions.

  1. Bootstrap the root project (npm run bootstrap in project root)
  2. npm run demo
  3. Visit http://localhost:1234

Note environment settings are saved to local storage for convenience



Last updated on 09 Nov 2021

Did you know?


Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.


Related posts

SocketSocket SOC 2 Logo


  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap


Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc