Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
@ministryofjustice/fb-jwt-client-node
Advanced tools
Base client for making requests to Form Builder platform endpoints that require JSON Web Tokens for authenctication
Node
npm install @ministryofjustice/fb-jwt-client-node
// load client class
const FBJWTClient = require('@ministryofjustice/fb-jwt-client-node')
// initialise client
const jwtClient = new FBJWTClient(serviceToken, serviceUrl, [errorClass])
serviceToken
Constructor will throw an error if no service token is passed
serviceUrl
Constructor will throw an error if no service url is passed
errorClass
By default, uses FB
// extend base class
class FBMyClient extends FBJWTClient {
constructor (serviceToken, serviceUrl, myVar) {
super(serviceToken)
// do something with additional constructor argument
this.myVar = myVar
}
}
const myClient = new FBMyClient('service token', 'http://myservice', 'my var')
// extend base class with custom error
class FBAnotherClient extends FBJWTClient {
constructor (serviceToken, serviceUrl) {
// create custom error class
class FBAnotherClientError extends FBJWTClient.prototype.ErrorClass {}
super(serviceToken, serviceUrl, FBAnotherClientError)
super(serviceToken)
}
}
generateAccessToken
Generate JWT access token
createEndpointUrl
Return user-specific endpoint
sendGet
Handle client get requests
sendPost
Handle client post requests
encrypt
Encrypt data with AES 256
decrypt
Decrypt data
handleRequestError
Handle client response errors
createRequestOptions
Create request options
throwRequestError
Convenience function for throwing errors
See documentation in code for further details and fb-user-datastore-client-node
and fb-submitter-client-node
for examples.
FAQs
Form Builder JSON Web Token Client (Node)
The npm package @ministryofjustice/fb-jwt-client-node receives a total of 8 weekly downloads. As such, @ministryofjustice/fb-jwt-client-node popularity was classified as not popular.
We found that @ministryofjustice/fb-jwt-client-node demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 12 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.