Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

a12n-server

Package Overview
Dependencies
Maintainers
1
Versions
44
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

a12n-server

A ready-to-launch User and Authentication system for those that don't want to build it

  • 0.3.3
  • Source
  • npm
  • Socket score

Version published
Weekly downloads
45
increased by4400%
Maintainers
1
Weekly downloads
 
Created
Source

Authentication API

This package aims to provide a simple authentication system. The goal is to provide something good enough for prototyping and in-house deployments.

The idea behind this came from the fact that I found myself building authentication systems over and over again for new jobs and customers, but I had trouble finding a solution that struck the right balance between simplicity and the features I needed.

So, the last time I had to build this I decided I would make a simple generic system and open source it, so hopefully I can re-use this for the next time I need this.

Requirements

  • Node.js 8.x
  • MySQL

Features

  • A simple browseable API.
  • OAuth2
    • Supported grants: implicit, client_credentials and authorization_code.
    • OAuth2 discovery document.
  • Google Authenticator (TOTP).
  • A simple, flat, permission model.

The state of this project

If you are thinking of building a new authentication system, and decide to use this project instead, you get a lot of features for free.

It's not yet in a state where it's "install-and-go", but the goal is to eventually get there.

Here's a few key features that I'd imagine people might want, but hasn't been built yet:

  • A 'lost password' feature.
  • A registration API (Both OAuth2 clients and users all need to be 100% managed by manually adding database records).
  • A management interface. This project will be API-only, but a separate admin SPA would be sweet.
  • OAuth2 scopes.
  • Middlewares for other frameworks and languages that can validate Bearer tokens by calling this API.
  • JWT. Maybe.
  • Configuration to turn certain things off, like TOTP.
  • Documentation and tutorials.

So currently, there's definitely still a lot to do. If you need any of the above, ask. Chances are that I can find the time to priorize it so you can start using it. Contributions are also very welcome.

But yea, I want to be clear. This project is used in production, but 'alpha' quality if you're looking for something polished. It's actively developed.

My hope is that people will find this and decide that this project is a great starting point instead of building something 100% from scratch.

FAQs

Package last updated on 01 Nov 2018

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc