Security News
PyPI Now Supports iOS and Android Wheels for Mobile Python Development
PyPI now supports iOS and Android wheels, making it easier for Python developers to distribute mobile packages.
By Sarah Gooding - Feb 12, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
auth-api-http-client
Advanced tools
Package was removed
Sorry, it seems this package was removed from the registry
auth-api-http-client
Create your own authentication api with this boilerplate.
- 1.0.0
- unpublished
- latest
- npm
Auth
Create your own authentication api with this boilerplate.
Deployment
Clone this reposistory
Deploy global table
Update table-production.yaml with desired regions. Use table-development.yaml for development.
Configuration
| Parameter | Required | Description | Example/Default |
|---|---|---|---|
| TableName | Yes | Name of the Dynamodb table | bot41-auth-table |
Command
sam build -t table-production.yaml && sam deploy \
--stack-name bot41-auth-table \
--capabilities CAPABILITY_IAM \
--s3-bucket bot41-us-east-1 \
--s3-prefix auth-table \
--region us-east-1 \
--profile feedme \
--parameter-overrides ParameterKey=TableName,ParameterValue=bot41-auth-table
Deploy auth api
- Run
pnpm install - Run
pnpm esbuild
Configuration
| Parameter | Required | Description | Example/Default |
|---|---|---|---|
| EnvType | No | Either production or development | development |
| TableName | Yes | Name of the Dynamodb table | bot41-auth-table |
| AppUrl | Yes | Url of the app that is using this auth api. (CORS) | https://app.example.com |
| AuthUrl | Yes | Url of where this api is deployed to. (Cookie) | api.example.com |
| GoogleClientId | (Yes) | Required when you expect clients to login with type="google" | |
| GoogleClientSecret | (Yes) | Required when you expect clients to login with type="google" | |
| CookieName | No | Name of the cookie | r_id |
| CookieExpiresIn | No | Expiration time of the cookie | 315360000 (10 years) |
| TokenExpiresIn | No | Expiration time of the access token | 15m (15 minutes; https://github.com/vercel/ms) |
| AuthorizerName | Yes | Name of the exported authorizer function | bot41-auth-api-dev-authorizer |
| RegionalCertificateArn | Yes in production | Arn of the certificate for the custom domain (api.example.com) |
Development
sam build && sam deploy \
--stack-name bot41-auth-api-dev \
--capabilities CAPABILITY_IAM CAPABILITY_AUTO_EXPAND \
--region eu-central-1 \
--profile feedme \
--s3-bucket bot41-eu-central-1 \
--s3-prefix auth-api-dev \
--parameter-overrides ParameterKey=AppUrl,ParameterValue=http://localhost:3000 ParameterKey=AuthUrl,ParameterValue=api.bot41.com ParameterKey=GoogleClientId,ParameterValue=xxx.apps.googleusercontent.com ParameterKey=GoogleClientSecret,ParameterValue=xxx ParameterKey=AuthorizerName,ParameterValue=bot41-auth-api-dev-authorizer ParameterKey=TableName,ParameterValue=bot41-auth-table-dev
Production
sam build && sam deploy \
--stack-name bot41-auth-api \
--capabilities CAPABILITY_IAM CAPABILITY_AUTO_EXPAND \
--region eu-central-1 \
--profile feedme \
--s3-bucket bot41-eu-central-1 \
--s3-prefix auth-api \
--parameter-overrides ParameterKey=AppUrl,ParameterValue=https://app.bot41.com ParameterKey=AuthUrl,ParameterValue=api.bot41.com ParameterKey=EnvType,ParameterValue=production ParameterKey=GoogleClientId,ParameterValue=xxx.apps.googleusercontent.com ParameterKey=GoogleClientSecret,ParameterValue=xxx ParameterKey=AuthorizerName,ParameterValue=bot41-auth-api-authorizer ParameterKey=TableName,ParameterValue=bot41-auth-table ParameterKey=RegionalCertificateArn,ParameterValue=arn:aws:acm:eu-central-1:xxx:certificate/xxx
Integration
Backend
The contents of the access token is described as:
type AccessToken = {
type: "user";
userId: string;
name: string;
picture?: string | undefined;
} | {
createdAt: number;
type: "client";
name: string;
clientId: string;
}
The entity object is stored in the authorizer context:
event.requestContext.authorizer.entity
A helper function for backend endpoints could look like this:
import { APIGatewayProxyEvent } from "aws-lambda";
import * as z from "zod";
const userAccessTokenSchema = z.object({
userId: z.string(),
name: z.string(),
picture: z.string().optional(),
type: z.literal("user"),
});
const clientAccessTokenSchema = z.object({
name: z.string(),
clientId: z.string(),
createdAt: z.number(),
type: z.literal("client"),
});
const accessTokenSchema = z.union([
userAccessTokenSchema,
clientAccessTokenSchema,
]);
const getEntity = (event: APIGatewayProxyEvent) => {
const entity = accessTokenSchema
.parse(JSON.parse(event.requestContext.authorizer?.["entity"] as string));
return entity;
}
FAQs
Create your own authentication api with this boilerplate.
The npm package auth-api-http-client receives a total of 0 weekly downloads. As such, auth-api-http-client popularity was classified as not popular.
We found that auth-api-http-client demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 07 Sep 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Create React App Officially Deprecated Amid React 19 Compatibility Issues
Create React App is officially deprecated due to React 19 issues and lack of maintenance—developers should switch to Vite or other modern alternatives.
By Sarah Gooding - Feb 11, 2025
Security News
Oracle Drags Its Feet in the JavaScript Trademark Dispute
Oracle seeks to dismiss fraud claims in the JavaScript trademark dispute, delaying the case and avoiding questions about its right to the name.
By Sarah Gooding - Feb 07, 2025