Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
azure-graphapi
Advanced tools
Node.js package for making Azure Active Directory Graph API calls.
Node.js package for making Azure Active Directory Graph API calls
v0.1.0
npm install azure-graphapi --save
var GraphAPI = require('azure-graphapi');
var graph = new GraphAPI(tenant, clientId, clientSecret);
// The tenant, clientId, and clientSecret are usually in a configuration file.
graph.get('users/a8272675-dc21-4ff4-bc8d-8647830fa7db', function(err, user) {
if (!err) {
console.dir(user);
}
}
This package provides an HTTPS interface to the Azure Active Directory Graph API. You will need the tenant (i.e., domain) of your Azure AD instance as well as an application within that AD instance that has permissions to access your directory. This application is identified by a clientId
and authenticated using a clientSecret
. The clientSecret
is also called the application key.
The typical verbs are supported (GET, POST, PUT, PATCH, and DELETE). The getObjects
method is useful for reading a large number of objects. Azure AD limits each response to 100 objects. The getObject
method follows the odata.nextLink
and accumulates all objects of a specific object type.
This section describes the constructor returned by this module and the available instance methodss.
Creates a new GraphAPI
instance. If the apiVersion
is not specified, it defaults to version 1.6.
var GraphAPI = require('azure-graphapi');
var graph = new GraphAPI(tenant, clientId, clientSecret);
Each of these methods takes ref
parameter with optional replacement args
. These are passed to strformat to create the actual URI reference. This allows for the following constructs:
var person = {
userId: 'a8272675-dc21-4ff4-bc8d-8647830fa7db'
};
graph.get('users/{0}', person.userId, function(err, user) {
if (!err) {
console.dir(user);
}
}
The following REST-style URI reference is also available:
var person = {
userId: 'a8272675-dc21-4ff4-bc8d-8647830fa7db'
};
graph.get('users/{userId}', person, function(err, user) {
if (!err) {
console.dir(user);
}
}
In all cases, do not prefix the ref
with a forward slash and do not add the API version as this is added automatically based on the API version specified in the constructor.
Performs an HTTPS GET request. The callback signature is callback(err, response)
.
Performs an HTTPS POST request. The callback signature is callback(err, response)
.
Performs an HTTPS PUT request. The callback signature is callback(err, response)
.
Performs an HTTPS PATCH request. The callback signature is callback(err, response)
.
Performs an HTTPS DELETE request. The callback signature is callback(err)
.
Performs an HTTPS GET request and accumulates all objects having the specified objectType
(e.g., "User"). The callback signature is callback(err, objects)
. This method follows the odata.nextLink
property in the response and continues until no more batches of objects are available.
error_description
and odata.error
messages from JSON responses to unsuccessful requests. These become part of the error message in the err
object provided to the callback method.contentType
is null and the request data is a string, it is assumed to be form data and is sent as application/x-www-form-urlencoded
.contentType
is null and the request data is a JavaScript object, it is send as application/json
.value
property, it is that value that is passed to the callback function and not the entire response object.(The MIT License)
Copyright (c) 2016 Frank Hellwig
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
FAQs
Node.js package for making Azure Active Directory Graph API calls.
The npm package azure-graphapi receives a total of 541 weekly downloads. As such, azure-graphapi popularity was classified as not popular.
We found that azure-graphapi demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.