Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
interfacer
Advanced tools
Interfacer.js is a convenient module for work with RESTful API from Client.
Key Features:
yarn add interfacer
or
npm install interfacer --save
The most advanced feature Interfacer.js provides is 3 level of configuration (Application, Interface, Call). In configuration you can define things like defaultError
, domain
, protocol
, and custom queryparser
. Each level of configuration overrides previous (more global ones), so you can change everything, mid-action, on the fly if you need to.
Don't panic when you see all them references to Redux like dispatch
. Their's purpose is purely illustrative. you can provide any kind of function, that handles your data.
import interfacer from 'interfacer';
const globalConfig = {
protocol: 'https',
domain: 'localhost',
port: 8000,
defaultError: new Error('Something broke'),
errorHandler: ({error, message}) => dispatch({ type: 'API_ERROR', payload: message })
}
const createInterface = interfacer(globalConfig);
All of above settings will apply to every interface you create by this createInterface
function, unless overwritten by later configurations in more "local" level.
Also can be perceived as "collection level". In for example Redux I'd recommend to have one interface for each collection reducer.
const localConfig = {
defaultError: new Error('Articles API error'),
constructFields: FieldsConstructor,
headers: { 'Content-Type': 'text/html' }
request: { mode: 'cors' },
errorHandler: err => dispatch({ type: 'API_ERROR', payload: err })
}
const articleInterface = createInterface('/articles', localConfig);
On Interface level you always specify subdomain
. That is route that will be appended to domain
in all requests you do, with this interface.
Obviously you can (and will) have many different Interfaces.
This final and most local level references to a certain calls you make with your interface. .send()
triggers the fetch and returns a promise.
const reqOptions = {
query: { fields: ['title', 'author']},
defaultError: new Error('Articles Collection failed to fetch')
};
articleInterface
.getCollection(reqOptions)
.then(data =>
dispatch({ type: 'RECIEVE_ARTICLES', payload: data.payload })
);
Once you've created your interface network and configured it, it's time for you to do some fetching. Every interface has following methods get
, getCollection
, update
, create
and remove
. Once called, each function returns a Promise, that contains response of the fetch
as a frist parameter. Here is their API annotation.
get
args:
id :string | number, options :Object = {}
getCollection
args:
options :Object = {}
create
args:
body :Object, options? :Object
remove
args:
id :ID, options? :Object
update
args:
id :string, body :Object, options? :Object
Property | Meaning | Type | Default |
---|---|---|---|
error | Error that gets sent to you via throwError fn once it occures | string or object | "unhandled" |
defaultError | If no error is found, defaultError gets sent to you | string or object | "unhandled" |
errorHandler | Function that gets called if error occurs. As first argument your error will be passed | console.error | |
headers | Object containting headers your request should have | object | "Content-Type": "application/json" |
request | This object will be added to request options. It's the same as pasting an object into second argument of fetch function | {} | |
query | Object that gets passed to queryparser fn | object | null |
port | Number that gets appended to your domain | number or string or nothing | null |
domain | baseUrl that your API runs on | string | localhost |
protocol | Gets prepended to your domain | http or https | http |
queryparser | Function that transform query object into a query string | function | queryparser |
You can pass your own queryparser
into any config, but you can also use default one. Annotation of queryparser
looks like this
queryparser(query :Object) => string
Default queryparser
builds queries like this...
queryparser({
filters: 'over18',
fields: ['title', 'years old']
});
// -> 'filters=over18&fields=title&fields=years%20old'
Thank you for using this package. If you have any issues, questions or suggestions, create an issue please, I'll be happy to answer it.
FAQs
Module for working with REST API
The npm package interfacer receives a total of 1 weekly downloads. As such, interfacer popularity was classified as not popular.
We found that interfacer demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.