Socket
Socket
Sign inDemoInstall

kerberos

Package Overview
Dependencies
13
Maintainers
2
Versions
38
Alerts
File Explorer

Advanced tools

Install Socket

Detect and block malicious and high-risk dependencies

Install

    kerberos

Kerberos library for Node.js


Version published
Maintainers
2
Install size
606 kB
Created

Changelog

Source

1.0.0 (2018-08-15)

Bug Fixes

  • check-password: correctly validate parameters, fix test (b772dde)
  • common: ensure nan is being included everywhere appropriately (7bddb24)
  • context: add NewInstance methods, and make getters safer (fd4b852)
  • gss: fix issue with memory corruption (ff4167e)
  • kerberos: provide default gss flags (b365934)
  • legacy: support legacy import expectations (615b23f)
  • response: ensure null or client/server response is returned (083518f)
  • server: use the correct internal method name for server init (8c8dd35)
  • this: use the correct reference to this for object unwrapping (1acfb20)
  • unique_ptr: ensure we include <memory> where required (e3d9afb)
  • warnings: set clang compiler pragmas only when clang is detected (048479d)
  • win32: windows -> win32 in bindings.gyp (0221c06)
  • win32: cleanup client state in addon destructor (5394561)
  • win32: initialize with a domain, if one is provided (309ba61)

Features

  • async-worker: introduce a KerberosWorker using lambdas (1239ef7)
  • checkPassword: add implementation for checking krb5 passwords (60f476e)
  • clean: provide implementations for the clean methods (77a77ce)
  • client: add final wrap/unwrap api endpoints (016222f)
  • client: add implementation for client wrap/unwrap to win32 (994604c)
  • gss: add new methods for constructing state tracking types (274cad6)
  • jsdoc2md: add jsdoc2md support, and README template (60e1ee5)
  • kerberos: add getters to check for context completeness (6a9a01d)
  • kerberos: implement client/server init, move to worker file (1c857ea)
  • kerberos: return value for step is the challenge response (e153d24)
  • promises: allow to access all API by promise or callback (3b77430)
  • serverPrincipalDetails: add server pricipal details method (385fcd1)
  • src: begin to develop the new version of the module in src (f45da50)
  • sspi: introduce client initialization for SSPI (6a40301)
  • sspi: provide implementation for initializeClient (5943f1c)
  • step: implement client and server step methods (5a4327c)

0.0.23 07-03-2017

  • SSPI implemented missing _sspi_FreeCredentialsHandle to correctly cleanup credentials allocation on call to destructor of the C++ instance.
  • Updated nan.h dependency to 2.5.x series for Node 7.6.x or higher.

0.0.22 10-11-2016

  • Updated nan.h dependency to 2.4.x series for Node 6.8.x or higher.
  • The length calculations are off by one meaning it impossible to not set the password (Issue #54, http://www.github.com/tlbdk).

0.0.21 04-28-2016

  • Updated nan.h dependency to 2.3.x series for Node 6.0.

0.0.20 04-26-2016

  • Updated nan.h dependency to 2.2.x series.
  • Fixed minor compilation warnings due to v8 C++ ABI changes.

0.0.19 03-07-2016

  • Fix installation error (Issue #1).
  • Allow passing down off CANONICALIZE_HOST_NAME and SERVICE_REALM options.

0.0.18 01-19-2016

  • remove builderror.log.

0.0.17 10-30-2015

  • Reverted changes in package.json from 0.0.16.

0.0.16 10-26-2015

  • Removed (exit 0) on build to let correct failure happen.

Readme

Source

Kerberos

The kerberos package is a C++ extension that requires a build environment to be installed on your system. You must be able to build node.js itself to be able to compile and install the kerberos module. Furthermore the kerberos module requires the MIT Kerberos package to correctly compile on UNIX operating systems. Consult your UNIX operation system package manager what libraries to install.

{{% note class="important" %}} Windows already contains the SSPI API used for Kerberos authentication. However you will need to install a full compiler tool chain using visual studio C++ to correctly install the kerberos extension. {{% /note %}}

Diagnosing on UNIX

If you don’t have the build essentials it won’t build. In the case of linux you will need gcc and g++, node.js with all the headers and python. The easiest way to figure out what’s missing is by trying to build the kerberos project. You can do this by performing the following steps.

git clone https://github.com/christkv/kerberos.git
cd kerberos
npm install

If all the steps complete you have the right toolchain installed. If you get node-gyp not found you need to install it globally by doing.

npm install -g node-gyp

If correctly compiles and runs the tests you are golden. We can now try to install the kerberos module by performing the following command.

cd yourproject
npm install kerberos --save

If it still fails the next step is to examine the npm log. Rerun the command but in this case in verbose mode.

npm --loglevel verbose install kerberos

This will print out all the steps npm is performing while trying to install the module.

Diagnosing on Windows

A known compiler tool chain known to work for compiling kerberos on windows is the following.

  • Visual Studio c++ 2010 (do not use higher versions)
  • Windows 7 64bit SDK
  • Python 2.7 or higher

Open visual studio command prompt. Ensure node.exe is in your path and install node-gyp.

npm install -g node-gyp

Next you will have to build the project manually to test it. Use any tool you use with git and grab the repo.

git clone https://github.com/christkv/kerberos.git
cd kerberos
npm install
node-gyp rebuild

This should rebuild the driver successfully if you have everything set up correctly.

Other possible issues

Your python installation might be hosed making gyp break. I always recommend that you test your deployment environment first by trying to build node itself on the server in question as this should unearth any issues with broken packages (and there are a lot of broken packages out there).

Another thing is to ensure your user has write permission to wherever the node modules are being installed.

Keywords

FAQs

Last updated on 30 May 2018

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc