Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
meddelare-server
Advanced tools
Install custom social share counters on your website with your own hosted solution, which only makes a single API request and loads minimal or zero assets to display the counters.
Install custom social share counters on your website with your own hosted solution, which only makes a single API request and loads minimal or zero assets to display the counters.
Check out meddelare.com and view examples on meddelare.com/meddelare-examples.
This is an open source and self-hosted alternative to sharing services such as AddThis and ShareThis. Because you run the proxy server yourself, you are also defending your users' privacy against the social networks' tracking. Users only opt in to their tracking once they decide to click a share button -- never implicitly just because they visited your page.
# Clone the repository
git clone https://github.com/meddelare/meddelare-node-server.git
cd meddelare-node-server
# Install dependencies
npm install
# Run the server
node app/server.js
See this example API call. The response is delivered as JSON, or JSONP if you specify a callback.
{
"facebook": 5281,
"googleplus": 42,
"twitter": 8719
}
View examples on meddelare.com/meddelare-examples.
We would love to feature your widget design!
Please submit your design in a pull request to meddelare-examples and we will add it to our list.
You can do anything you want to display your share counts when using the API. Below is a very simple example showing the count per network -- see this example API call with text. Note that we are using a CloudFront distribution domain in the examples.
<!DOCTYPE html>
<html>
<body>
<h3>Twitter</h3>
<span id="twitter"></span>
<h3>Facebook</h3>
<span id="facebook"></span>
<h3>Google Plus</h3>
<span id="googleplus"></span>
<script src="https://cdnjs.cloudflare.com/ajax/libs/jquery/2.0.3/jquery.min.js"></script>
<script>
$.ajax("https://d12cncu17l9pr5.cloudfront.net/?networks=facebook,twitter,googleplus&url=https://meddelare.com", {
success: function (res, err) {
$.each(res, function (network, value) {
$("#" + network).text(value);
});
}
});
</script>
</body>
</html>
Options are passed using query parameters in the url.
Networks
Currently Twitter, Facebook and Google Plus are supported.
Use the networks
query parameter to specify which ones you want to use as a comma-separated list (no spaces), for example networks=facebook,twitter,googleplus
or networks=facebook
.
Url (optional)
Use the url
parameter to specify the address which you want to retrieve the number of shares for, for example url=https://meddelare.com
.
If you don't specify a url
then the server will try to get the referring url's (HTTP Referer
header) share count. This makes it easy to dynamically get the counts for the page currently open in the browser.
Callback (optional)
Specify the callback
parameter to have the results delivered as JSONP instead of plain JSON.
Configure the node.js server instance at launch time. Where you set the environment variable depends on your system, but examples below are using the command line.
HTTP cache time
The environment variable CACHE_TIME
can be used to set the time, in seconds, that the browser (or CDN) should cache results. Cached results vary on the request query string. To set the HTTP cache to ten minutes, use CACHE_TIME=600 node app/server.js
.
Note that the in-memory cache is handled in an underlying layer and configured separately; this currently requires modifying the source code to pass the correct options.
Cross-domain requests
The server has cross-origin resource sharing (CORS) enabled for whitelisted domains, which need to be configured. Set the environment variable DOMAIN_WHITELIST
to a list of comma-separated (no spaces) protocols+domains which are allowed to use your (private) meddelare-node-server instance.
This example whitelists domains Meddelare uses: DOMAIN_WHITELIST='https://meddelare.com,https://meddelare.github.io,https://meddelare-node-server.herokuapp.com,https://d12cncu17l9pr5.cloudfront.net' node app/server.js
If you want to reduce your server load it would be wise to throw up a cache, such as CloudFront, in front.
In CloudFront, just make sure you to inherit cache control directives from the server, enable query string forwarding and whitelist Origin
HTTP headers. Either use your CloudFront distribution domain to access the API server or CNAME
it with a custom domain of your choice.
Many thanks goes out to Taskforce for their social-buttons-server (released into the Public Domain) -- especially the creator @thomasdavis and contributor @beaugunderson. This software, meddelare-node-server, is based on their work.
Copyright (c) 2015 Team Meddelare https://meddelare.com/ All rights reserved.
When using meddelare-node-server, comply to the MIT license.
FAQs
Install custom social share counters on your website with your own hosted solution, which only makes a single API request and loads minimal or zero assets to display the counters.
The npm package meddelare-server receives a total of 3 weekly downloads. As such, meddelare-server popularity was classified as not popular.
We found that meddelare-server demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.