Security News
Crates.io Users Targeted by Phishing Emails
The Rust Security Response WG is warning of phishing emails from rustfoundation.dev targeting crates.io users.
By Sarah Gooding - Sep 12, 2025
multicolour-auth-oauth
Advanced tools
multicolour-auth-oauth
OAuth auth plugin for Multicolour Servers, is a wrapper around the Bell library.
bell ships with built-in support for authentication using Facebook, GitHub, Google, Instagram, LinkedIn, Twitter, Yahoo, Foursquare, VK, ArcGIS Online, Windows Live, Nest, Phabricator, BitBucket, Dropbox, Reddit and Tumblr. It also supports any compliant OAuth 1.0a and OAuth 2.0 based login services with a simple configuration object.
To use:
"use strict"
// Configure our service.
const my_service = require("multicolour")
// Configure the service core and scan for content.
.new_from_config_file_path("./config.js")
.scan()
// Register the server plugin.
.use(require("multicolour-server-hapi"))
// Register the auth plugin to the server.
.get("server")
.use(require("multicolour-auth-oauth"))
// Start the service.
my_service.start()
Config
Your config is where you will enter your providers, you must be sure that you have created the necessary apps for relevant services before you will be able to authenticate with them.
If, for example you wanted to have a Login With Twitter, Facebook & Github your config might look something like:
{
...
auth: {
password: "YOUR SECURE COOKIE PASSWORD HERE",
redirect: "http://localhost:1811/user-logged-in",
providers: [
{
provider: "twitter",
clientId: "YOUR CLIENT ID HERE",
clientSecret: "YOUR CLIENT SECRET HERE"
},
{
provider: "github",
clientId: "YOUR CLIENT ID HERE",
clientSecret: "YOUR CLIENT SECRET HERE"
},
{
provider: "facebook",
clientId: "YOUR CLIENT ID HERE",
clientSecret: "YOUR CLIENT SECRET HERE"
}
]
},
...
}
This will create several new endpoints which are visible on your multicolour docs page under the session endpoint.
Redirects
By default, when you auth with a provider you'll be redirected to the resulting session model, this is unlikely to be what you wanted so you configure this by setting the redirect property in the auth config.
Keywords
FAQs
OAuth auth plugin for Multicolour HapiJS Servers
The npm package multicolour-auth-oauth receives a total of 0 weekly downloads. As such, multicolour-auth-oauth popularity was classified as not popular.
We found that multicolour-auth-oauth demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 30 Mar 2017
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Introducing Custom Pull Request Alert Comment Headers
Socket now lets you customize pull request alert headers, helping security teams share clear guidance right in PRs to speed reviews and reduce back-and-forth.
By André Staltz - Sep 12, 2025
Product
Rust Support Now in Beta
Socket's Rust support is moving to Beta: all users can scan Cargo projects and generate SBOMs, including Cargo.toml-only crates, with Rust-aware supply chain checks.
By Mikola Lysenko, Trevor Norris - Sep 11, 2025