node-my-info-sg
Advanced tools
Small wrapper around Singapore MyInfo V3 API for node JS. Wraps the scary-scary 😱 security logic into easy to use APIs
Lightly refactored from the excellent official example 🎉
Initialise MyInfoClient
const MyInfoClient = require('node-my-info-sg');
const myInfoClient = new MyInfoClient({
// MyInfo API base URL (sandbox/test/production)
// https://www.ndi-api.gov.sg/assets/lib/trusted-data/myinfo/specs/myinfo-kyc-v3.0.1.yaml.html#section/Environments/Available-Environments
baseUrl: 'https://sandbox.api.myinfo.gov.sg',
// Api auth level (L0 for sandbox; Otherwise L2)
authLevel: 'L0',
// Public key from MyInfo Consent Platform given to you during onboarding for RSA digital signature
publicCertContent: './ssl/stg-auth-signing-public.pem',
// Your private key for RSA digital signature
privateKeyContent: './ssl/stg-demoapp-client-privatekey-2018.pem',
// Your client_id provided to you during onboarding
clientId: 'STG2-MYINFO-SELF-TEST',
// Your client_secret provided to you during onboarding
clientSecret: '44d953c796cccebcec9bdc826852857ab412fbe2',
// Redirect URL for your web application
// https://www.ndi-api.gov.sg/library/trusted-data/myinfo/implementation-technical-requirements (Callback URLs)
redirectUrl: 'http://localhost:3001/callback',
});
Generate the OAuth2 url
var authoriseUrl = myInfoClient.getAuthoriseUrl(purpose, attributes);
// Then pass this to the frontend, and redirect them
// (or open it on a webview for your mobile app)
Get the person object
myInfoClient.getToken(code) // Exchange authorisation code with usable access token
.then((accessToken) => myInfoClient.getPerson(accessToken, _attributes)) // Get the person object
.then((personData) => {
console.log("Person Data:");
console.log(JSON.stringify(personData))
});
In the example directory, run:
yarn install
./start.sh
FAQs
[](https://badge.fury.io/js/node-my-info-sg) [](https://circleci.com/gh/stashaway-engineering/node-my-info-
The npm package node-my-info-sg receives a total of 10 weekly downloads. As such, node-my-info-sg popularity was classified as not popular.
We found that node-my-info-sg demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
The Socket Research Team has discovered six new malicious npm packages linked to North Korea’s Lazarus Group, designed to steal credentials and deploy backdoors.
Security News
Socket CEO Feross Aboukhadijeh discusses the open web, open source security, and how Socket tackles software supply chain attacks on The Pair Program podcast.
Security News
Opengrep continues building momentum with the alpha release of its Playground tool, demonstrating the project's rapid evolution just two months after its initial launch.