Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

oauth-1.0a

Package Overview
Dependencies
Maintainers
1
Versions
23
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

oauth-1.0a

OAuth 1.0a Request Authorizer

  • 0.0.1
  • Source
  • npm
  • Socket score
Version published
Weekly downloads
336K
increased by62.28%
Maintainers
1
Weekly downloads
 
Created

What is oauth-1.0a?

The oauth-1.0a npm package is a lightweight library for implementing OAuth 1.0a authentication in Node.js applications. It provides utilities for generating OAuth signatures, creating authorization headers, and handling the OAuth flow.

What are oauth-1.0a's main functionalities?

Generate OAuth Signature

This feature allows you to generate an OAuth signature for a given request. The code sample demonstrates how to create an OAuth instance, define the request data, and generate the signature using the consumer and token credentials.

const OAuth = require('oauth-1.0a');
const crypto = require('crypto');

const oauth = OAuth({
  consumer: { key: 'your-consumer-key', secret: 'your-consumer-secret' },
  signature_method: 'HMAC-SHA1',
  hash_function(base_string, key) {
    return crypto.createHmac('sha1', key).update(base_string).digest('base64');
  }
});

const request_data = {
  url: 'https://api.example.com/resource',
  method: 'GET'
};

const token = {
  key: 'your-access-token',
  secret: 'your-token-secret'
};

const signature = oauth.authorize(request_data, token);
console.log(signature);

Create Authorization Header

This feature allows you to create an OAuth authorization header for a given request. The code sample demonstrates how to generate the authorization header using the OAuth instance and the request data.

const OAuth = require('oauth-1.0a');
const crypto = require('crypto');

const oauth = OAuth({
  consumer: { key: 'your-consumer-key', secret: 'your-consumer-secret' },
  signature_method: 'HMAC-SHA1',
  hash_function(base_string, key) {
    return crypto.createHmac('sha1', key).update(base_string).digest('base64');
  }
});

const request_data = {
  url: 'https://api.example.com/resource',
  method: 'GET'
};

const token = {
  key: 'your-access-token',
  secret: 'your-token-secret'
};

const authorizationHeader = oauth.toHeader(oauth.authorize(request_data, token));
console.log(authorizationHeader);

Handle OAuth Flow

This feature demonstrates how to handle the OAuth flow to access a protected resource. The code sample shows how to generate the authorization header and make an authenticated request using the axios library.

const OAuth = require('oauth-1.0a');
const crypto = require('crypto');
const axios = require('axios');

const oauth = OAuth({
  consumer: { key: 'your-consumer-key', secret: 'your-consumer-secret' },
  signature_method: 'HMAC-SHA1',
  hash_function(base_string, key) {
    return crypto.createHmac('sha1', key).update(base_string).digest('base64');
  }
});

async function getProtectedResource() {
  const request_data = {
    url: 'https://api.example.com/resource',
    method: 'GET'
  };

  const token = {
    key: 'your-access-token',
    secret: 'your-token-secret'
  };

  const authorizationHeader = oauth.toHeader(oauth.authorize(request_data, token));

  try {
    const response = await axios.get(request_data.url, { headers: authorizationHeader });
    console.log(response.data);
  } catch (error) {
    console.error(error);
  }
}

getProtectedResource();

Other packages similar to oauth-1.0a

    oauth

    The 'oauth' package is a comprehensive library for OAuth 1.0 and OAuth 2.0 authentication. It provides a higher-level abstraction compared to oauth-1.0a and supports both OAuth versions, making it more versatile for different authentication needs.

    simple-oauth2

    The 'simple-oauth2' package is designed for OAuth 2.0 authentication and provides a simple and easy-to-use API for obtaining access tokens and making authenticated requests. It does not support OAuth 1.0a, so it is not a direct replacement for oauth-1.0a but is useful for OAuth 2.0 scenarios.

    passport-oauth1

    The 'passport-oauth1' package is a Passport strategy for OAuth 1.0a authentication. It integrates with the Passport.js authentication middleware, making it a good choice for applications that use Passport for managing authentication strategies.

Keywords

FAQs

Package last updated on 14 Jan 2014

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

The Risks of Misguided Research in Supply Chain Security

Security News

The Risks of Misguided Research in Supply Chain Security

Snyk's use of malicious npm packages for research raises ethical concerns, highlighting risks in public deployment, data exfiltration, and unauthorized testing.

By Sarah Gooding  -  Jan 14, 2025
pnpm 10.0.0 Blocks Lifecycle Scripts by Default

Security News

pnpm 10.0.0 Blocks Lifecycle Scripts by Default

pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.

By Sarah Gooding  -  Jan 10, 2025
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc