Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
oauth-token-generator-google
Advanced tools
After many battles with nodejs server authentication against Google APIs (Drive in particular), I've come up with an NPM module that needs only a well configured client_secrets.json and it will save the token locally and try to reuse it when it's there.
Readme
After many battles with nodejs server authentication against Google APIs (Drive in particular), I've come up with an NPM module that needs only a well configured client_secrets.json and it will save the token locally and try to reuse it when it's there. After retrieving a token, a full oauth client is returned with that token in place. That client can be used for googleapi calls configured for the client_id in the client_secret.json
My reasons for doing this may be inferred from https://github.com/google/google-api-nodejs-client/issues/266#issuecomment-368151072
This script is intended to help you use a google API client_secret.json file to obtain an OAUTH token (json data) and store it next to the source .json for future use.
To acomplish this, you will be given an URL that you can follow to
get a "code" which can then be used to get a token. As an I/O solution
I run this script with node --inspect-brk
and then I catch the debugger
after the URL is logged to the console. Once I have the code, I can run
code="{codeFromUrl}"
and resume the script.
See test/index.js for a full example of how to use this library and retrieve a list of files in root of Drive for the configured credentials.
The default test assumes you have created a private/client_secret.json in the project folder. The private/ folder is in .gitignore and that path is fully configurable as the only thing provided when executing the module.
npm test
to run basic tests.
npm run test:dev
to test with debugging (to troubleshoot your file path, contents, etc.. until you get things working as expected with this plugin)
FAQs
After many battles with nodejs server authentication against Google APIs (Drive in particular), I've come up with an NPM module that needs only a well configured client_secrets.json and it will save the token locally and try to reuse it when it's there.
The npm package oauth-token-generator-google receives a total of 0 weekly downloads. As such, oauth-token-generator-google popularity was classified as not popular.
We found that oauth-token-generator-google demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.