ocbesbn-bouncer
Advanced tools
Midldleware for individual nodejs services, takes care of following items
var defaultOptions =
{
host: 'consul',
serviceName: '',
acl: require('./acl.json')
}
Bouncer should be added as a middleware to the ocbesbn-web-init.
var bouncer = require('ocbesbn-bouncer');
{
...
middlewares: [bouncer({
host: 'consul',
serviceName: 'user', //says user service
acl: require('mypath/acl.json'),
aclServiceName: 'acl'
}).Middleware]
...
}
var bouncer = require('ocbesbn-bouncer');
{
...
middlewares: [bouncer({
host: 'consul',
serviceName: 'user', //example
acl: {
"Health": { `// Key represents resource group Id`
"translations": { `// Translation for the resource group`
"name" : { `// Name of the resource group by language`
"en": "Health check",
"de": ""
},
"description": { `// Short description, explains about the resource group`
"en": "Health check endpoint used by service checks",
"de": ""
}
},
"resources": [ `// List of resources`
{
"type": "rest", `// Type of the resource, mostly be rest (API endpoints) for now`
"resourceId": "/api/health/check", `// Regular expression/complete endpoint (route of API endpoint)`
"actions": ["edit", "read"], `// Actions allowed edit=PUT, read=GET, delete=DELETE, create=POST`
"fields": ['result', 'more.somefield'] `// defines what are all the fields can be sent to the user/requestor, nested fields can be added like OBJECT.SOMEKEY..`
}
]
}
}
},
aclServiceName: 'acl'
}).Middleware]
...
}
Mostly the resource id is a string or regular expression, along with that, we also a pattern to replace with current user information. For E.g
The below resource Id contains ${_current_user_id}, which represents current user id, means Id of the user who ever is requesting this particular URI / resource.
"resourceId": "/users/${_current_user_id}/profile"
Here are some of the pattern which represents current user's information
${_current_user_id} - current user's id
${_current_tenant_id} - current user's tenant id
${_current_customer_id} - current user's customer id
${_current_supplier_id} - current user's supplier id
FAQs
Express middleware for ACl service and validation
The npm package ocbesbn-bouncer receives a total of 0 weekly downloads. As such, ocbesbn-bouncer popularity was classified as not popular.
We found that ocbesbn-bouncer demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Security News
Ruby maintainers from Bundler and rbenv teams are building rv to bring Python uv's speed and unified tooling approach to Ruby development.
Security News
Following last week’s supply chain attack, Nx published findings on the GitHub Actions exploit and moved npm publishing to Trusted Publishers.