Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
passport-predix-oauth
Advanced tools
Readme
Passport strategy for authenticating with Predix UAA service using the OAuth 2.0 API.
This strategy is similar to the CloudFoundry strategy but has several benefits when using Predix UAA.
The Predix platform provides UAA as a service for developers to authenticate their application users. As a Predix platform user, you can secure access to your application by obtaining a UAA instance from the Cloud Foundry marketplace and configuring it to authenticate trusted users.
$ npm install passport-predix-oauth
Check out the app.js
file in this application to see how to use this Passport strategy in an Express web application.
https://github.com/predixdev/predix-nodejs-starter
var passport = require('passport');
var PredixStrategy = require('passport-predix-oauth').Strategy;
var predixStrategy = new PredixStrategy({
clientID: CLIENT_ID,
clientSecret: CLIENT_SECRET,
callbackURL: CALLBACK_URL,
uaaURL: UAA_URL
},refreshStrategy.getOAuth2StrategyCallback() //Create a callback for OAuth2Strategy
function(accessToken, refreshToken, profile, done) {
token = accessToken;
done(null, profile);
});
passport.use(predixStrategy);
In most cases, just setting the uaaURL is all you need. The strategy will append paths to this URL for authorization, token, and user profile. If desired, you can pass in those three values instead of uaaURL: authorizationURL, tokenURL, and userProfileURL. (If set, uaaURL will override the others.)
Copyright © 2015, 2016, 2017 GE Global Research. All rights reserved.
The copyright to the computer software herein is the property of GE Global Research. The software may be used and/or copied only with the written permission of GE Global Research or in accordance with the terms and conditions stipulated in the agreement/contract under which the software has been supplied.
FAQs
Predix UAA authentication strategy for Passport.
The npm package passport-predix-oauth receives a total of 208 weekly downloads. As such, passport-predix-oauth popularity was classified as not popular.
We found that passport-predix-oauth demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.