piral-auth
Advanced tools
This is a plugin that only has a peer dependency to piral-core. What piral-auth brings to the table is a set of Pilet API extensions that can be used with piral or piral-core.
The set includes the getUser API to retrieve the user, login/logout functionality and user state management incl. features and permissions.
By default, these API extensions are not integrated in piral, so you'd need to add them to your Piral instance.
Authentication is a basic need of almost every application. This plugin just stores given user information in the central store and makes this information available to all pilets via the pilet API. How to get this user information and where specific authorization (e.g., in form of a token) is stored is up to the application owner. Thus this plugin should only be used in combination with other mechanisms.
Alternatives: Use a plugin that is specific to your method of authentication (e.g., piral-adal for Microsoft, piral-oauth2 for generic OAuth 2, piral-oidc for generic OpenID Connect etc.) or just a library.
The following functions are brought to the Pilet API.
getUser()Gets the currently authenticated user or undefined if no user is authenticated.
::: summary: For pilet authors
You can use the getUser function from the Pilet API to obtain information about the currently logged in user.
Example use:
import { PiletApi } from '<name-of-piral-instance>';
export function setup(piral: PiletApi) {
const currentUser = piral.geUser();
}
Note that the retrieved user data may change if the Piral instance supports an "on the fly" login (i.e., a login without redirect/reloading of the page).
:::
::: summary: For Piral instance developers
The provided library only brings API extensions for pilets to a Piral instance.
For the setup of the library itself you'll need to import createAuthApi from the piral-auth package.
import { createAuthApi } from 'piral-auth';
The integration looks like:
const instance = createInstance({
// important part
plugins: [createAuthApi()],
// ...
});
The options include defining an existing user (e.g., obtained by a redirect).
const instance = createInstance({
// important part
plugins: [createAuthApi({
user: {
firstName: 'Hans',
lastName: 'Zimmermann',
// ...
},
})],
// ...
});
:::
The extension gives the core a set of new events to be listened to:
change-userThe events are fully typed.
Piral is released using the MIT license. For more information see the license file.
FAQs
Plugin for handling authentication in Piral.
The npm package piral-auth receives a total of 174 weekly downloads. As such, piral-auth popularity was classified as not popular.
We found that piral-auth demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket is tracking a new trend where malicious actors are now exploiting the popularity of LLM research to spread malware through seemingly useful open source packages.
Security News
Research
Noxia, a new dark web bulletproof host, offers dirt cheap servers for Python, Node.js, Go, and Rust, enabling cybercriminals to distribute malware and execute supply chain attacks.
Company News
Socket safeguards companies from software supply chain attacks by detecting and preventing threats in open source code and empowering developers to secure their applications and critical services against malware and other security risks.