react-vksci123
Advanced tools
Declaratively add auth protection anywhere in your react/react-native app
This tiny react component helps you make auth checks declarative in your react or react-native app.
The use-case is when:
This component uses React 16's new context API. Considering the size of this component, it's ideal to use a boilerplate/reference of using the new context API too!
import {AuthProvider, AuthConsumer} from 'check-auth';
const Header = () => (
<AuthProvider authEndpoint={ 'http://localhost:8080/user/info' }>
// Some header items
// ...
// Now the part that depends on the user being logged in
<AuthConsumer>
{({userInfo}) => {
// .. code to check if userInfo is not null and return the corresponding jsx
...
// If userinfo doesn't exist return the corresponding jsx
}}
</AuthConsumer>
</AuthProvider>
);
import {AuthProvider, AuthConsumer} from 'check-auth';
const Main = () => (
<AuthProvider authEndpoint={ 'http://localhost:8080/user/info' }>
// Some header items
// ...
<AuthConsumer>
{({userInfo, isLoading, error}) => {
// If userInfo is not noll
return (<Route path='/home' component={Home}/>);
// If the request is being fetched
return (...)
// If error occurs
return <Route path='/error' component={Error}/>
}
</AuthConsumer>
</AuthProvider>
);
$ npm install --save check-auth
import React from 'react';
import {AuthProvider, AuthConsumer} from 'check-auth';
const App = () => (
<div>
<AuthProvider authUrl={authUrl} reqObj={reqObj}>
<AuthConsumer>
{ ({ isLoading, userInfo, error }) => {
if ( isLoading ) {
return ( <span>Loading...</span> )
}
return ( !userInfo ?
(<div>
<a href={'https://auth.commercialization66.hasura-app.io/ui?redirect_url=http://localhost:3000'}>Login</a>
</div>)
:
(<div>
{Hello ${ userInfo.username }}
</div>) );
}}
</AuthConsumer>
</AuthProvider>
</div>
);
React Check Auth can be applied to common use cases like:
In a typical web ui, the header component of your application will have navigation links, signup/signin links or logged in user's profile information, depending on whether the user is logged in or not. The hard part about showing user information or Login button is that your react app needs to make an Auth API call to fetch session information, maintain state and boilerplate code has to be written to handle this. You also need to make sure that state is available anywhere within your child components as well.
import React from 'react';
import { AuthProvider, AuthConsumer } from 'check-auth';
const Header = () => (
<div>
<ul>
<li><a href="/">Home</a></li>
<li><a href="/about">About Us</a></li>
<AuthProvider authUrl={authUrl}>
<AuthConsumer>
{ ({ isLoading, userInfo, error }) => {
if ( isLoading ) {
return ( <span>Loading...</span> )
}
if ( userInfo ) {
return (
<li>
{Hello ${ userInfo.username }}
</li)
);
} else {
return (
<li>
<a href="/login">Login</a>
</li>
);
}
}}
</AuthConsumer>
</AuthProvider>
</ul>
</div>
);
With React Router v4, you can call the Route inside your CheckAuth component or wrap your entire application with CheckAuth, like this -
import React from 'react';
import { Route, Switch } from 'react-router-dom';
import App from './App.js'
import SigninPage from './SigninPage';
export default () => (
<Switch>
<Route path='/home' component={App}/>
<Route path='/signin' component={SiginPage}/>
</Switch>
);
And inside your App.js component render, you can wrap it entirely with ,
render () {
<AuthProvider authUrl={authUrl}>
<CheckAuth>
{ ({ isLoading, userInfo, error }) => {
if ( isLoading ) {
return ( <span>Loading...</span> )
}
return ( !userInfo ?
(<div>
Please Login
</div>)
:
(<div>
{Hello ${ userInfo.username }}
<Route component={myApp} />
</div>) );
}}
</CheckAuth>
}
Hasura's Auth API can be integrated with this module with a simple auth get endpoint and can also be used to redirect the user to Hasura's Auth UI Kit in case the user is not logged in.
// replace CLUSTER_NAME with your Hasura cluster name.
const authEndpoint = 'https://auth.[CLUSTER_NAME].hasura-app.io/v1/user/info';
// pass the above reqObject to CheckAuth
<AuthProvider authUrl={authEndpoint}>
<AuthConsumer>
{ ({ isLoading, userInfo, error }) => {
// your implementation here
} }
</AuthConsumer>
</AuthProvider>
CheckAuth can be integrated with Firebase APIs.
// replace API_KEY with your Firebase API Key and ID_TOKEN appropriately.
const authUrl = 'https://www.googleapis.com/identitytoolkit/v3/relyingparty/getAccountInfo?key=[API_KEY]';
const reqObject = { 'method': 'POST', 'payload': {'idToken': '[ID_TOKEN]'}, 'headers': {'content-type': 'application/json'}};
// pass the above reqObject to CheckAuth
<AuthProvider authUrl={authUrl} reqObject={reqObject}>
<AuthConsumer>
{ ({ isLoading, userInfo, error }) => {
// your implementation here
} }
</AuthConsumer>
</AuthProvider>
CheckAuth can be integrated with any custom authentication provider APIs.
Lets assume we have an endpoint on the backend /api/check_token which reads a header x-access-token from the request and provides with the associated user information
const authEndpoint = 'http://localhost:8080/api/check_token';
const reqOptions = {
'method': 'GET',
'headers': {
'Content-Type': 'application/json',
'x-access-token': 'jwt_token'
}
};
<AuthProvider authUrl = { authEndpoint } reqOptions={ reqOptions }>
<AuthConsumer>
{ ( { isLoading, userInfo, error, refreshAuth }) => {
if ( !userInfo ) {
return (
<span>Please login</span>
);
}
return (
<span>Hello { userInfo ? userInfo.username.name : '' }</span>
);
}}
</AuthConsumer>
</AuthProvider>
It will render as <span>Please login</span> if the user's token is invalid and if the token is a valid one it will render Hello username
Clone repo
git clone https://github.com/hasura/check-auth.git
Install dependencies
npm install or yarn install
Start development server
npm start or yarn start
Runs the demo app in development mode. Open http://localhost:3000 to view it in the browser.
All library files are located inside src/lib
Is located inside src/demo directory, here you can test your library while developing
npm run test or yarn run test
npm run build or yarn run build
Produces production version of library under the build folder.
FAQs
Declaratively add auth protection anywhere in your react/react-native app
We found that react-vksci123 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A supply chain attack on Axios introduced a malicious dependency, plain-crypto-js@4.2.1, published minutes earlier and absent from the project’s GitHub releases.
Research
Malicious versions of the Telnyx Python SDK on PyPI delivered credential-stealing malware via a multi-stage supply chain attack.
Security News
TeamPCP is partnering with ransomware group Vect to turn open source supply chain attacks on tools like Trivy and LiteLLM into large-scale ransomware operations.