superagent-oauth2-client
Advanced tools
A superagent plugin for stressless OAuth2 token management using oauth2-client.
npm i --save superagent-oauth2-client
var superagent = require('superagent'),
request = require('superagent-oauth2-client')(superagent),
OAuth = require('oauth2-client-js');
// define a single oauth provider
// will use localstorage to save tokens
var provider = new OAuth.Provider({
id: 'google',
authorization_url: 'https://google.com/auth'
});
request
.get('http://server.com')
.oauth(provider, {
redirect_uri: '...',
client_id: 'client_id'
})
.exec()
.then() // business logic
.catch(); // error handling
then will only be called when the original request was successful, no matter if the first or the second time.
catch may be called for varying reasons. We may have used a valid token, but the server responded with an error. Or we might just be about to redirect the user to the auth endpoint.
.oauth() hides almost all the magic from you. What is this magic?
When you do a request it will first look if the provider has an access token. If it does, it will set it on the Authorization header and send the request. If it doesn’t, it will automatically redirect to the authorization_url (ie. window.location.href=xxx).
In the happy case the user logged in, gave its consent and will be redirected to the redirect_uri in your app. There is some manual work to do now, you have to parse the encoded response and react accordingly.
var response = provider.parse(window.location.href);
It it doesn’t throw an error, everything’s good now.
If there was an access token, but it’s considered invalid (=> server returns 401 status), .oauth will redirect the user to the auth endpoint again.
You can pass a function to exec() that will be passed the oauth access token request that’s about to be issued. There you can set arbitrary things in the metadata field. This will be again available after you the reponse was parsed successfully.
request
...
.exec(function(req) {
req.metadata.time = Date.now();
req.metadata.currentRoute = window.location.path;
})
.then...
var response = provider.parse(window.location.href);
navigateTo(response.metadata.currentRoute);
Apache 2.0 as stated in the LICENSE.
FAQs
A superagent plugin for oauth2-client
The npm package superagent-oauth2-client receives a total of 6 weekly downloads. As such, superagent-oauth2-client popularity was classified as not popular.
We found that superagent-oauth2-client demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Deno 2.2 enhances Node.js compatibility, improves dependency management, adds OpenTelemetry support, and expands linting and task automation for developers.
Security News
React's CRA deprecation announcement sparked community criticism over framework recommendations, leading to quick updates acknowledging build tools like Vite as valid alternatives.
Security News
Ransomware payment rates hit an all-time low in 2024 as law enforcement crackdowns, stronger defenses, and shifting policies make attacks riskier and less profitable.