verdaccio-dynamodb

verdaccio-dynamodb

DynamoDB Auth

---

Note: Currently a WIP but should provide basic functionality

Prerequisites

1. Existing DynamoDB table with a primary partition key of "username" (string)
2. Existing "users" in the table with the structure below

{
  "groups": { "L": [{ "S": "admin" } ] },
  "password": { "S": "$2a$10$FZF3...soYgLgS26HWvga" },
  "username": { "S": "alice" }
}

Verdaccio Config

plugins: /verdaccio/plugins

auth:
  dynamodb:
    table: my-verdaccio-users // optional, defaults to 'verdaccio-users'
    region: us-west-1 // optional, defaults to 'us-east-1'
    accessKeyId: AKAIAKFWIFUALDFUWY // optional, can be an env variable or assumed from a role
    secretAccessKey: 19kweihal3e0r82ls83rh // optional, can be an env variable or assumed from a role

uplinks:
  npmjs:
    url: https://registry.npmjs.org/

store:
  memory:
    limit: 1000

middlewares:
  audit:
    enabled: true

packages:
  '@*/*':
    access: $all
    publish: $authenticated
    proxy: npmjs

  '**':
    access: $all
    publish: $authenticated
    proxy: npmjs

logs:
  - {type: stdout, format: pretty, level: trace}

CLI

A cli is provided to add users and create the initial database. In order to use it make sure you can auth with the AWS CLI either by ENVVARS or ~/.aws/credential

Create the table

yarn run dynamodb-auth create-table --table my-verdaccio-users --region us-west-1

--table (optional, defaults to "verdaccio-users")

--region (optional, defaults to "us-east-1")

Adding users

yarn run dynamodb-auth add-user alice my-secret-password --groups admin --table my-verdaccio-users

--groups (optional, defaults to "users"

--table (optional, defaults to "verdaccio-users")

--region (optional, defaults to "us-east-1")