web3-cardano-token
Advanced tools
Web3 Token is a new way to authenticate users in hybrid dApps using signed messages.
$ npm i web3-cardano-token
Using Nami Wallet extension:
import Web3Token from 'web3-cardano-token/dist/browser';
// Connection to Nami wallet
const cardano = window.cardano;
await cardano.nami.enable();
// getting address from which we will sign message
const address = (await cardano.getUsedAddresses())[0];
// generating a token with 1 day of expiration time
const token = await Web3Token.sign(msg => cardano.signData(your_address, toHex(msg)), '1d');
// attaching token to authorization header ... for example
const Web3Token = require('web3-cardano-token/dist/node');
// getting token from authorization header ... for example
const token = req.headers['Authorization']
const { address, body } = await Web3Token.verify(token);
// now you can find that user by his address
// (better to do it case insensitive)
req.user = await User.findOne({ address });
| Argument | Name | Description | Required | Example |
|---|---|---|---|---|
| 1 | signer | A function that returns a promise with signature string eg: await namiWallet.signData(address, data) | required | (body) => await namiWallet.signData(addr1e2..0c, body) |
| 2 | expire_in | A string that represents a time span (see ms module) or a number of milliseconds | optional (default: 1d) | 1 day |
| 3 | body | An object that will be appended to a signature's body. Can only contain string values. Can be used for some custom data. | optional | { 'Custom-data': 'some custom data' } |
Web3 Cardano Token is released under the MIT license. © 2021 Srdjan Stankovic
This package is based upon web3-token package and uses the same API.
FAQs
Web3 Token is a new way to authenticate users in hybrid dApps using signed messages.
We found that web3-cardano-token demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Chrome 144 introduces the Temporal API, a modern approach to date and time handling designed to fix long-standing issues with JavaScript’s Date object.
Research
Five coordinated Chrome extensions enable session hijacking and block security controls across enterprise HR and ERP platforms.
Research
Node.js patched a crash bug where AsyncLocalStorage could cause stack overflows to bypass error handlers and terminate production servers.