0xauth

v0.1.0

A javascript library for the 0xAuth protocol

NPM

README

GitHub

MIT

Latest version published 1 year ago

    npm install 0xauth

We couldn't find any similar packages Browse all packages

Package Health Score

40 / 100

Security
Security review needed
Popularity
Limited
Maintenance
Inactive
Community
Limited

Keep your project healthy

Check your package.json

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Secure Your Project

Find & fix vulnerable dependencies and insecure code

Security

Security review needed

All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security and license risk for significant versions

All Versions

Version				Vulnerabilities	License Risk
0.1.0	\|	04/2021	Popular	0 C 0 H 0 M 0 L	0 H 0 M 0 L
0.0.6	\|	06/2019		0 C 0 H 0 M 0 L	0 H 0 M 0 L

License

MIT

Security Policy

Is your project affected by vulnerabilities?

Scan your projects for vulnerabilities. Fix quickly with automated fixes. Get started with Snyk for free.

# Install the Snyk CLI and test your project 
 npm i snyk -g && snyk test 0xauth

Get started free

Popularity

Limited

Weekly Downloads (4)

Dependents: 0
GitHub Stars: 0
Forks: 0
Contributors: 2

Direct Usage Popularity

The npm package 0xauth receives a total of 4 downloads a week. As such, we scored 0xauth popularity level to be Limited.

Based on project statistics from the GitHub repository for the npm package 0xauth, we found that it has been starred ? times, and that 0 other projects in the ecosystem are dependent on it.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Community

Limited

Readme.md: Yes
Contributing.md: No
Code of Conduct: No
Contributors: 2
Funding: No

This project has seen only 10 or less contributors.

We found a way for you to contribute to the project! Looks like 0xauth is missing a Code of Conduct.

Embed Package Health Score Badge

Maintenance

Inactive

Commit Frequency

No Recent Commits

Open Issues: 0
Open PR: 8
Last Release: 1 year ago
Last Commit: 1 year ago

Further analysis of the maintenance status of 0xauth based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for 0xauth is that it hasn't seen any new versions released to npm in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Package

Node.js Compatibility: >=8.10.0

Age: 3 years
Dependencies: 6 Direct
Versions: 8
Install Size: 61.2 kB
Dist-tags: 1
# of Files: 31
Maintainers: 1
TS Typings: No

0xauth has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.

Readme

0xauth-js

A javascript library for the 0xAuth protocol

ALPHA DEVELOPMENT, NOT READY YET FOR REAL WORLD USES

Implementation of the 0xAuth protocol

Install

Server sidee:

npm i --save 0xauth

Client side:

npm i 0xauth
cp node_modules/0xauth/dist/0xauth.js your/dest/folder/.

Usage

Server side:

const 0xauth = require('0xauth')
const Auth = 0xauth.Auth
const authToken = new 0xauth.AuthToken({...})
...

Client side:

var client = new 0xauth.client()
client.init('trx', tronWeb)
// and/or
client.init('eth', web3)
...

Server API

Auth.getAuthorizationToken(params)

Params:

issuer         The RDNS of the app/service issuing the token
expireAt       (optional) The Linux timestamp at expiration
extraParams    Extra-parametes related with the app

For testing purposes, you can also pass:

createdAt      The Linux timestamp of creation
randomString   A 4 chars base64 string

while in a normal case those two values are generated.

Example:

const aWeekFromNow = Math.floor((Date.now() + 7 * 24 * 3600 * 1000) / 1000)

Auth.getAuthorizationToken({
    issuer: 'com.example.auth',
    expireAt: aWeekFromNow,
    extraParams: 'uid/233,active'
})

That would return something like:

0xAuth:1;com.example.auth;1559439788:1560044588;e3Jg;uid/233,active;de

Auth.signAndReturnToken(authTokenString, chain, privateKey, format = 'ps')

authTokenString is the auth token to be signed in string format chain is the abbreviation of one of the supported blockchains, for example eth or trx privateKey is the private key to be used for the signature format is the signature format (more info at 0xAuth protocol)

Auth.verifySignedToken(signedTokenString)

signedTokenString is a signed token containing all the info necessary for the verification.

History

0.1.0

updating Web3 and Tronweb

0.0.6

first complete version

Credits

Francesco Sullo

License

The MIT License

0xauth dependencies

crypto-js eth-sig-util husky tronweb web3 webpack-cli

FAQs

What is 0xauth?

A javascript library for the 0xAuth protocol. Visit Snyk Advisor to see a full health score report for 0xauth, including popularity, security, maintenance & community analysis.

Is 0xauth popular?

The npm package 0xauth receives a total of 4 weekly downloads. As such, 0xauth popularity was classified as limited. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is 0xauth well maintained?

We found indications that 0xauth is an Inactive project. See the full package health analysis to learn more about the package maintenance status.

Is 0xauth safe to use?

While scanning the latest version of 0xauth, we found that a security review is needed. A total of 4 vulnerabilities or license issues were detected. See the full security scan results.

Last updated on 29 June-2022, at 04:14 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP

Package Health Score

Keep your project healthy

Check your package.json

Snyk Vulnerability Scanner

Secure Your Project

Security and license risk for significant versions

Is your project affected by vulnerabilities?

Weekly Downloads (4)

Direct Usage Popularity

Embed Package Health Score Badge

Commit Frequency

Readme

0xauth-js

ALPHA DEVELOPMENT, NOT READY YET FOR REAL WORLD USES

Install

Usage

Server API

Auth.getAuthorizationToken(params)

Auth.signAndReturnToken(authTokenString, chain, privateKey, format = 'ps')

Auth.verifySignedToken(signedTokenString)

History

Credits

License

0xauth dependencies

FAQs

What is 0xauth?

Is 0xauth popular?

Is 0xauth well maintained?

Is 0xauth safe to use?

Build a secure application checklist

Select a recommended open source package

Scan your app for vulnerabilities

Source Code

Open Source

Container

Config

Fix identified vulnerabilities

Monitor for new issues