npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2025 – Pkg Stats / Ryan Hefner

@denz93/vendure-plugin-simple-auth

v1.3.1

Published

Allow customers login using email and verification code (One time login)

Downloads

26

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

denz93denz93

Keywords

vendurepluginsimple-authsimpleauthvendure-pluginvendure.ioone time login

Readme

Simple Auth Plugin for Vendure.io

Test CI Publish Package to npmjs Coverage

A Vendure plugin allow users log in using email and verification code

Use Case

A lot of times we want visitors (aka customers) to complete their purchase order as quick as possilble. However, they usually hesitate to create a credential to a random online shop at checkout step. So we provide a way to quickly authenticate those visitors by their email and a verification code that is sent to their email.

What it does

  1. Expose a GraphQL Query "requestOneTimeCode".
  2. Add an authentication strategy to GraphQL mutation "authenticate".

How to use

1. Install

yarn add @denz93/vendure-plugin-simple-auth

or

npm i --save @denz93/vendure-plugin-simple-auth

2. Add the plugin to vendure-config.ts file

import { SimpleAuthPlugin } from "@denz93/vendure-plugin-simple-auth";
...
export const config: VendureConfig  = {
 ...
 plugins: [
   ...
   SimpleAuthPlugin.init(options) //see Options
 ]
}

3. Options for SimpleAuthPlugin.init

  • attempts: number

    Plugin will invalidate the verification code after user's attempts.
    default: 5

  • ttl: number

    Time to live
    How long the verification code is valid for.
    default: 600 (seconds)

  • length: number

    How many digits/alphabets the verification code should be.
    default: 6

  • includeAlphabet: boolean

    Should allow alphabet characters.
    default: false (aka digits only)

  • isDev: boolean

    If true, the verification will return along with the response of query. requestOneTimeCode.
    It's for debug and testing.
    default: false

  • cacheModuleOption: CacheModuleOption

    By default, the plugin use "memory" for caching which is underlying using NestJs CacheModule.
    To change cache store to Redis, MongoDB, etc, please see NestJs CacheModule docs here.
    You also want to see here from cache-manager which is underlying used by NestJs.
    Note: should use cache-manager 4.x if using Vendure under 2.x
    default: {}

  • checkCrossStrategies: boolean

    Strictly enforce unique email among all strategies

    For example:

    • One day, user "John" sign in using Google authentication with "[email protected]".
    • Another day, user "John" sign in using One-time passcode authenication (this plugin) with the same email.
    • This plugin will throw an error if the flag is enabled.

    default: false.
    Note: This only works if Google authentication plugin using email as an identifier

4. Add EmailHandler to EmailPlugin

** Note: Since v1.3.0 you don't need to config this step anymore. The plugin will automatically append the handler to Email Plugin

// vendure-config.ts

import { oneTimeCodeRequestedEventHandler } from '@denz93/vendure-plugin-simple-auth';

...

export const config: VendureConfig = {
  ...

  plugins: [
    ...

    EmailPlugin.init({
      ...
      handlers: [...defaultEmailHandler, oneTimeCodeRequestedEventHandler]
    })
  ]
}

Future Updates

  • [x] Prevent cross authenticate (Ex: users use same email for GoogleAuth and SimpleAuth)