npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@essamonline/leaderboard-api

v1.0.0

Published

A backend system for a real-time leaderboard service for ranking and scoring.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

essamonlineessamonline

Keywords

apirestredisjwtleaderboard

Readme

Real-time Leaderboard

A backend system implemented in node.js for a real-time leaderboard service for ranking and scoring. The system features a configurable environment, support for http/https, user authentication, score submission, real-time leaderboard updates, and score history tracking using Redis, the most popular NoSQL in-memory key-value data store.

Static Badge NPM Version NPM Downloads Coverage Status

Installation

npm install [-g] @essamonline/leaderboard-api

Features

  • Configurable Environmentt: Load environment variables from a '.env' file using dotenv package.
  • HTTP/HTTPS: Provide the path to the key and certificate files if HTTPS was chosen.
  • User Authentication: Users will register and log in to the system using JSON Web Tokens.
  • Score Submission: Users will submit their scores for different activities.
  • Leaderboard Updates: Users can retrieve a global leaderboard showing the top users across all activities.
  • User Rankings: Users can retrieve their rankings on the leaderboard.
  • Top Users Report: Generate reports on the top players for a specific period.

Sample '.env' file located at the package root directory:

############### leaderboard-api ###############
lb_serverProtocol=https
lb_serverKey=cert/localhost.key
lb_serverCert=cert/localhost.cert
lb_serverHost=localhost
lb_serverPort=8080
lb_serverPath=/api
lb_serverName=leaderboard-api/1.0.0
lb_connectRedis=redis://localhost:6379

API Documentation

Authentication

POST .../api/auth

  • Creates a nonexistent user and responds with JWT token.
  • Request payload: { username: user@1, password: pwd }.
  • Response status code, message and payload:
    • 200 OK ... { token: <JSON Web Token> }.
    • 400 Bad Request ... Authentication Error: none or invalid request payload.
    • 400 Bad Request ... Authentication Error: no username given.
    • 400 Bad Request ... Authentication Error: no password given.
    • 401 Unauthorized ... Authentication Error: username already exists.

PUT .../api/auth

  • Updates an existing user password if new password was given and responds with JWT token.
  • Request payload: { username: user@1, pwd: password }.
  • Request payload: { username: user@1, pwd: password, newpassword: newpwd }.
  • Response status code, message and payload:
    • 200 OK ... { token: <JSON Web Token> }.
    • 400 Bad Request ... Authentication Error: none or invalid request payload.
    • 400 Bad Request ... Authentication Error: no username given.
    • 400 Bad Request ... Authentication Error: no password given.
    • 401 Unauthorized ... Authentication Error: username does not exist.
    • 401 Unauthorized ... Authentication Error: invalid password.

PATCH .../api/auth

  • Deletes an existing user and removes all user's activities scores.
  • Request payload: { username: user@1, pwd: password }.
  • Response status code, message and payload:
    • 204 No Content.
    • 400 Bad Request ... Authentication Error: none or invalid request payload.
    • 400 Bad Request ... Authentication Error: no username given.
    • 400 Bad Request ... Authentication Error: no password given.
    • 401 Unauthorized ... Authentication Error: username does not exist.
    • 401 Unauthorized ... Authentication Error: invalid password.

GET .../api/auth

  • Retrieves a comma separated list of usernames.
  • Request payload: none.
  • Response status code, message and payload:
    • 200 OK ... user@1,user@2,user@3.

Score submission

POST .../api/score

  • Submits user's score for an activity that will be created if nonexistent.
  • Request payload: { activity: 'activity-1', score: 200 }.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 201 Created ... {activity: 'activity-1', username: 'user@1', score: '200'}.
    • 401 Unauthorized ... Authorization Error: No authorization token was found.
    • 400 Bad Request ... Submission Error: none or invalid request payload.
    • 400 Bad Request ... Submission Error: no activity given.
    • 400 Bad Request ... Submission Error: no score given.

PATCH .../api/score

  • Removes user's score for an activity.
  • Request payload: { activity: 'activity-1' }.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 204 No Content.
    • 401 Unauthorized ... Authorization Error: No authorization token was found.
    • 400 Bad Request ... Submission Error: none or invalid request payload.
    • 400 Bad Request ... Submission Error: no activity given.

DELETE .../api/score

  • Remove user's scores for all activities.
  • Request payload: none.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 204 No Content.
    • 401 Unauthorized ... Authorization Error: No authorization token was found.

Leaderboard

GET .../api/leaderboard/global

  • Retrieve a leaderboard array of objects for all activities with rank.
  • Request payload: none.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 200 OK ... [{ activity: 'activity-3', username: 'user@3', score: '330', rank: 1 }, ...].
    • 401 Unauthorized ... Authorization Error: No authorization token was found.

GET .../api/leaderboard/global/top

  • Retrieve a leaderboard array of objects for top 5 activities with rank.
  • Request payload: none.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 200 OK ... [{ activity: 'activity-3', username: 'user@3', score: '330', rank: 1 }, ...].
    • 401 Unauthorized ... Authorization Error: No authorization token was found.

GET .../api/leaderboard/global/top/:count

  • Retrieve a leaderboard array of objects for top <count> activities with rank.
  • Request payload: none.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 200 OK ... [{ activity: 'activity-3', username: 'user@3', score: '330', rank: 1 }, ...].
    • 401 Unauthorized ... Authorization Error: No authorization token was found.

GET .../api/leaderboard/global/user/:username

  • Retrieve a leaderboard array of objects for user's activities with rank.
  • Request payload: none.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 200 OK ... [{ activity: 'activity-3', username: 'user@3', score: '330', rank: 1 }, ...].
    • 401 Unauthorized ... Authorization Error: No authorization token was found.

GET .../api/leaderboard/:activity

  • Retrieve an array of objects for the given activity with rank.
  • Request payload: none.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 200 OK ... [{ activity: 'activity-3', username: 'user@3', score: '330', rank: 1 }, ...].
    • 401 Unauthorized ... Authorization Error: No authorization token was found.

GET .../api/leaderboard/:activity/top

  • Retrieve an array of objects for the given activity top 5 scores with rank.
  • Request payload: none.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 200 OK ... [{ activity: 'activity-3', username: 'user@3', score: '330', rank: 1 }, ...].
    • 401 Unauthorized ... Authorization Error: No authorization token was found.

GET .../api/leaderboard/:activity/top/:count

  • Retrieve an array of objects for the given activity top <count> scores with rank.
  • Request payload: none.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:
    • 200 OK ... [{ activity: 'activity-3', username: 'user@3', score: '330', rank: 1 }, ...].
    • 401 Unauthorized ... Authorization Error: No authorization token was found.

GET .../api/leaderboard/:activity/user/:username

  • Retrieve an object with the given user's score and rank for the given activity.
  • Request payload: none.
  • Request authorization header: Authorization: Bearer <JSON Web Token>
  • Response status code, message and payload:

    • 200 OK ... { activity: 'activity-3', username: 'user@3', score: '330', rank: 1 }.

    • 401 Unauthorized ... Authorization Error: No authorization token was found.

Testing and Documentation

Source code documentation generated by JSDoc 4.04 along with a Test coverage report generated by lcov are both included under Documentation. leaderboard-api were tested using node.js 20.x LTS core module Test runner.

Node version support

leaderboard-api supports all currently maintained Node versions. See the Node Release Schedule.

License

This software is licensed under the MIT license, see the LICENSE file.