npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2025 – Pkg Stats / Ryan Hefner

@heroku-cli/plugin-oauth-v5

v8.11.2

Published

Heroku CLI plugin to manage OAuth clients.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

heroku-front-endheroku-front-endijanakijanakntonollierntonollierelzoonaelzoonacmarcojoscmarcojoscbaxtersfcbaxtersfdhagberg-sfdhagberg-sfjondaniel-sfdcjondaniel-sfdcjmonrealjmonrealbrittany.jonesbrittany.jonesnilamuthunilamuthukpremkumarkpremkumarcv88cv88xx-sfdc-npmxx-sfdc-npmbeanieboibeanieboisbosio_sfsbosio_sfjustinwilaby-sfjustinwilaby-sfcgfuhcgfuhptemporiniptemporinitcareysmith-sfdctcareysmith-sfdcjlopezdanjlopezdanrobinson.mrobinson.mrdagg-herordagg-herok80bowmank80bowmansheax0rsheax0rdpark.herokudpark.herokudaniel.brightdaniel.brightabhinavkoulabhinavkouleblackeblackk.plentyk.plentykdreyerorenkdreyerorenhillzbot2000hillzbot2000mbuschherokumbuschherokureidmixreidmixbeckychenbeckychenmarsmarsnlanattanlanattavlazukavlazukawchrisjohnsonwchrisjohnsonlucaszhoulucaszhoupfuentepfuentemimenmimengkomminenigkomminenisarassassinsarassassinlmckenzielmckenziejwadsworthsfjwadsworthsfmontes_herokumontes_herokujoanneyeungjoanneyeung7ftz7ftzzli-sfzli-sfmarcusblankenshipmarcusblankenshipmgomes-herokumgomes-herokuvjohnevjohnecsinghaus-sfdccsinghaus-sfdcheroku-johnnyheroku-johnnymichael.malavemichael.malaveerika.wallaceerika.wallacevalluri056valluri056

Keywords

heroku-plugin

Readme

Heroku OAuth CircleCI

Code Climate npm version License

js-standard-style

Command line plugin for managing OAuth clients, authorizations and tokens.

No need to install, this plugin comes built into the Heroku CLI.

Clients

To create a client:

$ heroku clients:create "Amazing" https://amazing-client.herokuapp.com/auth/heroku/callback
Creating Amazing... done
HEROKU_OAUTH_ID=3e304bda-d376-4278-bdea-6d6c08aa1359
HEROKU_OAUTH_SECRET=e6a5f58f-f8a9-49f1-a1a6-d1dd98930ef6

See OAuth clients under your account with:

$ heroku clients
Amazing  3e304bda-d376-4278-bdea-6d6c08aa1359  https://amazing-client.herokuapp.com/auth/heroku/callback

Get details about a client:

$ heroku clients:info 36120128-fee7-455e-8b7f-807aee130946
=== Amazing
created_at:         2016-01-21T02:11:57Z
id:                 36120128-fee7-455e-8b7f-807aee130946
name:               Amazing
redirect_uri:       https://amazing-client.herokuapp.com/auth/heroku/callback
secret:             a14cf558-60b8-44f2-a804-3b249b48aa57
updated_at:         2016-01-21T02:11:57Z

Update clients:

$ heroku clients:update 3e304bda-d376-4278-bdea-6d6c08aa1359 --url https://amazing-client.herokuapp.com/auth/heroku/callback
Updated Amazing... done

Authorizations

List them:

$ heroku authorizations
Amazing                        9e3a4063-b833-432e-ad75-4b0d7195be13  global
Heroku CLI                     676cb46c-7597-4be1-8a6a-f87b9f2f1065  global

Creating

You can create a special user-created authorization against your account that will come with an access token which doesn't expire:

$ heroku authorizations:create --description "For use with Anvil"
Created OAuth authorization.
  ID:          105a7bfa-34c3-476e-873a-b1ac3fdc12fb
  Description: For use with Anvil
  Token:       4cee516c-f8c6-4f14-9edf-fc6ef09cedc5
  Scope:       global

You can also pass in short output format to only output the token.

$ heroku authorizations:create --output-format short
nec6a9b6-b21a-4ba1-il95-70zd47e14c4d

Another option allows for tokens that expire. This token expires in 10 seconds.

$ heroku authorizations:create --expires-in 10
Created OAuth authorization.
  Client:      <none>
  ID:          2231biha6-5b1e-4268-ba04-2ee7b74m2gf6
  Description: Long-lived user authorization
  Scope:       global
  Token:       9aa5d667-fg37-4028-8dc9-b2191b5z5966

A combination of short format and expires-in can be handy to pass into a job that needs access to heroku:

$ heroku run "HEROKU_EMAIL=`heroku auth:whoami` HEROKU_API_KEY=`heroku authorizations:create --expires-in 120 --output-format short` ./my_job.sh" -a myapp

Optionally, you can specify a list of scopes for the authorization:

$ heroku authorizations:create --description "For use with Anvil" --scope identity,read-protected
Created OAuth authorization.
  ID:          105a7bfa-34c3-476e-873a-b1ac3fdc12fb
  Description: For use with Anvil
  Token:       4cee516c-f8c6-4f14-9edf-fc6ef09cedc5
  Scope:       identity, read-protected

The procured token can now be used like an API key:

$ curl -u ":4cee516c-f8c6-4f14-9edf-fc6ef09cedc5" https://api.heroku.com/apps

Revoking

Any authorization on your account can be revoked at any time:

$ heroku authorizations:revoke 105a7bfa-34c3-476e-873a-b1ac3fdc12fb
Revoked authorization from "Another App".

heroku authorizations

list OAuth authorizations

USAGE
  $ heroku authorizations [-j]

FLAGS
  -j, --json  output in json format

DESCRIPTION
  list OAuth authorizations

See code: lib/commands/authorizations/index.js

heroku authorizations:create

create a new OAuth authorization

USAGE
  $ heroku authorizations:create [-d <value>] [-s <value>] [-e <value>] [-S] [-j]

FLAGS
  -S, --short                only output token
  -d, --description=<value>  set a custom authorization description
  -e, --expires-in=<value>   set expiration in seconds (default no expiration)
  -j, --json                 output in json format
  -s, --scope=<value>        set custom OAuth scopes

DESCRIPTION
  create a new OAuth authorization
  This creates an authorization with access to your Heroku account.

See code: lib/commands/authorizations/create.js

heroku authorizations:destroy ID

revoke OAuth authorization

USAGE
  $ heroku authorizations:destroy ID

DESCRIPTION
  revoke OAuth authorization


ALIASES
  $ heroku authorizations:destroy
  $ heroku authorizations:revoke

heroku authorizations:info ID

show an existing OAuth authorization

USAGE
  $ heroku authorizations:info ID [-j]

FLAGS
  -j, --json  output in json format

DESCRIPTION
  show an existing OAuth authorization

See code: lib/commands/authorizations/info.js

heroku authorizations:revoke ID

revoke OAuth authorization

USAGE
  $ heroku authorizations:revoke ID

DESCRIPTION
  revoke OAuth authorization


ALIASES
  $ heroku authorizations:destroy
  $ heroku authorizations:revoke

See code: lib/commands/authorizations/revoke.js

heroku authorizations:rotate ID

updates an OAuth authorization token

USAGE
  $ heroku authorizations:rotate ID

DESCRIPTION
  updates an OAuth authorization token

See code: lib/commands/authorizations/rotate.js

heroku authorizations:update ID

updates an OAuth authorization

USAGE
  $ heroku authorizations:update ID [-d <value>] [--client-id <value>] [--client-secret <value>]

FLAGS
  -d, --description=<value>  set a custom authorization description
  --client-id=<value>        identifier of OAuth client to set
  --client-secret=<value>    secret of OAuth client to set

DESCRIPTION
  updates an OAuth authorization

See code: lib/commands/authorizations/update.js

heroku clients

list your OAuth clients

USAGE
  $ heroku clients [-j]

FLAGS
  -j, --json  output in json format

DESCRIPTION
  list your OAuth clients

See code: lib/commands/clients/index.js

heroku clients:create NAME REDIRECT_URI

create a new OAuth client

USAGE
  $ heroku clients:create NAME REDIRECT_URI [-s] [-j]

FLAGS
  -j, --json  output in json format
  -s, --shell  output in shell format

DESCRIPTION
  create a new OAuth client

See code: lib/commands/clients/create.js

heroku clients:destroy ID

delete client by ID

USAGE
  $ heroku clients:destroy ID

DESCRIPTION
  delete client by ID

See code: lib/commands/clients/destroy.js

heroku clients:info ID

show details of an oauth client

USAGE
  $ heroku clients:info ID [-j] [-s]

FLAGS
  -j, --json  output in json format
  -s, --shell  output in shell format

DESCRIPTION
  show details of an oauth client

See code: lib/commands/clients/info.js

heroku clients:rotate ID

rotate OAuth client secret

USAGE
  $ heroku clients:rotate ID [-j] [-s]

FLAGS
  -j, --json  output in json format
  -s, --shell  output in shell format

DESCRIPTION
  rotate OAuth client secret

See code: lib/commands/clients/rotate.js

heroku clients:update ID

update OAuth client

USAGE
  $ heroku clients:update ID [-n <value>] [--url <value>]

FLAGS
  -n, --name=<value>  change the client name
  --url=<value>       change the client redirect URL

DESCRIPTION
  update OAuth client

See code: lib/commands/clients/update.js

heroku sessions

list your OAuth sessions

USAGE
  $ heroku sessions [-j]

FLAGS
  -j, --json  output in json format

DESCRIPTION
  list your OAuth sessions

See code: lib/commands/sessions/index.js

heroku sessions:destroy ID

delete (logout) OAuth session by ID

USAGE
  $ heroku sessions:destroy ID

DESCRIPTION
  delete (logout) OAuth session by ID

See code: lib/commands/sessions/destroy.js