npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2025 – Pkg Stats / Ryan Hefner

@inube/iauth-react

v2.1.0

Published

A react authentication library for inube portals

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

wfercanaswfercanasfiregui44firegui44diegoandres01diegoandres01sebas3245sebas3245

Keywords

inubeiauth-react

Readme

Inube IAuth

This is a React and Vite component library for managing authentication for @Inube applications using the iAuth service.

Features

This library provides authentication integration with the Inube iAuth service. It offers the following features:

  • Login with redirect - Redirect to iAuth authentication service
  • Logout - Clear session and optionally redirect
  • Get access token - Retrieve current access token
  • Get user information - Extract user data from JWT tokens via iAuth service
  • Check if user is authenticated - Authentication state management
  • Check if user is loading - Loading state during auth processes
  • Automatic token handling - Process authentication codes from iAuth callbacks
  • Save user information in localStorage - Persistent sessions across browser restarts
  • Error handling - Comprehensive error management for auth flows

Currently, this library is designed specifically for Inube's iAuth authentication service.

Installation

Run the following command using npm:

npm install --save @inube/iauth-react

Configuration

IAuthProvider Props:

  • clientId: string - ID of the client registered in iAuth
  • clientSecret: string - Secret of the client registered in iAuth
  • originatorId: string - Originator identifier for the authentication request
  • callbackUrl: string - Callback URL where iAuth will redirect after authentication
  • iAuthUrl: string - Base URL of the iAuth authentication service
  • serviceUrl: string - Persistence authentication login URL address.

Note: Save these values in environment variables for security.

Usage

Basic Setup

import React, { useEffect } from "react";
import ReactDOM from "react-dom/client";
import { IAuthProvider, useIAuth } from "@inube/iauth";

const CLIENT_ID = import.meta.env.VITE_AUTH_CLIENT_ID;
const CLIENT_SECRET = import.meta.env.VITE_AUTH_CLIENT_SECRET;
const ORIGINATOR_ID = import.meta.env.VITE_AUTH_ORIGINATOR_ID;
const CALLBACK_URL = import.meta.env.VITE_AUTH_CALLBACK_URL;
const IAUTH_URL = import.meta.env.VITE_AUTH_URL;

ReactDOM.createRoot(document.getElementById("root")!).render(
  <IAuthProvider
    clientId={CLIENT_ID}
    clientSecret={CLIENT_SECRET}
    originatorId={ORIGINATOR_ID}
    callbackUrl={CALLBACK_URL}
    iAuthUrl={IAUTH_URL}
  >
    <App />
  </IAuthProvider>
);

// App component
function App() {
  const { user, isAuthenticated, isLoading, loginWithRedirect } = useIAuth();

  useEffect(() => {
    if (!isLoading && !isAuthenticated) {
      loginWithRedirect();
    }
  }, [isLoading, isAuthenticated, loginWithRedirect]);

  if (isLoading) {
    return <div>Loading...</div>;
  }

  if (!isAuthenticated) {
    return null;
  }

  return (
    <div>
      <h1>Welcome, {user?.username}!</h1>
      <p>Successfully logged in: {JSON.stringify(user)}</p>
      <button onClick={() => logout()}>Logout</button>
    </div>
  );
}

API Reference

useIAuth Hook

The useIAuth hook provides access to the authentication context:

const {
  user, // Current user information
  setUser, // Function to set user manually
  isAuthenticated, // Boolean indicating if user is authenticated
  isLoading, // Boolean indicating if auth is loading
  error, // Current error state
  clearError, // Function to clear errors
  loginWithRedirect, // Function to initiate login
  logout, // Function to logout
  getAccessTokenSilently, // Function to get access token
} = useIAuth();

Types

IUser

interface IUser {
  id: string;
  identificationType: string;
  username: string;
  nickname: string;
  company: string;
  urlImgPerfil: string;
}

RedirectLoginOptions

interface RedirectLoginOptions {
  authorizationParams?: Record<string, any>;
  appState?: Record<string, any>;
  [key: string]: any;
}

LogoutOptions

interface LogoutOptions {
  logoutParams?: {
    returnTo?: string;
  };
}

Methods

loginWithRedirect(options?)

Redirects the user to the iAuth authentication service.

loginWithRedirect({
  authorizationParams: {
    custom_param: "value",
  },
  appState: {
    returnTo: "/dashboard",
  },
});

logout(options?)

Logs out the user and clears stored authentication data.

logout({
  logoutParams: {
    returnTo: "/login",
  },
});

getAccessTokenSilently()

Returns a promise that resolves to the current access token.

try {
  const token = await getAccessTokenSilently();
  // Use token for API calls
} catch (error) {
  console.error("No access token available:", error);
}

Environment Variables

Create a .env file with the following variables:

# Required iAuth Configuration
VITE_AUTH_CLIENT_ID=your_client_id
VITE_AUTH_CLIENT_SECRET=your_client_secret
VITE_AUTH_ORIGINATOR_ID=your_originator_id
VITE_AUTH_CALLBACK_URL=http://localhost:3000/callback
VITE_AUTH_URL=https://your-iauth-service-url
VITE_AUTH_SERVICE=https://your-iauth-service-url

Authentication Flow

  1. Initial Load: The library checks for existing authentication data in localStorage
  2. Login Redirect: If not authenticated, user is redirected to iAuth service
  3. Callback Handling: iAuth redirects back with an access code (ac parameter)
  4. Token Exchange: The access code is exchanged for user data via the iAuth API
  5. User Data: JWT token is decoded to extract user information
  6. Persistent Storage: Authentication data is stored in localStorage for future sessions

Error Handling

The library provides comprehensive error handling:

function App() {
  const { error, clearError, isAuthenticated } = useIAuth();

  if (error) {
    return (
      <div>
        <h2>Authentication Error</h2>
        <p>{error.message}</p>
        <button onClick={clearError}>Try Again</button>
      </div>
    );
  }
}

URL Parameters

The library automatically handles these URL parameters:

  • ac - Access code returned by iAuth after successful authentication
  • error - Error code if authentication failed
  • error_description - Detailed error description

These parameters are automatically cleaned from the URL after processing.

Local Storage

The library stores the following data in localStorage:

  • auth_token - Access token for API calls
  • auth_user - Serialized user information

Data is automatically cleared on logout or authentication errors.

API Integration

The library integrates with the iAuth persistence service:

  • Service URL: https://four.external.iauth.persistence.process.inube.dev/iauth-persistence-process-service/api
  • Endpoint: /user-accounts
  • Authentication: Basic auth using client credentials
  • Timeout: 5 seconds for API calls

Security Features

  • Secure Storage: Authentication data stored in localStorage
  • Automatic Cleanup: Tokens are cleared on logout or error
  • Error Recovery: Invalid stored data is automatically cleaned
  • URL Cleanup: Authentication parameters are removed from URL after processing

Development

The components are developed using:

  • TypeScript for type safety
  • React Hooks for state management
  • JWT handling for token processing
  • iAuth API integration for user data retrieval

Code is committed using Conventional Commits and releases are managed using auto by Intuit.

Requirements

  • React >= 16.8.0
  • TypeScript (for TypeScript projects)
  • Valid iAuth service credentials

Browser Support

  • Chrome (latest)
  • Firefox (latest)
  • Safari (latest)
  • Edge (latest)

Issues

If you encounter any issues while using the library, please report them as issues here.

Contributing

  1. Fork the repository
  2. Create your feature branch (git checkout -b feature/amazing-feature)
  3. Commit your changes (git commit -m 'Add some amazing feature')
  4. Push to the branch (git push origin feature/amazing-feature)
  5. Open a Pull Request

Support

For questions and support, please visit our documentation or create an issue in the repository.