npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

@snapauth/node-sdk

v0.2.0

Published

SnapAuth official SDK - server component for passkey and webauthn integration

Downloads

312

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

firehedfirehed

Keywords

2fafidomfapasskeyssnapauthu2fwebauthenticationwebauthn

Readme

SnapAuth SDK for NodeJS

The official NodeJS SDK for SnapAuth 🫰

This is for server code. If you're looking for the client integration, check out @snapauth/sdk.

NPM Version npm bundle size GitHub License

Installation and Setup

npm i --save @snapauth/node-sdk
# yarn add @snapauth/sdk
# etc
import SnapAuth from '@snapauth/node-sdk'
const snapAuth = new SnapAuth(process.env.SNAPAUTH_SECRET_KEY)

[!TIP] The SDK will auto-detect a SNAPAUTH_SECRET_KEY environment variable. If that's where you've set up your Secret Key, you can simplify this to const snapAuth = new SnapAuth().

Usage

All examples are in TypeScript, based roughly on an ExpressJS app.

General usage is as follows:

const response = await snapAuth.someApiCall(param1, ...)
if (response.ok) {
  // Got back a 2xx
  // console.assert(response.result !== null)
  useDataFrom(response.result)
} else {
  // Any other response, or network error
  // console.assert(response.result === null)
  // console.assert(response.errors.length > 0)
  console.error(response.errors)
}

This is similar to fetch() which you're probably already familiar with.

If the API call succeeded, the response will be in response.result.

[!NOTE] Even on successful responses, response.errors may contain information, such as deprecation or usage warnings. We suggest always examining this value.

Completing credential registration

app.post('/register', async (request, response) => {
  // You should have POSTed something like this:
  // {
  //  token: string
  //  username: string
  // }
  const token = request.body.token
  const username = request.body.username
  // Do whatever you normally do to create a new User record
  const user = createUserWithUsername(username)
  // Then save the new passkey
  const credentialInfo = await snapAuth.attachRegistration(token, {
    id: user.id, // You may need to cast this to a string first, e.g. `String(user.id)`
    handle: user.username, // Probably the value from above
  })
  // That's it. Proceed as normal.
})

[!NOTE] The id is what you should use during authentication; it can not be changed. The handle is to make client code more straightforward, and is typically the value the user would type in to a username field.

You MAY hash or obfuscate the handle, or omit it entirely. If you do, you'll need to either a) repeat the procedure in client code during authentication or b) rely on the user's id instead.

Authenticating

app.post('/signin', async (request, response) => {
  // { token: string }
  const token = request.body.token
  const auth = await snapAuth.signIn(token)
  if (auth.ok) {
    signInUserWithId(auth.result.user.id)
  } else {
    // Look at auth.errors and decide what, if anything, to display to the user.
  }
})

Building the SDK

Run npm run watch to keep the build running continually on file change.

To make the local version available for linking, run npm link in this directory.

In the project that should use the local version, run npm link '@snapauth/node-sdk' which will set up the symlinking.