npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@sysnormal/sso-js-integration

v1.6.0

Published

a common sysnormal sso integration functions to use in javascript and node

Downloads

300

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

sysnormalsysnormal

Keywords

sysnormaljavascriptjsssointegration

Readme

Sysnormal SSO JS Integration

npm version npm downloads TypeScript License

A TypeScript library for integrating applications with Sysnormal SSO.

This package provides a lightweight authentication and request SDK for applications that need to communicate with a Sysnormal SSO backend.

It includes utilities for:

  • authenticating users and systems
  • automatic token refresh
  • secure HTTP requests using fetch
  • automatic retry after token expiration
  • large JSON response handling
  • helper methods for common API operations

The library works in:

  • Browser environments (React, Vue, etc.)
  • Node.js
  • TypeScript or JavaScript projects

Installation

npm install @sysnormal/sso-js-integration

Peer dependency:

npm install @aalencarv/common-utils

Architecture Overview

The library implements a secure request pipeline built on top of the native fetch API.

secureFetch()
      ↓
defaultAuthenticatedFetch()
      ↓
fetch()
      ↓
checkTokenIsExpired()
      ↓
refreshToken()
      ↓
retry request automatically

Features:

  • Automatic Bearer token injection
  • Automatic token refresh
  • Transparent retry of failed requests
  • Optional stream parsing for very large JSON responses

⚙️ Library Configuration

The library provides a global configuration mechanism that allows applications to define how the SSO endpoints and environment should behave.

Configuration is performed using the config() function and should typically be called once during application startup.

Internally, the configuration values are stored in a frozen object to avoid accidental mutations during runtime.

config(params: ConfigParams)

Initializes or updates the internal configuration used by the library.

The provided parameters are merged with the default configuration. If a ssoPort is provided and ssoUrl is not explicitly set, the port will be automatically appended to the resolved SSO URL.

import { config } from "@sysnormal/sso-js-integration";

config({
  ssoUrl: "https://sso.company.com",
  ssoThisSystemId: 5,
  showResourceAsPopup: true
});

Available Configuration Parameters

| Parameter | Description | |---|---| |ssoProtocol|Protocol used to build the SSO URL (http or https). Ex.: http| |ssoAddress |Hostname or IP address of the SSO server. Ex.: localhost| |ssoPort |Port used by the SSO service. Ex.: 3001| |ssoUrl |Fully qualified base URL of the SSO server. Overrides protocol, address and port if provided. Ex.: http://localhost:3001| |ssoRegisterEndpoint |Endpoint used for user registration. Ex.: /auth/register| |ssoLoginEndpoint |Endpoint used for user login.| |ssoAuthEndpoint |Endpoint used to authenticate users.| |ssoRefreshTokenEndpoint |Endpoint used to refresh expired tokens.| |ssoRecordsEndpoint |Base endpoint for accessing SSO records.| |ssoSystemsEndpoint |Endpoint used to retrieve registered systems.| |ssoAccessProfilesEndpoint |Endpoint used to retrieve access profiles.| |ssoAgentsXAccessProfilesXSystemsEndpoint |Endpoint used to manage agent/access/system relationships.| |ssoResourcesEndpoint |Endpoint used to retrieve resources.| |ssoResourcePermissionsEndpoint |Endpoint used to retrieve resource permissions.| |ssoGetAllowedsResourcesEndpoint |Endpoint used to retrieve allowed resources for the current agent.| |ssoGetResourcePermissionsEndpoint |Endpoint used to retrieve permissions for a specific resource.| |ssoThisSystemId |Identifier of the current system in the SSO environment.| |ssoResourcetypeScreenId |Identifier representing a screen resource type.| |showResourceAsPopup |Determines whether resources should be rendered as popup routes instead of nested routes.| |authContextGetter|Function used to retrieve the current authorization context| |whenRefreshTokenIsExpired|Callback to handle action whe refresh token also is expired, commonly redirect to your login page|

Authentication

authOnSso()

Authenticate a user or agent against the SSO server.

import { authOnSso } from "@sysnormal/sso-js-integration";

const result = await authOnSso({
  identifier: "[email protected]",
  password: "secret"
});

if (result.success) {
  console.log(result.data.token);
}

Parameters:

  • identifier
  • password
  • identifierTypeId (optional)
  • url (optional SSO base URL)
  • endpoint (optional authentication endpoint)

Returns:

DefaultDataSwap

Token Refresh

refreshToken()

Refresh an expired authentication token.

import { refreshToken } from "@sysnormal/sso-js-integration";

const result = await refreshToken({
  token: currentToken,
  refreshToken: currentRefreshToken
});

If successful, the response contains:

  • new access token
  • new refresh token

Secure Requests

secureFetch()

Performs an authenticated request with automatic session recovery.

Features:

  • automatic Bearer token
  • expired token detection
  • refresh token execution
  • retry of original request

Example:

const result = await secureFetch({
  url: "/api/users",
  authContextGetter: () => authContext
});

The authContextGetter must return:

{
  token: string
  refreshToken: string
  refreshTokenUrl?: string
  changedAuthorization?: (auth) => void
}

When a token expires:

  1. refreshToken() is executed
  2. the authorization context is updated
  3. the original request is executed again

Default Authenticated Fetch

defaultAuthenticatedFetch()

Lower-level helper used internally by secureFetch.

Responsibilities:

  • attach authorization header
  • normalize request parameters
  • parse JSON responses
  • support large JSON streaming parsing

Example:

await defaultAuthenticatedFetch({
  url: "/api/data",
  reqParams: { method: "GET" },
  authContextGetter: () => authContext
});

Large JSON Handling

Very large API responses can be parsed using a streaming approach.

Enable it with:

secureFetch({
  url: "/api/large-data",
  useLargeJsonParser: true
});

Internally this uses:

largeJsonParse()

from @aalencarv/common-utils.

This helps prevent memory pressure when dealing with large payloads.

Data Helper Methods

The library also provides simplified helpers for common API patterns.

getData()

await getData({
  url: "/api/users",
  queryParams: { id: 10 }
});

putData()

await putData({
  url: "/api/users",
  data: user
});

patchData()

await patchData({
  url: "/api/users",
  data: partialUser
});

getOrCreate()

Fetches a resource or creates it if it does not exist.

await getOrCreate({
  url: "/api",
  endpoint: "/users",
  data: user
});

Workflow:

GET resource
   ↓
exists?
   ↓ yes → return
   ↓ no
PUT create

Authorization Context Example

Applications typically store tokens in a context or state manager.

const authContext = {
  token: "...",
  refreshToken: "...",
  refreshTokenUrl: "/sso/refresh",
  changedAuthorization: (auth) => {
    authContext.token = auth.token;
    authContext.refreshToken = auth.refreshToken;
  }
}

This allows secureFetch to automatically update tokens when they are refreshed.

Dependencies

  • @aalencarv/common-utils

Used for:

  • DefaultDataSwap
  • largeJsonParse
  • utility helpers

Organization

Sysnormal

Internal utilities and integration tools for Sysnormal platform services. GitHub
https://github.com/sysnormal1

Author

Alencar Velozo
[email protected]

License

ISC