npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

bitcoincash-oauth-client

v0.2.0

Published

Universal JavaScript client library for Bitcoin Cash OAuth authentication - works in both browser and Node.js environments

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

joemarctjoemarct

Keywords

bitcoin-cashbchoauthauthenticationlibauthbrowsernodejsuniversal

Readme

Bitcoin Cash OAuth Client

Universal JavaScript client library for Bitcoin Cash OAuth authentication. Works in both browser and Node.js environments using the same API.

Features

  • 🔐 Bitcoin Cash Authentication - Uses ECDSA signatures for secure authentication
  • 🌐 Universal - Works in browser and Node.js without changes
  • 📦 Lightweight - Minimal dependencies using libauth
  • 🎯 TypeScript - Full TypeScript support with type definitions
  • Modern - Supports ES modules and CommonJS

Installation

npm install bitcoincash-oauth-client

Quick Start

Browser (ES Modules)

<script type="module">
  import { BitcoinCashOAuthClient } from './node_modules/bitcoincash-oauth-client/dist/index.mjs';
  
  const client = new BitcoinCashOAuthClient({
    serverUrl: 'http://localhost:8000',
    network: 'mainnet',
    secureStorage: localStorage
  });
  
  // Generate keypair
  const keypair = await client.generateKeypair();
  console.log('Address:', keypair.address);
  
  // Register and authenticate
  const registration = await client.register(keypair.address);
  const auth = await client.authenticate(
    registration.user_id,
    keypair.privateKey,
    keypair.publicKey
  );
  
  console.log('Access token:', auth.access_token);
</script>

Node.js

import { BitcoinCashOAuthClient } from 'bitcoincash-oauth-client';

const client = new BitcoinCashOAuthClient({
  serverUrl: 'http://localhost:8000',
  network: 'mainnet'
  // secureStorage is optional in Node.js
});

async function main() {
  // Generate keypair
  const keypair = await client.generateKeypair();
  console.log('Address:', keypair.address);
  
  // Register and authenticate
  const registration = await client.register(keypair.address);
  const auth = await client.authenticate(
    registration.user_id,
    keypair.privateKey,
    keypair.publicKey
  );
  
  console.log('Authenticated! Token:', auth.access_token);
  
  // Make authenticated request
  const response = await client.authenticatedRequest('/api/protected-resource');
  const data = await response.json();
  console.log(data);
}

main();

CommonJS (Node.js)

const { BitcoinCashOAuthClient } = require('bitcoincash-oauth-client');

const client = new BitcoinCashOAuthClient({
  serverUrl: 'http://localhost:8000',
  network: 'mainnet'
});

// ... same usage as ES module version

API Reference

Constructor Options

const client = new BitcoinCashOAuthClient({
  serverUrl: 'http://localhost:8000',  // OAuth server URL
  network: 'mainnet',                  // 'mainnet' or 'testnet'
  secureStorage: localStorage,         // Optional: storage for tokens
  fetch: customFetch                   // Optional: custom fetch implementation
});

Methods

init()

Initialize the client (automatically called by other methods).

await client.init();

generateKeypair()

Generate a new Bitcoin Cash keypair.

const { privateKey, publicKey, address } = await client.generateKeypair();

Returns:

  • privateKey (string): Hex-encoded private key
  • publicKey (string): Hex-encoded compressed public key
  • address (string): Bitcoin Cash CashAddr address

register(address, userId?)

Register a new user with the OAuth server.

const result = await client.register('bitcoincash:qz...', 'optional-user-id');
console.log(result.user_id);

authenticate(userId, privateKey, publicKey, timestamp?, domain?)

Authenticate with the server using ECDSA signature.

const auth = await client.authenticate(
  userId,
  privateKeyHex,
  publicKeyHex,
  null,  // Optional: custom timestamp
  'app.example.com'  // Optional: domain for message binding (defaults to window.location.host)
);

console.log(auth.access_token);
console.log(auth.refresh_token);
console.log(auth.expires_in);

Message Format: The signed message uses the format bitcoincash-oauth|domain|userId|timestamp:

  • bitcoincash-oauth: Protocol identifier (prevents cross-protocol replay)
  • domain: Domain/host binding (prevents phishing, defaults to current host)
  • userId: User's unique identifier
  • timestamp: Unix timestamp for replay protection

authenticatedRequest(endpoint, options?)

Make an authenticated HTTP request.

const response = await client.authenticatedRequest('/api/user/profile', {
  method: 'GET'
});
const data = await response.json();

refreshToken(refreshToken)

Refresh an expired access token.

const newAuth = await client.refreshToken(refreshToken);

revokeToken(token)

Revoke a token on the server.

await client.revokeToken(token);

getToken()

Get the currently stored token from secure storage.

const token = client.getToken();

createAuthMessage(userId, timestamp?, domain?)

Create the authentication message format used for signing.

const message = client.createAuthMessage('user_123', 1234567890, 'app.example.com');
// Returns: "bitcoincash-oauth|app.example.com|user_123|1234567890"

Parameters:

  • userId (string): The user's unique identifier
  • timestamp (number, optional): Unix timestamp (defaults to current time)
  • domain (string, optional): Domain for message binding (defaults to window.location.host or 'oauth')

Returns: Message string in format bitcoincash-oauth|domain|userId|timestamp

signAuthMessage(message, privateKeyHex)

Sign an authentication message with a private key.

const message = client.createAuthMessage('user_123', 1234567890, 'app.example.com');
// Returns: "bitcoincash-oauth|app.example.com|user_123|1234567890"

const signature = await client.signAuthMessage(message, privateKeyHex);

Storage Interface

The secureStorage option accepts any object implementing this interface:

interface SecureStorage {
  getItem(key: string): string | null;
  setItem(key: string, value: string): void;
  removeItem(key: string): void;
}

Browser Example (localStorage)

const client = new BitcoinCashOAuthClient({
  secureStorage: localStorage
});

Node.js Example (custom)

const client = new BitcoinCashOAuthClient({
  secureStorage: {
    storage: new Map(),
    getItem(key) { return this.storage.get(key) || null; },
    setItem(key, value) { this.storage.set(key, value); },
    removeItem(key) { this.storage.delete(key); }
  }
});

Requirements

  • Node.js: 14.0.0 or higher
  • Browser: Modern browsers with ES2018+ support
  • Fetch API: Available natively in Node.js 18+ and all modern browsers

Build from Source

cd packages/bitcoincash-oauth-js
npm install
npm run build

License

MIT