npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

@impelsysinc/react-rbac

v0.1.5

Published

RBAC based authentication

Downloads

90

Readme

RBAC

RBAC based authentication

You build a nice looking website with authentication for a user and role associated with the user. Now you want the user to be authorized to access various resources across the application. You no longer need to worry any longer trying out various conditional statements with user's roles and resources they can and cannot access.

With ImpelsysInc/react-rbac, you get more granular control of the resources with easy to use API. After the auth flow, send a JSON with the response in the format permission.schema.json to the frontend client code.

Installation

npm install --save @ImpelsysInc/react-rbac

API

useRBAC Hook

Get a rbac context to pass it to RBACProvider.

RBACProvider Context Provider

const rbac = useRBAC();

<RBACProvider value={rbac}>
  {children}
</RBACProvider>

useRBACContext Context

Must be in one of the nested child component of RBACProvider.

Values

| Value | Type | Description | |----------------------|---------------------------|------------------------------------------------------------------------| | loadingPermissions | {boolean} | Async load permission. | | permissions | {Permission} | List of permissions. | | permissionError | {Error} | Any errors while fetching permissions. | | setPermissions | (Permission[]) => void | Manually set the permissions. | | clearPermissions | {() => void} | Clear all permissions from state. | | canAccess | {permission => boolean} | Is a rule valid i.e. a resource accessible for the loaded permissions. |

const { canAccess } = useRBACContext();
const { setPermissions, clearPermissions, permissions } = useRBACContext();

WithPermission Higher Order Component

A useful component to wrap any other component which need fine-grained permissions.

Props

| PropKey | Type | Defaults | Description | |:--------------:|:----------------------:|:-----------------:|:--------------------------------------------------------------------------------------------------------:| | children | {ReactNode} | | ReactNode children components | | type | {string} | [default=allow] | Either allow or deny permissive type of the rule. | | action | {string \| string[]} | | The kind of action(s) allowed for the given resource e.g. "get", "get.all", "update", "update.all", etc. | | resource | {string} | | The target resource of the rule e.g. "product.description", "product.", "product", etc. | | resourceType | {string} | [optional] | A meta field to specify the type of resource e.g. "menu", "page", "component", "", etc. | | record | {Object} | [optional] | Context of the permission i.e. any extra metadata e.g. { userId: 1, groupId: 2 }. |

<WithPermission resource="product.description" action="read">
  {children}
</WithPermission>

Usage

Using useRBAC hook

import React, { ReactNode, FunctionComponent } from "react";
import { useRBAC, RBACProvider, useRBACContext } from "@impelsysinc/react-rbac";

const PrivateComponent: FunctionComponent<{ children: ReactNode }> = ({
  children,
}) => {
  const { canAccess } = useRBACContext();

  const canReadResource = canAccess({ resource: "resource", action: "read" });

  if (canReadResource) {
    return <div>{children}</div>;
  }

  return null;
};

const Layout: FunctionComponent<{ children: ReactNode }> = ({ children }) => {
  const { setPermissions } = useRBACContext();

  useEffect(() => {
    const permissions = [
      /* FETCH PERMISSIONS */
      { action: "", resource: "" },
      { resource: "", action: ["", ""] },
      { resourceType: "", resource: "", action: ["", ""] },
    ];
    setPermissions(permissions);
  }, [setPermissions]);
};

const App: FunctionComponent<{ children: ReactNode }> = () => {
  const rbac = useRBAC();

  return (
    <RBACProvider value={rbac}>
      <Layout>
        <PrivateComponent>
          <h1>Will render if resource has read access.</h1>
        </PrivateComponent>
      </Layout>
    </RBACProvider>
  );
};

Using WithPermission HOC

import React, { ReactNode, FunctionComponent } from "react";
import { WithPermission, useRBAC, RBACProvider } from "@impelsysinc/react-rbac";

const App: FunctionComponent<{ children: ReactNode }> = () => {
  const rbac = useRBAC();

  return (
    <RBACProvider value={rbac}>
      <WithPermission resource="resource" action="read">
        <h1>Will render if resource has read access.</h1>
      </WithPermission>
    </RBACProvider>
  );
};

TODO

  • Support for multiple resources in permissions array.
  • Support for DENY permissions.
  • Support for resource wildcards.

Contribute

See Contribute.md

Contributors

This project follows the all-contributors specification.
Contributions of any kind are welcome!
See contribute.md for more information.

License

MIT © Impelsys India Pvt. Ltd.