npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2025 – Pkg Stats / Ryan Hefner

@mediacomem/knex-nonce-store

v1.0.5

Published

LTI nonce store with Knex - use with ims-lti package

Downloads

11

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

alphahydraealphahydraetazaftazaf

Keywords

KnexknexOAuthLTInonceexpressnodelitims-lti

Readme

Knex Nonce Store

This package is to be used with the ims-lti package that helps implementing some parts of the LTI spec for a web application, notably the part where you have to validate a request as being a correct LTI request.

To achieve that, the ims-lti uses a store to save OAuth nonce/timestramp received. It also implements two stores : one in-memory, another using Redis (see here), and allows you to add you own nonce store.

This knex-nonce-store package implements a new nonce store that uses Knex to do the work.

Prerequisites

This package expect that the following packages are installed on your project.

ims-lti

Being a complement to the ims-lti package, you should install this package prior to installing knex-nonce-store (see the doc of ims-lti to do that).

knex and database package

Before using the knex-nonce-store, you need to install knex as long as the package for the database you will use with it.

To do that, please see the knex documentation.

Setup

To manage and store the OAuth nonce/timestamp with knex-nonce-store you need to create a new table in your database.

By default, this table should be called nonce_store, but you can give the library the name you want when instanciating it (see API).

The table should be composed of at least two columns :

  • value - Will store the nonce's value. Should accept the longest strings allowed by your DBMS. It's suggested to make this column the primary key of your table.
  • timestramp - Will store the timestamp's value. Should accept long enough string to store a timestamp.

Usage

To use this nonce store, you need to instanciate it and pass the instance to the constructor of Provider when setting up a Tool Provider with the ims-lti package (see the corresponding doc of ims-lti).

const { Provider } = require('ims-lti');
const knex = require('knex');
const { KnexNonceStore } = require('@mediacomem/knex-nonce-store');

const knexDB = knex({
  // You need to initialize the knex library. See the Knex documentation.
});

// Pass your knex instance to the constructor of KnexNonceStore
const store = new KnexNonceStore(knexDB);

// Pass your store instance to the constructor of Provider
const provider = new Provider(<consumer_key>, <consumer_secret>, store);

API

KnexNonceStore class

The main API of the knex-nonce-store is the KnexNonceStore class (documentation).

It's constructor can accept four paramaters :

  • knex { Object } - A initialized knex instance. This is mandatory.
  • tableName { String } - The name of the table where the nonces/timestamps will be stored. Optional and defaults to nonce_store.
  • expireIn { Number } - The nonce are stored so that they cannot be reused by another request before a certain amount of time. This parameter allows you to define this duration (in number of seconds). Optional and defaults to 5 minutes (300 seconds).
  • lifetime { Number } - The request are timed using a timestamp. This timestamp should not be too old when validated by the ims-lti Provider. This parameter allows you to define the number of seconds during which the timestamp is "fresh". Optional and defaults to 5 minutes (300 seconds).

Utiliy functions

You can also import two utility functions, that are used internally by the KnexNonceStore class.

  • isTimestamp() (documentation) - A function that takes a single parameter and tells you (with a boolean) wether or not its value could be considered a timestamp.
  • isFreshTimestamp() (documentation) - A function that checks if a timestamp is "fresh" (as in "not too old"). It takes two parameters and returns a boolean :
    • timestamp - The timestamp to test.
    • lifetime - The number of seconds during which the timestamp is fresh. Optional and defaults to 5 minutes (300 seconds).