npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

expressjs-authorization

v1.0.0

Published

Authorization middleware based in permissions by modules, with possibility of group in roles.

Downloads

8

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

apascualmapascualm

Keywords

expressmongodbmongoosepluginmiddlewareauthorizationpermissionsroles

Readme

expressjs-authorization

Expressjs Authorization Package is a Authorization system that it is based in permissions, you can group them by roles.

These permissions are separate by modules, this way you can take control about that modules you give permissions (ex. user, authorization, blog, pages, etc) to the users.

The persistence is make automatically via mongodb, you only have that said how is named (by deafult user) the user field that you authentication middleware (ex passportjs) load in your request.

First Steps

These steps are needed for initialize the middleware in Express.

const express = require('express');
const Authorize = require('express-authorization');

app.use(Authorize.initialize({userField: 'otherUserField'})); // By default is loaded 'user'

Routes

Optionally, but very recommended. You can load the routes predefined

app.use(Authorize.Routes)

These are the routes available for authorization proposes and they are protected with authentication module permissions.

Roles routes.

Get all roles
Method: GET, Route: /authorizations/roles

Get a role by id
Method: GET, Route: /authorizations/roles/:id

Create a role Method: POST, Route: /authorizations/roles

// Body request
{ name: 'admin' }

Assign a role to a user.
Method: GET, Route: /authorizations/roles/:roleId/assign/permission/:permissionId

Revoke a role to a user.
Method: GET, Route: /authorizations/roles/:roleId/revoke/permission/:permissionId

Delete a role.
Method: DELETE, Route: /authorizations/roles/:id

Permissions routes.

Get all permissions
Method: GET, Route: /authorizations/permissions

Get a permission by id
Method: GET, Route: /authorizations/permissions/:id

Create a new permission
Method: POST, Route: /authorizations/permissions

// Body request
{ name: 'create', module: 'authorization' }

Delete a permission
Method: DELETE, Route: /authorizations/permissions/:id routes.delete(''

User authorization routes

Assign the permission indicated to the user via ids.
Method: GET, Route: /authorizations/users/:userId/assign/permission/:permissionId

Revoke the permission indicated to the user via ids.
Method: GET, Route: /authorizations/users/:userId/revoke/permission/:permissionId

Assign the role indicated to the user via ids.
Method: GET, Route: /authorizations/users/:userId/assign/roles/:roleId

Revoke the role indicated to the user via ids.
Method: GET, Route: /authorizations/users/:userId/revoke/roles/:roleId

Initial configuration routes

These routes are unprotected and only is recommended for a initial configuration. To activate these routes you may put the following variable in your .env file (AUTH_INIT=true), if not is configure of this way you don't will be access to these routes.

Make and load the initial roles and permissions
Method: GET, Route: /authorizations/initialize/

roles: ['admin', 'user', 'guest']

permissions:
module: 'generic', permissions: ['create', 'read', 'update', 'delete', 'manage']
module: 'authorization', permissions: ['create', 'read', 'update', 'delete', 'manage']

Assign to the user the roles 'admin' and 'user' with your permissions extended.
Method: GET, Route: /authorizations/initialize/:userId

Authorization Class

Methods:

hasAnyPermission

Check that the user have any of the permissions passed.

Parameters:

  • Permissions {string|array} name of the permission required.
  • Module {string} name of the module that contain the permissions.

Return:

Method hasAllPermission

Check that the user have all the permissions passed.

Parameters:

  • Permissions {string|array} name of the permission required.
  • Module {string} name of the module that contain the permissions.

Return:

Method hasAnyRole

Check that the user have any of the roles passed.

Parameters:

  • Roles {string|array} name of the permission required.
  • Module {string} name of the module that contain the permissions.

Return:

Method hasAllRole

Check that the user have all the roles passed.

Parameters:

  • Roles {string|array} name of the permission required.
  • Module {string} name of the module that contain the permissions.

Return:

Method createPermission

Create a permission.

Parameters:

  • name {string} name of the permission.
  • module {string} name of the module that contain the permissions.

Return:

  • Return the permission created.

Method createRole

Create a role.

Parameters:

  • name {string} name of the role.

Return:

  • Return the role created.

Method assignPermissionToRole

Assign a Permission to a role.

Parameters:

  • roleId {string} id of the role.
  • permissionId {string} id of the permission.

Return:

  • Return the role with the new permission assigned.

Method removePermissionToRole

Revoke a Permission to a role.

Parameters:

  • roleId {string} id of the role.
  • permissionId {string} id of the permission.

Return:

  • Return the role with the permission revoked.

Method assignPermissionToUser

Assign a Permission to a user.

Parameters:

  • userId {string} id of the user.
  • permissionId {string} id of the permission.

Return:

  • Return the user with the new permission assigned.

Method removePermissionToUser

Revoke a Permission to a user.

Parameters:

  • userId {string} id of the user.
  • permissionId {string} id of the permission.

Return:

  • Return the user with the permission revoked.

Method assignRoleToUser

Assign a role to a user.

Parameters:

  • userId {string} id of the user.
  • roleId {string} id of the role.

Return:

  • Return the user with the new role assigned.

Method removeRoleToUser

Revoke a role to a user.

Parameters:

  • userId {string} id of the user.
  • roleId {string} id of the role.

Return:

  • Return the user with the role revoked.

Method getUserAuthorizations

Get roles and permissions of a user.

Parameters:

  • userId {string} id of the user.

Return:

  • Return the user with the roles and permissions assigned.

Authorization Middleware Class

Methods:

Method middleware()

Return a middleware and execute the check with the permissions/roles that will be used in a expressjs Route.

Not parameters required:

Return:

  • Return a middleware to express.

Method middlewareOr()

Check if any middleware was true.

Parameters:

  • Middlewares {middleware|array}

Return:

  • Return a middleware to express with all the checks.

Method pass()

Check if the user have the permissions/roles required

Not parameters required:

Return:

  • Return {boolean}.

Example of implementation.

You can watch an example of how you can implement this package in the "example" folder.

License

This project is licensed with Apache License 2.0