npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

gi-security

v1.4.10

Published

gi-security -------------

Downloads

6

Readme

gi-security

Build Status

This module provides a thin wrapper around passport-js, and client side user and role management.

It uses a custom HMAC authentication strategy to authenticate json api requests

It also supports session based security for human users logged in via facebook.

Testing:

Server Unit tests use Mocha, Chai

Client Unit tests use Mocha, Karma

Server Integration tests use Cucumber.js and supertest

Release Notes

v1.4.10

  • Improve sign out functionality

v1.4.9

  • Use lastest gi-util

v1.4.8

  • Use latest gi-ui (fixes ui.sortable issue)

v1.4.7

  • Fix names for views (removing /views/ prefix)

v.1.4.6

  • Minor change to improve timing of promise resolution in Auth.logout()

v1.4.5

  • Closes #77 client Auth service now only fires login change event on first request, or when the login actually changes from in <-> out.

v1.4.4

  • Fixup for giUsername where default was not working correctly.

v1.4.3

  • giUsername directive now optionally evaluates an angular expression, which causes the validation to only be tested if the expression evaluates to true. (if there is no expression supplied then the directive works as before, and runs the validation.)

v1.4.2

  • Fixes issue where password confirm could be persisted in plaintext.

v1.4.1

  • Removed surplus logging

v1.4.0

  • Added /api/user/isAvailable public route which takes a ?username= query string and returns an {available: bool}
  • Added isUsernameAvailable(username) function to giUser service
  • Added giUsername form validation (uses above functionality)

v1.3.1

  • Merged v1.0.10 which adds /api/user/getResetToken for admins

v1.3.0

  • Renamed User service giUser
  • Added provider function setPasswordRequirements to giUser service
  • Added testPassword function to giUser service (validates regex given to provider)
  • Added giPassword form validation directive

v1.2.1

  • Added support for Mongo 3.X (just upped dependency versions for some modules)

v1.2.0

  • Feature: saveMe added to client User Service (allows non admin user to update details about themselves)

v1.1.0

  • Feature: Added general purpose roleAction middleware which allows you to test for arbitrary roles in middleware

v1.0.10

  • added /api/user/getResetToken for admins
  • use gi-util 1.0.9 which adds count() functionality to find query callbacks

v1.0.9

  • use gi-util 1.0.8 which fixes geo ip issue over ssl

v1.0.8

  • user and me now have a countryCode property (model -> cookie -> ip lookup)

v1.0.7

  • Added giRolePicker directive to allow user roles to be easily visualised

v1.0.6

  • Added /api/user/verify POST method which can be used by admins to check credentials

v1.0.5

  • Fixes an issue where users cannot be created if findByEmail returned {}

v1.0.4

  • Removed deprecated use of User.create() service method in usersController

v1.0.3

  • Updated angular version dependency to 1.2.28

v1.0.2

  • Added updateQuery method to users model to allow flexible batch updates

v1.0.1

  • Use latest gi-ui to avoid bower installation dependency conflict

v1.0.0

  • BREAKING CHANGES The Angular User and Role services have been switched to use promises and this release has been upgraded to be compatible with the 1.x series of gi-util

v0.3.10

  • The email is returned in the json after a sucessful password reset (enables clients to auto login)

v0.3.9

  • Fixes issue where password could be accidentally reset on update / save

v0.3.8

  • Admin and sysadmin users can now read all settings (previously the only settings that would return from the api were those with 'public-read' acl)

v0.3.7

  • Added password reset capability