npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

minapi

v1.14.0

Published

Minimum viable API w/ authentication and permissions, CRUD and resource management

Downloads

711

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

hqhq

Keywords

frameworkmongodbapiexpressauthjwtbackendmvpcrudrest

Readme

MinAPI

MinAPI is a comprehensive API framework built on Express and MongoDB that provides a minimum viable API setup with built-in authentication, permissions, CRUD operations, and resource management.

Features

  • 🔐 Built-in Authentication & JWT
  • 👥 User Management & Permissions
  • 📝 CRUD Operations
  • 📨 Email Notifications (Postmark integration)
  • 🗄️ MongoDB Integration
  • 🖼️ File Management & Image Processing
  • 🔒 Security Features
  • 📱 Phone Number Validation
  • ☁️ AWS S3 Integration

Installation

npm install minapi
# or
yarn add minapi

System Requirements

The following system dependencies are required:

LibreOffice (for document processing)

# Ubuntu
sudo apt install libreoffice

# Mac
brew install libreoffice

Ghostscript (for PDF processing)

# Mac
brew install ghostscript

# Ubuntu
sudo apt-get install ghostscript

These need to be installed before running npm install or yarn.

Quick Start

  1. Create a new project and install MinAPI:
mkdir my-api
cd my-api
npm init -y
npm install minapi
  1. Create a configuration file (minapi.config.js):
module.exports = {
  mongodb: {
    uri: 'your-mongodb-uri',
  },
  jwt: {
    secret: 'your-jwt-secret',
  },
  // Add other configurations as needed
}
  1. Create your main file:
const MinAPI = require('minapi');

const api = new MinAPI({
  config: require('./minapi.config.js')
});

api.start();

Configuration

MinAPI is configured through a minapi.config.js file in your project root. Here's a complete configuration reference:

module.exports = {
  // API Name
  name: 'Your API Name',

  // Authentication Configuration
  auth: {
    // JWT configuration
    jwt: {
      expirations: {
        auth: '7d',    // Authentication token expiration
        verify: '24h', // Verification token expiration
        reset: '1h'    // Password reset token expiration
      }
    }
  },

  // Database Models Configuration
  models: [
    {
      _name: 'user',           // Model name
      _label: 'Users',         // Display label
      _collection: 'users',    // MongoDB collection name
      _values: {
        // Define model fields with their types and CRUD permissions
        email: ['string', 'c,r,u'],
        password_hash: ['string', 'c,r'],
        email_verified: ['boolean', 'c,r,u'],
        created_at: ['date', 'r'],
        updated_at: ['date', 'r']
      }
    }
  ],

  // Routes Configuration
  routes: () => [
    {
      _id: '/users(user)',  // Route pattern
      _create: {
        allow: true         // Permission rules
      },
      _read: {
        allow: true,
        where: '_id'        // URL parameter mapping
      },
      _update: {
        allow: '@_user._id=@user._id'  // Permission rule example
      },
      _delete: {
        allow: false
      }
    }
  ],

  // Notification Configuration
  notifications: {
    email: {
      provider: 'postmark',
      from: '[email protected]',
      templates: {
        welcomeEmail: 'template-id',
        passwordReset: 'template-id',
        emailVerification: 'template-id'
      }
    }
  },

  // File Storage Configuration
  files: {
    storage: {
      provider: 's3',    // 's3' or 'local'
      s3: {
        bucket: process.env.AWS_BUCKET,
        region: process.env.AWS_REGION
      },
      local: {
        uploadDir: './uploads'
      }
    }
  }
}

Environment Variables

Required environment variables:

# Server
PORT=3000
NODE_ENV=development

# MongoDB
MONGODB_URI=mongodb://localhost:27017/your-database
MONGODB_DATABASE=your-database-name

# Authentication
JWT_SECRET=your-secure-jwt-secret

# AWS S3 (if using S3 storage)
AWS_ACCESS_KEY_ID=your-access-key
AWS_SECRET_ACCESS_KEY=your-secret-key
AWS_REGION=your-region
AWS_BUCKET=your-bucket-name

# Email (if using Postmark)
POSTMARK_SERVER_TOKEN=your-postmark-token

# Application
APP_NAME=Your App Name
APP_URL_VERIFY=https://your-app.com/verify/:token
APP_AUTHOR=Your Name
[email protected]

Permission Rules

The allow property in routes supports complex permission rules:

// Basic permission
allow: true  // Allow all
allow: false // Deny all

// Compare values
allow: '@_user._id=@user._id'  // Current user matches resource user

// Array membership
allow: 'admin=in=@_user.roles'  // User has admin role

// Logical operations
allow: {
  and: [
    '@_user._id=@user._id',
    'admin=in=@_user.roles'
  ]
}
allow: {
  or: [
    '@_user._id=@user._id',
    'admin=in=@_user.roles'
  ]
}

Features in Detail

Authentication

  • JWT-based authentication
  • Password hashing with bcrypt
  • Two-factor authentication support
  • Password reset functionality
  • Email verification

File Management

  • Image processing with Sharp
  • AWS S3 integration for file storage
  • Document processing capabilities

Notifications

  • Email notifications via Postmark
  • Customizable email templates

Database

  • MongoDB integration
  • CRUD operation helpers
  • Query builders
  • Data validation

API Reference

[Documentation to be added]

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

License

MIT © Haseeb Qureshi (HQ)

Support

For issues and feature requests, please use the GitHub issues page.