npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2024 – Pkg Stats / Ryan Hefner

super-jwt

v0.2.1

Published

Super-JWT helps to authenticate your users based on Superfluid streams using JSON Web Tokens (JWT)

Downloads

29

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

salmandabbakutisalmandabbakuti

Keywords

superfluidsuperjwtsuperfluid-auth

Readme

SuperJWT

npm version

Super-JWT is a Node.js package that helps authenticate users based on Superfluid streams using JSON Web Tokens (JWT).

Installation

To install Super-JWT, use npm:

npm install super-jwt@latest

Usage

1. Authenticating a User with Stream

To authenticate a user with a Superfluid stream, use the authenticateWithStream function. The function takes the following parameters:

streamPayload: an object containing the stream payload parameters, including chain, sender, receiver, token, and any other custom parameters.

secret: a string or buffer containing the secret key for signing the JWT.

jwtOptions: an optional object containing options for signing the JWT, such as expiresIn or algorithm.

StreamPayload

An object that represents the required parameters for authenticating a Superfluid stream. It has the following properties:

chain: A Chain value that represents the chain on which the Superfluid stream is created. See supported chains for more information.

sender: A string that represents the ethereum address of the sender of the stream.

receiver: A string that represents the ethereum address of the receiver of the stream.

token: A string that represents the ethereum address of the SuperToken being used.

In addition to the required parameters mentioned earlier, you can also pass any of the where parameters of the Superfluid subgraph streams query. This allows you to filter streams based on other properties such as currentFlowRate_gt, which is the flow rate in the stream. For more information on the available query parameters, you can refer to the Superfluid subgraph documentation.

Example

import { authenticateWithStream } from "super-jwt";

const streamPayload = {
  chain: "sepolia",
  sender: "0x123456789",
  receiver: "0x987654321",
  token: "0x0123456789abcdef",
  currentFlowRate_gt: 1
};

const secret = "my_secret_key";
const jwtOptions = { expiresIn: "1h" };

const { token, stream } = await authenticateWithStream(
  streamPayload,
  secret,
  jwtOptions
);
console.log(token); // prints the signed JWT
console.log(stream); // prints the stream payload

2. Verifying a Token

To verify a Super-JWT token, use the verifyToken function. The function takes the following parameters:

jwtToken: the JWT token to verify.

secret: a string or buffer containing the secret key for signing the JWT.

Example

import { verifyToken } from "super-jwt";

const jwtToken =
  "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjaGFpbiI6ImdvZXJsaSIsInNlbmRlciI6IjB4MTIzNDU2Nzg5IiwicmVjZWl2ZXIiOiIweDk4NzY1NDMyMSIsInRva2VuIjoiMHgwMTIzNDU2Nzg5YWJjZGVmIiwiaWF0IjoxNTE2MjM5MDIyfQ.LCeBCiVpKZYtb-GwzGMCQ44hOy1iym_sWmYdOgH0bFs";

const secret = "my_secret_key";

const decoded = verifyToken(jwtToken, secret);
console.log(decoded);
// expected output: prints the decoded JWT Stream payload
// {
// chain: 'sepolia',
// sender: '0xc7203561ef179333005a9b81215092413ab86ae9',
// receiver: '0xdc7c5b449d4417a5aa01bf53ad280b1bedf4b078',
// token: '0xf2d68898557ccb2cf4c10c3ef2b034b2a69dad00',
// iat: 1680752577,
// }

Supported Chains

Super-JWT supports the following chains:

type Chain =
  | "sepolia"
  | "opsepolia"
  | "fuji"
  | "bsepolia"
  | "scrsepolia"
  | "matic"
  | "mainnet"
  | "xdai"
  | "optimism"
  | "avalanche"
  | "bsc"
  | "celo"
  | "base";

Publishing

To publish a new version of the package to npm, run the following command:

npm run build

npm publish

Change Log

0.2.0

  • Updated subgraph endpoints for supported chains.
  • Removed deprecated chains, added base sepolia, sepolia and opsepolia chains.

0.0.9

  • Omit source and test files when publishing to npm to reduce package size.

0.0.7

  • Added more chains to the supported chains list. see supported chains for more information.
  • Throw an error if the chain is not supported instead of using default chain.
  • Better error handling.

Safety

This is experimental software and subject to change over time.

This package is not audited and has not been tested for security. Use at your own risk. I do not give any warranties and will not be liable for any loss incurred through any use of this codebase.

License

This package is licensed under the MIT License. See the LICENSE file for more information.