npm
Sign UpSign In

@nymdev/express-nymag-user

1.0.2 • Public • Published

Express NYMag User

Volunteering user information for internal use. This is not authentication; It just looks for a plain-text, unsigned cookie that contains a username and LDAP groups.

All authorization logic is encapsulated in the implementation of isProtected.

NOTE: Use with care. It's the same as user's volunteering their own username, and is not auth. Temporary until OAuth.

Setup

If redirect_to does not retun valid url (e.g. if host is not defined) and the request should be blocked, the middleware protects via 403.

Usage

const express = require('express'),
  app = express(),
  expressNYMagUser = require('@nymdev/express-nymag-user'),
  authServer = 'http://some_auth_server/login?redirect_to=';

app.use(expressNYMagUser({
  redirectTo: function (originalUrl) {
    return authServer + encodeURIComponent(originalUrl);
  },
  isProtected: function (req) {
    return !!req.query.edit;
  }
}));

Installation

npm install --save @nymdev/express-nymag-auth

Readme

Keywords

Package Sidebar

Install

npm i @nymdev/express-nymag-user

Repository

github.com/nymag/express-nymag-user

Homepage

github.com/nymag/express-nymag-user

Weekly Downloads

0

Version

1.0.2

License

None

Last publish

Collaborators

  • dontae-vox-media
  • shilpa.shetty
  • tara.siegel
  • alex-vox-media
  • wramirez92
  • nymdev
  • nymdocker
  • reubenson
  • kerenlerner
  • nymedia
  • nymagwebops
  • phyllisstein
  • jordanp9312
  • ealcantara22
  • san_amiro
  • yoshokatana
Try on RunKit
Report malware