uw-lib-authz.js

A node.js module providing universal(ish) authorization mechanisms for use in utilitywarehouse service implementations.

Usage

Middleware can be prepared using the following method: authorization('<entityType>', '<action>').middleware('<parameter>'), where the values are as follows:

entityType - the flavour of entity, for example partner or customer
action - the requested action for authorization, e.g. read or write
parameter - the express request parameter in which the entity ID can be found -- i.e. the placeholder name in the route.

For example:

const app = express();
const authentication = require('uw-lib-auth.js').oAuth2JWT();
const authorization = require('uw-lib-authz.js');

app.use(authentication.middleware());

app.get('/:id', authorization('partner', 'read').middleware('id'), (req, res) => {
  res.json({auth: req.auth});
});

app.use((error, req, res, next) => {
	res.status(error.status).json(error);
});

app.listen(3000, function () {
  console.log('Example app listening on port 3000!')
})

It is also possible to perform authorization manually, where necessary:

const authorization = require('uw-lib-authz.js');

if (!authorization('partner', 'read').verify(req.auth, 'K97777')) {
  // Handle authorisation failure.
}

Name		Name	Last commit message	Last commit date
Latest commit History 22 Commits
tests		tests
.eslintrc.js		.eslintrc.js
.gitignore		.gitignore
Makefile		Makefile
README.md		README.md
index.js		index.js
package.json		package.json
yarn.lock		yarn.lock

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

uw-lib-authz.js

Usage

About

Releases 2

Packages

Contributors 4

Languages

utilitywarehouse/uw-lib-authz.js

Folders and files

Latest commit

History

Repository files navigation

uw-lib-authz.js

Usage

About

Resources

Stars

Watchers

Forks

Releases 2

Packages 0

Contributors 4

Languages

Packages