1
0
mirror of https://github.com/verdaccio/verdaccio.git synced 2024-11-13 03:35:52 +01:00
verdaccio/packages/plugins/auth-memory
2021-10-15 18:49:47 +02:00
..
src refactor: remove @verdaccio/commons-api in favor @verdaccio/core and remove duplication (#2455) 2021-09-26 00:08:00 +02:00
test fix: cleanup warnings (#1986) 2021-04-09 17:54:24 +02:00
.babelrc refactor: relocate verdaccio-auth-memory plugin (#1975) 2021-04-09 17:54:22 +02:00
CHANGELOG.md chore: update versions (6-next) (#2427) 2021-09-08 19:33:09 +02:00
jest.config.js refactor: relocate verdaccio-auth-memory plugin (#1975) 2021-04-09 17:54:22 +02:00
LICENSE refactor: relocate verdaccio-auth-memory plugin (#1975) 2021-04-09 17:54:22 +02:00
package.json Remove Node 12 support (v6.x) (#2473) 2021-10-15 18:49:47 +02:00
README.md refactor: relocate verdaccio-auth-memory plugin (#1975) 2021-04-09 17:54:22 +02:00
tsconfig.build.json refactor: relocate verdaccio-auth-memory plugin (#1975) 2021-04-09 17:54:22 +02:00
tsconfig.json chore: add update-ts-references (#2168) 2021-04-09 17:54:44 +02:00

verdaccio-auth-memory

FOSSA Status CircleCI codecov

This verdaccio auth plugin keeps the users in a memory plain object. This means all sessions and users will disappear when you restart the verdaccio server.

If you want to use this piece of software, do it at your own risk. This plugin is being used for unit testing.

Installation

$ npm install -g verdaccio
$ npm install -g verdaccio-auth-memory

Config

Add to your config.yaml:

auth:
  auth-memory:
    users:
      foo:
        name: foo
        password: s3cret
      bar:
        name: bar
        password: s3cret

For plugin writers

It's called as:

const plugin = require('verdaccio-auth-memory');

plugin(config, appConfig);

Where:

  • config - module's own config
  • appOptions - collection of different internal verdaccio objects
    • appOptions.config - main config
    • appOptions.logger - logger

This should export four functions:

  • adduser(user, password, cb) Add new users

    It should respond with:

    • cb(err) in case of an error (error will be returned to user)
    • cb(null, false) in case registration is disabled (next auth plugin will be executed)
    • cb(null, true) in case user registered successfully

    It's useful to set err.status property to set http status code (e.g. err.status = 403).

  • authenticate(user, password, cb) Authenticate the user

    It should respond with:

    • cb(err) in case of a fatal error (error will be returned to user, keep those rare)
    • cb(null, false) in case user not authenticated (next auth plugin will be executed)
    • cb(null, [groups]) in case user is authenticated

    Groups is an array of all users/usergroups this user has access to. You should probably include username itself here.

  • allow_access(user, pkg, cb) Check whether the user has permissions to access a resource (package)

    It should respond with:

    • cb(err) in case of a fatal error (error will be returned to user, keep those rare)
    • cb(null, false) in case user not allowed to access (next auth plugin will be executed)
    • cb(null, true) in case user is allowed to access
  • allow_publish(user, pkg, cb) Check whether the user has permissions to publish a resource (package)

    It should respond with:

    • cb(err) in case of a fatal error (error will be returned to user, keep those rare)
    • cb(null, false) in case user not allowed to publish (next auth plugin will be executed)
    • cb(null, true) in case user is allowed to publish

License

FOSSA Status