• Stars
    star
    223
  • Rank 178,458 (Top 4 %)
  • Language
    JavaScript
  • Created about 9 years ago
  • Updated about 9 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Authentication for microservices.

Authentic

Authentication for microservices. This is collection of the following modules:

What is it?

Authentic is a collection of modules to help your various services authenticate a user. Put more concretely, Authentic does the following:

  • Allow your users to "sign up", "confirm", "log in", and "change password" with their email address and a chosen password (persisted to a db of your choice), and provide an authentication token (JWT) on successful log in.
  • Easily protect access to your microservice by decrypting a user's authentication token.
  • Help make requests from the browser to authentic-server for sign up/confirm/login/password reset, as well as automatically including the authentication token in requests to your microservices.

There's also a more full introduction to Authentic.

Example

Let's pretend you work at ScaleHaus (Uber meets Airbnb for lizards). You have a web app at admin.scalehaus.io (client-side SPA) that is an interface to various microservices (like reporting.scalehaus.io). You want to make sure that only employees with a @scalehaus.io email address have access to your app and microservices. Here's how you can do it:

  1. Create an authentication server with authentic-server available at auth.scalehaus.io.

  2. Add views to admin.scalehaus.io for signup/confirm/login/reset-password and use authentic-client for those actions and for requests to your microservices.

  3. In your microservice(s), e.g. reports.scalehaus.io, use authentic-service to decrypt the authentication token provided in the request and verify the user's identity and that their email ends in @scalehaus.io.

Installation

It's best to install each module individually in the project that needs it. In theory, you could have a single project that needs to be the server, client, and service -- in that case feel free to npm install --save authentic. Otherwise use npm install --save authentic-server, npm install --save authentic-service, or npm install --save authentic-client depending on your project.

In Action

Authentic Server

var fs = require('fs')
var http = require('http')
var Authentic = require('authentic').server

var auth = Authentic({
  db: './userdb',
  publicKey: fs.readFileSync('/rsa-public.pem'),
  privateKey: fs.readFileSync('/rsa-private.pem'),
  sendEmail: function (email, cb) {
    // send the email however you'd like and call cb()
  }
})

http.createServer(auth).listen(1337)
console.log('Authentic Server listening on port', 1337)

Microservice

Authentic provides a token decrypt function for easy use, but since everything is standard JWT, feel free to use your own (authentic-server exposes its public-key by default at /auth/public-key).

var http = require('http')
var Authentic = require('authentic').service

var auth = Authentic({
  server: 'https://auth.scalehaus.io'
})

http.createServer(function (req, res) {
  // Step 1: decrypt the token
  auth(req, res, function (err, authData) {
    if (err) return console.error(err)

    // Step 2: if we get an email and it's one we like, let them in!
    if (authData && authData.email.match(/@scalehaus\.io$/)) {
      res.writeHead(200)
      res.end('You\'re in!')

    // otherwise, keep them out!
    } else {
      res.writeHead(403)
      res.end('Nope.')
    }
  })
}).listen(1338)

console.log('Protected microservice listening on port', 1338)

Client Login

Authentic provides a HTTP JSON client for easy use, but since everything is standard JWT, feel free to use your own.

var Authentic = require('authentic').client

var auth = Authentic({
  server: 'https://auth.scalehaus.io'
})

var creds = {
  email: '[email protected]',
  password: 'notswordfish'
}

// Step 1: log in
auth.login(creds, function (err) {
  if (err) return console.error(err)

  // Step 2: make a JSON request with authentication
  var url = 'https://reporting.scalehaus.io/report'
  auth.get(url, function (err, data) {
    if (err) return console.error(err)

    // show that report
    console.log(data)
  })
})

License

MIT

More Repositories

1

react-pivot

React-Pivot is a data-grid component with pivot-table-like functionality for data display, filtering, and exploration.
JavaScript
1,049
star
2

cssify

Simple middleware for Browserify to add css styles to the browser.
JavaScript
123
star
3

video-download-tool-server

JavaScript
53
star
4

sassify

Require scss files in Browserify
JavaScript
51
star
5

crazy_delicious_coffee_processing

This is the code that goes along with the tutorial: CoffeeScript + Processing.js == Crazy Delicious
JavaScript
51
star
6

BaseJSApp

a starting point for js apps
JavaScript
47
star
7

video-download-tool

VideoDownloadTool.io makes it easy to download videos--but only the parts you want. Enter a video's url, select the beginning and end of your clip, optionally crop the video frame, and download.
JavaScript
42
star
8

node-dataframe

JavaScript
38
star
9

wave-pendulum

simple html 5 wave pendulum using coffeescript and processing.js
CoffeeScript
35
star
10

power-slides

Create powerful slideshows for talks and presentations. Each "slide" is a JS function that can do *anything*.
JavaScript
29
star
11

authentic-server

This is the server component of Authentic. This provides endpoints for signup, login, confirm, and password change.
JavaScript
24
star
12

datavis-la-november-13

JavaScript
21
star
13

perlin-simplex

Simplex Perlin noise
JavaScript
18
star
14

duhstar

Easily see what's taking up disk space. Shows folder and files sorted by size with human readable units.
JavaScript
15
star
15

tailgate

Serve up your music, and listen to it at work or on your phone.
JavaScript
14
star
16

serialize-stream

Stream json, ndjson, or csv.
JavaScript
13
star
17

easy-ears

Easy sound reactivity for Chrome/Webkit
JavaScript
12
star
18

earstream

Streaming audio reactivity in the browser using WebRTC + Web Audio API
JavaScript
11
star
19

authentic-ui

The client-side UI for Authentic. Provides UI for signup, login, and password change
JavaScript
11
star
20

date-range-array

Create an array of dates
JavaScript
10
star
21

s3-rsync

Sync a local directory to S3
JavaScript
9
star
22

korg-nano

A simple module for getting data events from a Korg Nano Kontrol.
JavaScript
8
star
23

rambly-docs

8
star
24

dynamodown

A drop in replacement for LevelDOWN that works with DynamoDB as its storage. Can be used with LevelUP
JavaScript
8
star
25

authentic-service

This is the service component of Authentic. This will help decode tokens so that you can authenticate users within a microservice.
JavaScript
7
star
26

authentic-client

The client component of Authentic. This helps interact with an `authentic-server` so that you can easily signup, confirm, login, and change-password for users. It will also help send tokens to microservices that require authentication.
JavaScript
6
star
27

simplify-gmail-native

Run Simplify / Gmail as a standalone app using Nativefier.
Shell
5
star
28

loading-wave

A simple wave pendulum-like loading animation for the browser
CoffeeScript
5
star
29

y-options

Get Options Quotes
JavaScript
5
star
30

simple-timeseries

A simple timeseries chart using D3.
JavaScript
4
star
31

react-pivot-example-app

Example app using browserify and babelify. Uses wzrd for a dev server.
JavaScript
4
star
32

retrial

Easily retry an async function without mangling it.
JavaScript
4
star
33

hedwig

JavaScript
4
star
34

strippr

Fun with RGB LED strips
JavaScript
3
star
35

visuals-js

JavaScript
3
star
36

twitter_chimes

Windchimes, but with Twitter and CoffeeScript
CoffeeScript
3
star
37

connect-health-check

JavaScript
3
star
38

deltriperno

Delaunay triangulation + Perlin noise
JavaScript
3
star
39

productionize

Simple additions for a production app
JavaScript
3
star
40

pathkey

Generate keys from objects and parse keys back into objects. Useful for working with kv stores like leveldb and redis.
JavaScript
2
star
41

plug-dj-bot

A bot for Plug.dj
JavaScript
2
star
42

turntable_friends

JavaScript
2
star
43

gcp-secret-fetcher

JavaScript
2
star
44

req-logger

Simple HTTP request logging. `responseTime`, `method`, `url`, `statusCode`
JavaScript
2
star
45

level-dynamodb

JavaScript
2
star
46

plug-dj-login

Log in to Plug.dj and get an auth cookie
JavaScript
2
star
47

react-browserify-basics

Basic structure for a react/browserify app
JavaScript
2
star
48

coolkit

CoffeeScript
2
star
49

node-directify

Director.js with easier use with Browserify, plus some added features.
JavaScript
2
star
50

spotx-api

A simple module for accessing SpotX report data.
JavaScript
2
star
51

lkqd-api

A simple module for accessing LKQD report data.
JavaScript
2
star
52

ns-livecoded-audio-visualizer

JavaScript
2
star
53

coding-guidelines

1
star
54

jsonfiles_client

JavaScript
1
star
55

cdo-package

Alphabetizes your dependencies
JavaScript
1
star
56

hypnotable

Stream objects to a table
CoffeeScript
1
star
57

onevideo-api

A simple module for accessing ONE by AOL: Video report data.
JavaScript
1
star
58

perfdemo

JavaScript
1
star
59

healthpoint

Easily expose your http server's health.
JavaScript
1
star
60

video-delay

Display web cam video... but with a delay
JavaScript
1
star
61

animated-giffer

A server to help make animated gifs from a sequence of pngs
JavaScript
1
star
62

bm-casio

Ruby
1
star
63

node-cap-deploy

Ruby
1
star
64

html5slides

1
star
65

jsw-client

The front-end for jsw.bestofjs.com
CoffeeScript
1
star
66

plug-dj-tests

JavaScript
1
star
67

authentic-dynamo-example

JavaScript
1
star
68

test

1
star
69

syynteractive_101

JavaScript
1
star
70

webfiles

Ruby
1
star
71

Reddit-Ticker

Simple JS Reddit News Ticker
JavaScript
1
star
72

sinatra_backbone

a template app for backbone using sinatra, html5 boilerplate, etc...
JavaScript
1
star
73

simple-wiki

JavaScript
1
star
74

react-pivot-mean-slides

Slides for a talk about React-Pivot at MEAN
JavaScript
1
star
75

slides-jsfest-2014

Slides for my JSFest 2014 talk: Winning the Internet with Browserify
JavaScript
1
star
76

logship

JavaScript
1
star
77

rugmi

Simple imgur image upload cli
JavaScript
1
star
78

aider-web

Dockerfile
1
star
79

react-pivot-classic-example

Example using ReactPivot using classic script tags.
HTML
1
star
80

quick-s3

Quickly upload to S3.
CoffeeScript
1
star
81

video-ad-network-multi-api

Pulls reports from multiple video ad networks and attempts to normalize the responses.
JavaScript
1
star
82

hypnotable-footer

Add a footer to your Hypnotable! Great for totals or other reductions of data.
JavaScript
1
star
83

vagrant-ansible-bootstrap

Bring vagrant up ready to be hit with ansible
1
star