authkeeper is a lightweight JavaScript ES6 module (51.7 kB) for implementing OAuth 2.0 clients in web, desktop, and mobile applications. authkeeper is designed to work seamlessly in both browser-based and server-side (Node.js) environments.
It is inspired by the Doorkeeper gem in Ruby, which is widely used for OAuth 2.0 authorization in Ruby on Rails applications. authkeeper provides an easy-to-use API for OAuth 2.0 authentication flows.
Supported features:
npm install authkeeper<script type="text/javascript" src="https://www.unpkg.com/[email protected]/dist/authkeeper.js"></script><script type="module">
const config = {
client_id: 'clientid',
redirect_uri: 'http://localhost:5500/home',
authorization_url: 'https://api.oauth.com/authorize',
token_url: 'https://api.oauth.com/token',
scope: 'openid profile',
};
var oauthClient = new authkeeper.OAuthClient(config);
// To start the auth flow
document.getElementById("start").addEventListener("click", function() {
oauthClient.startAuthFlow().then(url => {
window.location=url;
});
});
async function getAuthUrl() {
const url = await oauthClient.startAuthFlow();
console.log(url);
}
// After the user is redirected back, call handleCallback
window.onload = function() {
oauthClient.handleCallback();
};
</script>Using authkeeper with express and SSR node applications(react, vue, nextjs, ... ), importing the required functions
Import authkeeper and set up your OAuth configuration:
import * as authkeeper from 'authkeeper';
const { OAuthClient } = authkeeper;
// Use any OAuth Provider of your choice
const oauthConfig = {
client_id: process.env.CLIENT_ID,
client_secret: process.env.CLIENT_SECRET_KEY,
redirect_uri: process.env.REDIRECT_URI,
authorization_url: process.env.AUTHORIZATION_URL,
token_url: process.env.TOKEN_URL,
scope: process.env.SCOPE,
};
const oauthClient = new OAuthClient(oauthConfig);Building Login URI
Generate the login URL to redirect users for OAuth authorization:
const authUrl = await oauthClient.startAuthFlow(oauthConfig);example
app.get('/authorize', async (req, res) => {
try {
const authUrl = await oauthClient.startAuthFlow(oauthConfig);
res.redirect(authUrl);
} catch (error) {
console.error('Error starting auth flow:', error);
res.status(500).send('Error starting auth flow');
}
});Get Auth Token, ID Token, Refresh Token
Exchange the authorization code for tokens
// Returns token depending upon the scope provided in config
const tokenData = await oauthClient.exchangeAuthCodeForToken(code);Refresh Token
Use the refresh token to get a new access token
// Already existing Refresh Token set in browser cookie after login
const refreshToken = req.cookies.refresh_token;
// Refreshes the refresh token and sets it in the browser as a HTTP only cookie
const tokenData = await oauthClient.refreshAccessToken(refreshToken);Get User Data
Retrieve user information based on the fields in your OAuth scope
// Returns userData in json provided the fields present in the scope of configuration
const accessToken = req.cookies.access_token;
const userData = await oauthClient.getUserInfo(accessToken);For more information look GRANTS.md
These applications show how authkeeper works and how to integrate with it. Start with the oAuth2 server and use the clients to connect with the server.
- SSR application
- React SPA - https://authkeeper-spa.vercel.app/
- Native Mobile Apps/ browser based spa
- Add API documentation with detailed method descriptions.
- Add unit tests for various environments (browser, mobile, server).