JSPM

node.js basic auth parser

Basic IP rate-limiting middleware for Express. Use to limit repeated requests to public APIs and/or endpoints such as password reset.

OAuth 2 / OpenID Connect Client API for JavaScript Runtimes

Low-Level OAuth 2 / OpenID Connect Client API for JavaScript Runtimes

Node.js rate limiter by key and protection from DDoS and Brute-Force attacks in process Memory, Redis, MongoDb, Memcached, MySQL, PostgreSQL, Cluster or PM

CASL is an isomorphic authorization JavaScript library which restricts what resources a given user is allowed to access

OAuth 2.0 authentication strategy for Passport.

JWT authentication middleware.

An unified permissions API for React Native on iOS, Android and Windows

OAuth Proxy

HTTP Bearer authentication strategy for Passport.

Node.js client for OAuth2

For HTTP `Authorization` and `WWW-Authenticate` headers.

Passport middleware for Koa

OAuth 1.0 authentication strategy for Passport.

React component for CASL which makes it easy to add permissions in any React application

OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect

OAuth 1.0 and 2.0 authentication strategies for Passport.

IP rate-limiting middleware for Koajs 2. Use to limit repeated requests to APIs and/or endpoints such as password reset.

Axios plugin which makes it very easy to automatically refresh the authorization tokens of your clients

Easy Keycloak integration for Angular applications.

Parse Spring Expression Language in JavaScript

Grant OAuth Proxy middleware for Koa

Crockford base-32 checksum encoding

Angular Lib for OpenID Connect & OAuth2

OAuth 2.0 authorization server toolkit for Node.js.

Basic IP rate-limiting middleware for Express that slows down responses rather than blocking the user.

Vanilla JS client for the Privy Auth API

OAuth 2.0 client password authentication strategy for Passport.

Vue plugin for CASL which makes it easy to add permissions in any Vue application

Server-side client for the Privy API

A Pothos plugin for adding scope based authorization checks to your GraphQL Schema

React client for the Privy Auth API

JavaScript and Node.js SDK for OpenFGA

A passport strategy to authenticate against an AWS Cognito User Pool OAuth 2.0 provider and get user profile, access token and ID token. This supports providing cognito specific additional auth parameters. This is subclass of passport-oauth2 strategy.

Koa middleware for validating JSON Web Tokens

Allows to query accessible records using Prisma client based on CASL rules

Oso Cloud Node.js Client SDK

authzed client for nodejs

Macaroons: cookies with contextual caveats for decentralized authorization in the cloud.

Authentication library for the browser environment using Web Crypto API

Validate a JWTs scope to authorize access to an endpoint

Allows to query accessible records from MongoDB based on CASL rules

Common types used by the Cerbos client libraries

Authentication for Convex

Javascript implementation of ANTLR Grammar for the OpenFGA DSL and parser from and to the OpenFGA JSON Syntax

Client library for interacting with the Cerbos policy decision point service over gRPC from server-side Node.js applications

Express middleware for JWT permissions

Expo client for the Privy Auth API

L2 AWS CDK Constructs for Amazon Verified Permissions

HTTP Bearer set header authentication strategy for Passport

Authorization layer for AdonisJS

TypeORM adapter for Casbin

Sequelize adapter for Casbin

Client library for interacting with the Cerbos policy decision point service over HTTP from browser-based applications

Parse, build and deal with HTTP authorization headers.

Angular module for CASL which makes it easy to add permissions in any Angular app

Token generated by concatenating username and password with `:` character within a base64 encoded string.

A powerful CLI tool for rapidly bootstrapping enterprise-grade Angular 17 & Spring Boot (Java 21) applications with integrated security, authentication, database management, and Docker support.

Apple strategy for Passport in Nestjs

Access control for Nestjs with CASL

HTTP Bearer authentication strategy for Passport and Keycloak

Parse a request's bearer token

RFC2617 basic authorization header from username and password.

JSON Web Token (JWT) is a compact token format intended for space constrained environments such as HTTP Authorization headers and URI query parameters.

User profile plugin for Grant

JWT authentication middleware.

Mongoose adapter for Casbin

Xumm JS SDK for client side only OAuth2 PKCE (implicit flow) auth.

Parse and create HTTP Authorization headers.

Check permissions using Shiro-like strings, put in a trie.

Akamai Edge Authorization Token for Property Manager Behavior

PostgreSQL native adapter for Node-Casbin with advanced filter capability and improved performance.

Sign in with Apple strategy for Passport

ARC authorization extension for loopback-next applications.

One Xumm SDK to rule them all (browser, backend, xApp)

Axios interceptor to store, use, and refresh tokens for authentication.

Authentication middleware for JSON Server

Socket.io authentication middleware using Json Web Token

Authorization module for managing permissions on the Nuxt app and the Nitro server.

Unified API for password hashing algorithms

An authorization system for connect and express applications inspired by Apache's Shiro project.

ACL support for hapijs apps

jsreport extension adding authorization capabilities

GraphQL authorization layer core

Gigya OAuth 2.0 authentication strategy for Passport.

Prisma adapter for Cerbos query plans

OAuth 1.0a authorization header for Twitter API

http basic authentication

OAuth 2.0 public client authentication strategy for Passport.

Snapchat (OAuth 2.0) authorization strategy for Passport.

Provides dynamic roles based authorization for node.js connect and express servers.

A PostgreSQL store for the `express-rate-limit` middleware

Strategy and utilities to use passport.js with GraphQL server

Passport middleware for Koa

OAuth 2.0 authentication strategy for Passport.

A session store for express-session.

Exposes helpful utilities for building authoring experiences of OpenFGA Models.

Grant OAuth Proxy middleware for Express

Dimrill V5

Userfront core JS library

A Pothos plugin for applying GraphQL AuthZ rules to fields

JWT authentication middleware for Restify

A LitElement Router (1278 bytes gzip) that uses JavaScript Mixin, Decorators and RegExp.

Vue.js integration with Rails CanCan authorization library

OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect

Permix is a lightweight, framework-agnostic, type-safe permissions management library for JavaScript applications on the client and server sides.

A set of elements that perform oauth authorization

The Blockstack Javascript library for authentication, identity, and storage.

HTTP Bearer authentication strategy for Passport.

A library for invoking Authorization Capabilities via HTTP signatures

The Styra-supported driver to connect to Open Policy Agent (OPA) and Enterprise OPA deployments.

Outlook REST API v2 authentication strategy for Passport.

Client library for interacting with embedded Cerbos policy decision points generated by Cerbos Hub from server-side Node.js and browser-based applications

The cerbos binary

Fully typed frontend route helper for Laravel apps

React authorization library.

Simple single character input boxes.

Salesforce authentication strategy for Passport.

Warrant API Wrapper for Node.js clients

IBM Cloud App ID SDK for Single Page Applications

OAuth 2.0 password grant authentication strategy for Passport.

Authorize easily

OAuth 2.0 public client authentication strategy for Passport.

Keycloak Node.js Adapter With Support for multiple realms

Client SDK for Authress authorization as a service. Provides managed authorization api to secure service resources including user data.

Easy password hashing and verification in Node. Protects against brute force, rainbow tables, and timing attacks.

GraphQL Directive for graphql-authz

OAuth 2.0 authorization server toolkit for Node.js.

Lit-based native application shell authorization module.

Aserto Node SDK

The cerbosctl binary

Styra-supported interpreter for using ucast conditions with Prisma.

Easily generate securily salted PBKDF2 hashes for password storage

Permission management component for React

OAuth 2.0 implementation in Javascript

Add access control with CASL to your feathers application.

Stacks command line tool

Schematics for Okta Auth

Attribute Based Access Control Library

OpenTelemetry instrumentation for the @cerbos/grpc and @cerbos/http client libraries

CASL-based authorization plugin for Better Auth

Apollo Server plugin for graphql-authz

An unopinionated authentication library for building Node.js APIs.

common system drop menu which has the authorization to access

Tiktok authentication strategy for Passport.

Provides JWT authentication for loopback applications. Includes storing roles inside tokens and handling refreshing. Built-in reuse detection.

jsreport extension adding authorization cappabilities

AAD JWT authentication middleware.

Action based authorization middleware.

A TypeScript library for JWT authentication with MongoDB and Express.js. It provides a complete authentication system including local authentication, Google OAuth, password reset, and JWT token management.

Blazing Fast, Zero dependency, Hierarchical Role-Based Access Control for Node.js

OAuth 2.0 provider for LoopBack

A secure, lightweight JWT authentication solution for Next.js, providing access and refresh token handling, middleware support, and easy React integration.

OAuth 2.0 resource owner password authentication strategy for Passport.

A collection of React hooks for interacting with Cerbos policy decision points

JWT authentication middleware.

Fast and simple RBAC lib

Envelop plugin for graphql-authz

Mongoose adapter for Casbin

HTTP Bearer authentication strategy using custom headers and field names for Passport. Forked from https://github.com/jaredhanson/passport-http-bearer.

A wrapper for oAuth support

Plugin to integrate OAuth 2.0 authentication in Piral.

JSON Web Token (JWT) Bearer Token Exchange Middleware for OAuth2orize.

Reactjs Library for automating login, register workflows in frontend.

Ping OAuth 2.0 authentication strategy for Passport.

BlueMix OAuth 2.0 authentication strategy for Passport.

JS/TS tools for authorization with the Cedar language

Amazon style authorization using signing.

Transform your React application with Userfront authentication

Vue directive to load and display secured images

Extensions to support OpenID Connect with OAuth2orize.

Pinterest authentication strategy for Passport.

Browser-safe, framework-agnostic EmpowerNow security SDK (OAuth 2.1, AuthZEN, FIPS checks)

An authentication and authorization library for express applications and clients

Auth solution (password, facebook, & more) for your node.js Connect & Express apps

OAuth 1.0a authorization header for Twitter API

Transform your Next.js application with Userfront authentication

Styra-supported React hooks and components for frontend authorization based on @styra/opa

isomorphic, "magical" access control integrated with objection.js 🎉

Kindergarten is a JavaScript library which helps programmers to achieve modular security using sandbox pattern

Use dedicated classes to authorize and validate requests

A comprehensive user management module for Nuxt 3 and Nuxt 4 applications with authentication, authorization, database support, and CLI tools

Interpreter for using ucast conditions with Prisma.

Unobtrusively handles security based on roles (authorization) plus authentication initialization

JWT authentication plugin for TSDIAPI-Server, providing easy-to-use guards, token generation, and session validation.

Browser client library for ldauth permission checking

Framework-agnostic authentication library built with Bun, TypeScript, and SQLite

A library for invoking Authorization Capabilities via HTTP signatures

Abstract RateLimiter which uses Redis

React permission checking library for the auth system

login authorization

HTTP OAuth authentication strategy for Passport.

Authorization plumbing for Node+Express apps

An easy way to create an http request for NextJS and more

Middleware for Browsersync basic authorization

Node.js client library for ldauth permission checking

An OIDC client for Node.js

Rich access control in an easy to read syntax featuring roles with inheritance, dynamic attribute tests, and more

Express middleware for handling JWT permissions

OIDC/OAuth2 authentication and authorization for prerendered/client-side-rendered SvelteKit apps.

Grant OAuth Proxy middleware for Hapi

Flexible team-based authorization

Drizzle adapter for Casbin

Client library for interacting with Cerbos Hub from server-side Node.js applications

Driver to connect to Open Policy Agent (OPA) and EOPA deployments.

Handle Laravel authorizations on the front-end

Official TypeScript SDK for Auth Tower - Enterprise multi-tenant authentication and authorization platform

Authorization services for API Builder.

Visulima API platform is a set of tools to build and consume web APIs

refactored macaroons: cookies with contextual caveats for decentralized authorization in the cloud

`svelte-guard` is a lightweight and flexible package designed to make route guarding in SvelteKit applications easy and efficient. It ensures that only authorized users can access specific routes, enhancing your app’s security. With `svelte-guard`, you ca

An authorization library for absolutejs

Basic rate limiting for Hono, featuring a variety of algorithms

Universal module for everything.

midway passport component

common system drop menu which has the authorization to access

Secure password hashing and verification

Javascript implementation of Macaroons: Cookies with Contextual Caveats for Decentralized Authorization in the Cloud.

Kilpi Core · Kilpi is the authorization framework for full-stack TypeScript applications, designed for flexible, powerful, agnostic, intuitive and developer friendly authorization.

Vue Plugin library for MSAL.JS (Microsoft Authentication Library for JS) - Support Vue.js 3.x or later

Authorization libray, replaces cancan

Kilpi client-side API · Kilpi is the authorization framework for full-stack TypeScript applications, designed for flexible, powerful, agnostic, intuitive and developer friendly authorization.

Authorization for Blitz.js

Basic auth middleware

eicrud core package

A Next.js middleware library for handling MCP server with authorization. Provides utilities to help developers integrate MCP OAuth2-related processes into their applications

Simple and flexible Access Control Manager based on Attribute Based Access Control (ABAC) paradigm that works well with Express and Passport or independently

oRPC permissions as another layer of abstraction!

Nexus schema plugin to deny access to all queries, mutations and subscriptions except those marked as public

JavaScript client for Oxidauth

Bedrock Authorization Capability Storage

Dynamic code generator that transforms Prisma schemas into Express.js CRUD APIs with PostgreSQL RLS-to-JavaScript translation

Package containing helpers for authorization in redux

Nexus schema plugin to ease the creation of the authorization layer

Passport.js framework that uses JWT for sessions

A library for validating user permissions from UI layers

A utility for dealing with flags and permissions using bitmasks.

Social authentication for FoalTS

A comprehensive React library for multi-tenancy, authentication, authorization, roles, session management, and settings management

OAuth 2.0 password grant authentication strategy for Passport with additional client information.

Kilpi React Client Components · Kilpi is the authorization framework for full-stack TypeScript applications, designed for flexible, powerful, agnostic, intuitive and developer friendly authorization.

ACL support for hapijs apps based on roles and permissions hierarchy

Axios interceptor to store, transmit, clear and automatically refresh tokens for authentication in a React Native environment

Lightweight and extensible authorization engine for TypeScript inspired by CanCanCan. Define flexible permissions using actions, subjects, and conditions.

Enterprise-grade security module for frontend and backend applications with comprehensive protection against XSS, CSRF, SQL injection, and other security vulnerabilities

A lightweight utility for Axios to handle token refresh logic seamlessly. Automatically retries requests after token expiration with customizable retry logic and status code handling.

Kilpi RSC Plugin and Components · Kilpi is the authorization framework for full-stack TypeScript applications, designed for flexible, powerful, agnostic, intuitive and developer friendly authorization.

macaroons: cookies with contextual caveats for decentralized authorization in the cloud

A set of middlewares for using Hono with zod-openapi, including JWT authentication/authorization and automatic security scheme registration