JSPM

node.js basic auth parser

Basic IP rate-limiting middleware for Express. Use to limit repeated requests to public APIs and/or endpoints such as password reset.

OAuth 2 / OpenID Connect Client API for JavaScript Runtimes

Low-Level OAuth 2 / OpenID Connect Client API for JavaScript Runtimes

OAuth 2.0 authentication strategy for Passport.

Node.js rate limiter by key and protection from DDoS and Brute-Force attacks in process Memory, Redis, MongoDb, Memcached, MySQL, PostgreSQL, Cluster or PM

CASL is an isomorphic authorization JavaScript library which restricts what resources a given user is allowed to access

JWT authentication middleware.

An unified permissions API for React Native on iOS, Android and Windows

OAuth Proxy

Node.js client for OAuth2

HTTP Bearer authentication strategy for Passport.

OAuth 1.0 authentication strategy for Passport.

Passport middleware for Koa

For HTTP `Authorization` and `WWW-Authenticate` headers.

React component for CASL which makes it easy to add permissions in any React application

IP rate-limiting middleware for Koajs 2. Use to limit repeated requests to APIs and/or endpoints such as password reset.

OAuth 1.0 and 2.0 authentication strategies for Passport.

OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect

Parse Spring Expression Language in JavaScript

Easy Keycloak integration for Angular applications.

Crockford base-32 checksum encoding

Axios plugin which makes it very easy to automatically refresh the authorization tokens of your clients

Grant OAuth Proxy middleware for Koa

Angular Lib for OpenID Connect & OAuth2

OAuth 2.0 authorization server toolkit for Node.js.

JavaScript and Node.js SDK for OpenFGA

Vanilla JS client for the Privy Auth API

OAuth 2.0 client password authentication strategy for Passport.

Vue plugin for CASL which makes it easy to add permissions in any Vue application

Basic IP rate-limiting middleware for Express that slows down responses rather than blocking the user.

React client for the Privy Auth API

Koa middleware for validating JSON Web Tokens

A passport strategy to authenticate against an AWS Cognito User Pool OAuth 2.0 provider and get user profile, access token and ID token. This supports providing cognito specific additional auth parameters. This is subclass of passport-oauth2 strategy.

A Pothos plugin for adding scope based authorization checks to your GraphQL Schema

Server-side client for the Privy API

Validate a JWTs scope to authorize access to an endpoint

Macaroons: cookies with contextual caveats for decentralized authorization in the cloud.

Oso Cloud Node.js Client SDK

authzed client for nodejs

Allows to query accessible records using Prisma client based on CASL rules

Sequelize adapter for Casbin

Javascript implementation of ANTLR Grammar for the OpenFGA DSL and parser from and to the OpenFGA JSON Syntax

Common types used by the Cerbos client libraries

Allows to query accessible records from MongoDB based on CASL rules

Authentication library for the browser environment using Web Crypto API

Expo client for the Privy Auth API

Authentication for Convex

Express middleware for JWT permissions

Client library for interacting with the Cerbos policy decision point service over HTTP from browser-based applications

Authorization layer for AdonisJS

Client library for interacting with the Cerbos policy decision point service over gRPC from server-side Node.js applications

L2 AWS CDK Constructs for Amazon Verified Permissions

HTTP Bearer set header authentication strategy for Passport

TypeORM adapter for Casbin

Angular module for CASL which makes it easy to add permissions in any Angular app

Token generated by concatenating username and password with `:` character within a base64 encoded string.

JSON Web Token (JWT) is a compact token format intended for space constrained environments such as HTTP Authorization headers and URI query parameters.

HTTP Bearer authentication strategy for Passport and Keycloak

Parse a request's bearer token

User profile plugin for Grant

JWT authentication middleware.

Apple strategy for Passport in Nestjs

Parse, build and deal with HTTP authorization headers.

Access control for Nestjs with CASL

Xumm JS SDK for client side only OAuth2 PKCE (implicit flow) auth.

Akamai Edge Authorization Token for Property Manager Behavior

One Xumm SDK to rule them all (browser, backend, xApp)

Check permissions using Shiro-like strings, put in a trie.

Sign in with Apple strategy for Passport

Mongoose adapter for Casbin

Parse and create HTTP Authorization headers.

PostgreSQL native adapter for Node-Casbin with advanced filter capability and improved performance.

Authentication middleware for JSON Server

Prisma adapter for Cerbos query plans

ARC authorization extension for loopback-next applications.

RFC2617 basic authorization header from username and password.

OAuth 2.0 public client authentication strategy for Passport.

jsreport extension adding authorization capabilities

An authorization system for connect and express applications inspired by Apache's Shiro project.

Gigya OAuth 2.0 authentication strategy for Passport.

Unified API for password hashing algorithms

Vue.js integration with Rails CanCan authorization library

Axios interceptor to store, use, and refresh tokens for authentication.

Authorization module for managing permissions on the Nuxt app and the Nitro server.

Snapchat (OAuth 2.0) authorization strategy for Passport.

ACL support for hapijs apps

GraphQL authorization layer core

A session store for express-session.

Provides dynamic roles based authorization for node.js connect and express servers.

Socket.io authentication middleware using Json Web Token

Passport middleware for Koa

OAuth 2.0 authentication strategy for Passport.

A PostgreSQL store for the `express-rate-limit` middleware

http basic authentication

OAuth 1.0a authorization header for Twitter API

A Pothos plugin for applying GraphQL AuthZ rules to fields

Strategy and utilities to use passport.js with GraphQL server

Permix is a lightweight, framework-agnostic, type-safe permissions management library for JavaScript applications on the client and server sides.

Userfront core JS library

Action based authorization middleware.

Grant OAuth Proxy middleware for Express

The Styra-supported driver to connect to Open Policy Agent (OPA) and Enterprise OPA deployments.

OAuth 2.0 authorization server toolkit for Node.js.

OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect

JWT authentication middleware for Restify

The cerbos binary

A LitElement Router (1278 bytes gzip) that uses JavaScript Mixin, Decorators and RegExp.

Exposes helpful utilities for building authoring experiences of OpenFGA Models.

Warrant API Wrapper for Node.js clients

A comprehensive user management module for Nuxt 3 and Nuxt 4 applications with authentication, authorization, database support, and CLI tools

OAuth 2.0 public client authentication strategy for Passport.

Client library for interacting with embedded Cerbos policy decision points generated by Cerbos Hub from server-side Node.js and browser-based applications

Simple single character input boxes.

Easy password hashing and verification in Node. Protects against brute force, rainbow tables, and timing attacks.

Styra-supported interpreter for using ucast conditions with Prisma.

IBM Cloud App ID SDK for Single Page Applications

An authorization library for absolutejs

The Blockstack Javascript library for authentication, identity, and storage.

Aserto Node SDK

Fully typed frontend route helper for Laravel apps

A set of elements that perform oauth authorization

Keycloak Node.js Adapter With Support for multiple realms

Client SDK for Authress authorization as a service. Provides managed authorization api to secure service resources including user data.

Add access control with CASL to your feathers application.

The cerbosctl binary

Salesforce authentication strategy for Passport.

React authorization library.

OpenTelemetry instrumentation for the @cerbos/grpc and @cerbos/http client libraries

AAD JWT authentication middleware.

Outlook REST API v2 authentication strategy for Passport.

OAuth 2.0 implementation in Javascript

login authorization

Apollo Server plugin for graphql-authz

OAuth 1.0a authorization header for Twitter API

Lit-based native application shell authorization module.

An unopinionated authentication library for building Node.js APIs.

A library for invoking Authorization Capabilities via HTTP signatures

Easily generate securily salted PBKDF2 hashes for password storage

Authorize easily

HTTP Bearer authentication strategy for Passport.

Stacks command line tool

GraphQL Directive for graphql-authz

OAuth 2.0 password grant authentication strategy for Passport.

HTTP Bearer authentication strategy using custom headers and field names for Passport. Forked from https://github.com/jaredhanson/passport-http-bearer.

Kindergarten is a JavaScript library which helps programmers to achieve modular security using sandbox pattern

Blazing Fast, Zero dependency, Hierarchical Role-Based Access Control for Node.js

Production-ready OAuth 2.1 server implementation for Model Context Protocol (MCP) with PKCE support

Ping OAuth 2.0 authentication strategy for Passport.

jsreport extension adding authorization cappabilities

Canvas App Complete Connection Library: an all-in-one library for connecting your app to Canvas, handling lti, access tokens, and api.

OAuth 2.0 provider for LoopBack

Attribute Based Access Control Library

JSON Web Token (JWT) Bearer Token Exchange Middleware for OAuth2orize.

Extensions to support OpenID Connect with OAuth2orize.

Tiktok authentication strategy for Passport.

Data Service AND Security Layer - Universal role-based data filtering and security for Node.js applications

BlueMix OAuth 2.0 authentication strategy for Passport.

Use dedicated classes to authorize and validate requests

JS/TS tools for authorization with the Cedar language

Authorization libray, replaces cancan

refactored macaroons: cookies with contextual caveats for decentralized authorization in the cloud

Middleware for Browsersync basic authorization

Pinterest authentication strategy for Passport.

A wrapper for oAuth support

A comprehensive TypeScript utility library featuring fluent text building, type-safe switching, duration utilities, React hooks, and extended array/object prototypes for modern JavaScript development.

OIDC/OAuth2 authentication and authorization for prerendered/client-side-rendered SvelteKit apps.

Schematics for Okta Auth

Handle Laravel authorizations on the front-end

HTTP OAuth authentication strategy for Passport.

common system drop menu which has the authorization to access

Transform your React application with Userfront authentication

Transform your Next.js application with Userfront authentication

Fast and simple RBAC lib

An easy way to create an http request for NextJS and more

Authorization plumbing for Node+Express apps

OAuth 2.0 resource owner password authentication strategy for Passport.

Envelop plugin for graphql-authz

Mongoose adapter for Casbin

Styra-supported React hooks and components for frontend authorization based on @styra/opa

Authorization for Blitz.js

Nexus schema plugin to ease the creation of the authorization layer

Codefather protects your codebase by controlling who can change what. Set authorization levels, lock down files, and enforce your rules—offline via CLI or online with GitHub Actions.

Unobtrusively handles security based on roles (authorization) plus authentication initialization

A node-red node for authentication using JSONWebToken. Use this node to store and retrieve secure tokens from a message.

A utility for dealing with flags and permissions using bitmasks.

Browser-safe, framework-agnostic EmpowerNow security SDK (OAuth 2.1, AuthZEN, FIPS checks)

A comprehensive Auth.js integration for NestJS applications with TypeScript support, framework-agnostic HTTP adapters, and role-based access control

Plugin to integrate OAuth 2.0 authentication in Piral.

`svelte-guard` is a lightweight and flexible package designed to make route guarding in SvelteKit applications easy and efficient. It ensures that only authorized users can access specific routes, enhancing your app’s security. With `svelte-guard`, you ca

IP rate-limiting middleware for Koajs 2. Use to limit repeated requests to APIs and/or endpoints such as password reset.

Passport.js framework that uses JWT for sessions

A collection of React hooks for interacting with Cerbos policy decision points

Authorization services for API Builder.

Vue directive to load and display secured images

TEST PACKAGE - TypeScript SDK V2 for adding pure EIP-712 token-based authorization to MCP tools - No JWT, clean and simple

Helpers for AWS Cognito to build web applications with authentication/authorization

Mongoose adapter for Casbin

JWT authentication middleware.

Vue Plugin library for MSAL.JS (Microsoft Authentication Library for JS) - Support Vue.js 3.x or later

Rich access control in an easy to read syntax featuring roles with inheritance, dynamic attribute tests, and more

Auth solution (password, facebook, & more) for your node.js Connect & Express apps

A highly extensible, type-safe IAM-like access control library for Node.js, inspired by AWS IAM. Deny by default, allow by vibes and less patience for your bad access patterns. Supports policies, roles, decorators, adapters, and rich evaluation context be

Framework-agnostic authentication library built with Bun, TypeScript, and SQLite

Interactive CLI to scaffold a full-stack MERN role-based auth app with Google OAuth and .env setup.

Application authorization and authentication

Basic auth middleware

JavaScript client for Oxidauth

OAuth 2.1 authorization helper for TMCP with MCP specification compliance

A dependency-free multi-service authentication tool for node.js

Grant OAuth Proxy middleware for Hapi

Drizzle adapter for Casbin

Amazon style authorization using signing.

A flexible, granular role-based access control library for TypeScript with NextAuth integration

node-red-oauth2-auth - OAuth2 client for getting oauth2 credentials by the authorization flow to use in other nodes. Credentials are automatically refreshed on expiration.

A library for invoking Authorization Capabilities via HTTP signatures

Social authentication for FoalTS

Package containing helpers for authorization in redux

Authorization plugin for superagent

Node which implements HTTP Basic/Digest Authorization.

Secure password hashing and verification

A simple OAuth 2 endpoint for Restify

NestJS guard for validating Telegram WebApp init data

A simple implementation of OAuth 2 providing async hooks to call to your own services

Flexible team-based authorization

Kilpi Core · Kilpi is the authorization framework for full-stack TypeScript applications, designed for flexible, powerful, agnostic, intuitive and developer friendly authorization.

Data level authorization for Mongoose

midway passport component

Javascript implementation of Macaroons: Cookies with Contextual Caveats for Decentralized Authorization in the Cloud.

JSON Web Token (JWT) Bearer Token Profiles for OAuth 2.0 client authentication strategy for Passport.

Mongoose adapter for Casbin

Nexus Shield Plugin

Axios interceptor to store, transmit, clear and automatically refresh tokens for authentication in a React Native environment

IP rate-limiting middleware for Koajs 2. Use to limit repeated requests to APIs and/or endpoints such as password reset.

xprezzo basic auth parser

Google Auth Guard for NestJS

isomorphic, "magical" access control integrated with objection.js 🎉

IDaaS Authentication SDK for SPA applications

Separated module for authorization

Simple JSON Web Tokens (JWT) with embedded scopes for services

Universal module for everything.

Lightweight and extensible authorization engine for TypeScript inspired by CanCanCan. Define flexible permissions using actions, subjects, and conditions.

Client side HTTP Authorization header handling

OAuth 2.0 password grant authentication strategy for Passport with additional client information.

Permission management component for React

TypeScript SDK for Go IAM - A lightweight Identity and Access Management server

A simple authentication and authorization library for Vue.js using typescript

A flexible Vue 3 directive for managing user permissions with support for AND, OR, regex, and pattern-based checks.

react-auth-verification-context is a library that provides a way to manage authentication state in a React application. It is implemented using the React context API, which allows you to pass data through the component tree without having to pass props do

An OIDC client for Node.js