JSPM

Protect your Express API (resource server) routes with OAuth 2.0 JWT Bearer and DPoP-bound access tokens issued by an authorization server.

Node.js client for OAuth2

OAuth 1.0 authentication strategy for Passport.

Passport middleware for Koa

React component for CASL which makes it easy to add permissions in any React application

IP rate-limiting middleware for Koajs 2. Use to limit repeated requests to APIs and/or endpoints such as password reset.

Authentication library for the browser environment using Web Crypto API

OAuth 1.0 and 2.0 authentication strategies for Passport.

Helper library for sending the Authorization Bearer header in Angular 2

OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect

HTTP Bearer authentication strategy for Passport.

Parse Spring Expression Language in JavaScript

HTTP Bearer authentication strategy for Passport.

Axios plugin which makes it very easy to automatically refresh the authorization tokens of your clients

Crockford base-32 checksum encoding

Grant OAuth Proxy middleware for Koa

OAuth 2.0 authorization server toolkit for Node.js.

Angular Lib for OpenID Connect & OAuth2

JavaScript and Node.js SDK for OpenFGA

Vanilla JS client for the Privy Auth API

OAuth 2.0 client password authentication strategy for Passport.

React client for the Privy Auth API

Vue plugin for CASL which makes it easy to add permissions in any Vue application

Basic IP rate-limiting middleware for Express that slows down responses rather than blocking the user.

Koa middleware for validating JSON Web Tokens

Macaroons: cookies with contextual caveats for decentralized authorization in the cloud.

A passport strategy to authenticate against an AWS Cognito User Pool OAuth 2.0 provider and get user profile, access token and ID token. This supports providing cognito specific additional auth parameters. This is subclass of passport-oauth2 strategy.

A Pothos plugin for adding scope based authorization checks to your GraphQL Schema

Validate a JWTs scope to authorize access to an endpoint

Server-side client for the Privy API

authzed client for nodejs

Oso Cloud Node.js Client SDK

Sequelize adapter for Casbin

Allows to query accessible records using Prisma client based on CASL rules

Javascript implementation of ANTLR Grammar for the OpenFGA DSL and parser from and to the OpenFGA JSON Syntax

Common types used by the Cerbos client libraries

HTTP Bearer authentication strategy for Passport.

Allows to query accessible records from MongoDB based on CASL rules

This is a parsing middleware for Bearer tokens that can be used with the Express framework. Parse the `Authorization` header and assign the Bearer token to `req.token`.

Expo client for the Privy Auth API

Authentication for Convex

node-red-oauth2-auth - OAuth2 client for getting oauth2 credentials by the authorization flow to use in other nodes. Credentials are automatically refreshed on expiration.

Express middleware for JWT permissions

Client library for interacting with the Cerbos policy decision point service over HTTP from browser-based applications

Authorization layer for AdonisJS

Client library for interacting with the Cerbos policy decision point service over gRPC from server-side Node.js applications

L2 AWS CDK Constructs for Amazon Verified Permissions

Parse the HTTP authorization header

OAuth 2.1 authorization helper for TMCP with MCP specification compliance

Angular module for CASL which makes it easy to add permissions in any Angular app

TypeORM adapter for Casbin

Token generated by concatenating username and password with `:` character within a base64 encoded string.

JSON Web Token (JWT) is a compact token format intended for space constrained environments such as HTTP Authorization headers and URI query parameters.

User profile plugin for Grant

JWT authentication middleware.

Authorization Header middleware for Express and Sails.js

Apple strategy for Passport in Nestjs

Access control for Nestjs with CASL

HTTP Bearer authentication strategy for Passport.

Xumm JS SDK for client side only OAuth2 PKCE (implicit flow) auth.

One Xumm SDK to rule them all (browser, backend, xApp)

Check permissions using Shiro-like strings, put in a trie.

Sign in with Apple strategy for Passport

Akamai Edge Authorization Token for Property Manager Behavior

Mongoose adapter for Casbin

Google Auth Guard for NestJS

PostgreSQL native adapter for Node-Casbin with advanced filter capability and improved performance.

Prisma adapter for Cerbos query plans

Authentication middleware for JSON Server

OAuth 2.0 public client authentication strategy for Passport.

ARC authorization extension for loopback-next applications.

jsreport extension adding authorization capabilities

RFC2617 basic authorization header from username and password.

Gigya OAuth 2.0 authentication strategy for Passport.

An authorization system for connect and express applications inspired by Apache's Shiro project.

Axios interceptor to store, use, and refresh tokens for authentication.

Vue.js integration with Rails CanCan authorization library

Unified API for password hashing algorithms

Snapchat (OAuth 2.0) authorization strategy for Passport.

Authorization module for managing permissions on the Nuxt app and the Nitro server.

Bearer token middleware for node.

ACL support for hapijs apps

GraphQL authorization layer core

A session store for express-session.

Provides dynamic roles based authorization for node.js connect and express servers.

Socket.io authentication middleware using Json Web Token

Passport middleware for Koa

A PostgreSQL store for the `express-rate-limit` middleware

OAuth 2.0 authentication strategy for Passport.

http basic authentication

OAuth 1.0a authorization header for Twitter API

A Pothos plugin for applying GraphQL AuthZ rules to fields

Strategy and utilities to use passport.js with GraphQL server

Authorization plugin for superagent

Permix is a lightweight, framework-agnostic, type-safe permissions management library for JavaScript applications on the client and server sides.

Userfront core JS library

The Styra-supported driver to connect to Open Policy Agent (OPA) and Enterprise OPA deployments.

Grant OAuth Proxy middleware for Express

JSON Web Token (JWT) Bearer Token Exchange Middleware for OAuth2orize.

Action based authorization middleware.

Javascript implementation of Macaroons: Cookies with Contextual Caveats for Decentralized Authorization in the Cloud.

OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect

OAuth 2.0 authorization server toolkit for Node.js.

JWT authentication middleware for Restify

The cerbos binary

A LitElement Router (1278 bytes gzip) that uses JavaScript Mixin, Decorators and RegExp.

Warrant API Wrapper for Node.js clients

Exposes helpful utilities for building authoring experiences of OpenFGA Models.

A comprehensive user management module for Nuxt 3 and Nuxt 4 applications with authentication, authorization, database support, and CLI tools

OAuth 2.0 public client authentication strategy for Passport.

Client library for interacting with embedded Cerbos policy decision points generated by Cerbos Hub from server-side Node.js and browser-based applications

JWT authentication middleware.

Easy password hashing and verification in Node. Protects against brute force, rainbow tables, and timing attacks.

An easy way to create an http request for NextJS and more

The Blockstack Javascript library for authentication, identity, and storage.

Simple single character input boxes.

An authorization library for absolutejs

Styra-supported interpreter for using ucast conditions with Prisma.

IBM Cloud App ID SDK for Single Page Applications

Fully typed frontend route helper for Laravel apps

Keycloak Node.js Adapter With Support for multiple realms

Aserto Node SDK

A set of elements that perform oauth authorization

A wrapper to provide authorization support to a Whook server

Add access control with CASL to your feathers application.

Client SDK for Authress authorization as a service. Provides managed authorization api to secure service resources including user data.

The cerbosctl binary

Salesforce authentication strategy for Passport.

OpenTelemetry instrumentation for the @cerbos/grpc and @cerbos/http client libraries

React authorization library.

AAD JWT authentication middleware.

OAuth 2.0 implementation in Javascript

Outlook REST API v2 authentication strategy for Passport.

login authorization

Apollo Server plugin for graphql-authz

OAuth 1.0a authorization header for Twitter API

Lit-based native application shell authorization module.

A library for invoking Authorization Capabilities via HTTP signatures

OAuth 2.0 Bearer Token introspection strategy for Passport.

Authorize easily

Easily generate securily salted PBKDF2 hashes for password storage

Stacks command line tool

GraphQL Directive for graphql-authz

OAuth 2.0 password grant authentication strategy for Passport.

Kindergarten is a JavaScript library which helps programmers to achieve modular security using sandbox pattern

Ping OAuth 2.0 authentication strategy for Passport.

Blazing Fast, Zero dependency, Hierarchical Role-Based Access Control for Node.js

Production-ready OAuth 2.1 server implementation for Model Context Protocol (MCP) with PKCE support

jsreport extension adding authorization cappabilities

Fetch JSON with a Bearer token

Canvas App Complete Connection Library: an all-in-one library for connecting your app to Canvas, handling lti, access tokens, and api.

OAuth 2.0 provider for LoopBack

Attribute Based Access Control Library

Data Service AND Security Layer - Universal role-based data filtering and security for Node.js applications

Extensions to support OpenID Connect with OAuth2orize.

BlueMix OAuth 2.0 authentication strategy for Passport.

Tiktok authentication strategy for Passport.

Use dedicated classes to authorize and validate requests

JS/TS tools for authorization with the Cedar language

Authorization libray, replaces cancan

Pinterest authentication strategy for Passport.

refactored macaroons: cookies with contextual caveats for decentralized authorization in the cloud

A wrapper for oAuth support

A comprehensive TypeScript utility library featuring fluent text building, type-safe switching, duration utilities, React hooks, and extended array/object prototypes for modern JavaScript development.

Middleware for Browsersync basic authorization

Handle Laravel authorizations on the front-end

Schematics for Okta Auth

Transform your React application with Userfront authentication

OIDC/OAuth2 authentication and authorization for prerendered/client-side-rendered SvelteKit apps.

Simple JSON Web Tokens (JWT) with embedded scopes for services

common system drop menu which has the authorization to access

HTTP OAuth authentication strategy for Passport.

Fast and simple RBAC lib

Authorization plumbing for Node+Express apps

OAuth 2.0 resource owner password authentication strategy for Passport.

Envelop plugin for graphql-authz

Mongoose adapter for Casbin

Authorization for Blitz.js

Styra-supported React hooks and components for frontend authorization based on @styra/opa

Nexus schema plugin to ease the creation of the authorization layer

Transform your Next.js application with Userfront authentication

Codefather protects your codebase by controlling who can change what. Set authorization levels, lock down files, and enforce your rules—offline via CLI or online with GitHub Actions.

Unobtrusively handles security based on roles (authorization) plus authentication initialization

A node-red node for authentication using JSONWebToken. Use this node to store and retrieve secure tokens from a message.

A utility for dealing with flags and permissions using bitmasks.

Browser-safe, framework-agnostic EmpowerNow security SDK (OAuth 2.1, AuthZEN, FIPS checks)

Simple JSON Web Token authorization

A comprehensive Auth.js integration for NestJS applications with TypeScript support, framework-agnostic HTTP adapters, and role-based access control

`svelte-guard` is a lightweight and flexible package designed to make route guarding in SvelteKit applications easy and efficient. It ensures that only authorized users can access specific routes, enhancing your app’s security. With `svelte-guard`, you ca

Authorization services for API Builder.

Plugin to integrate OAuth 2.0 authentication in Piral.

IP rate-limiting middleware for Koajs 2. Use to limit repeated requests to APIs and/or endpoints such as password reset.

Passport.js framework that uses JWT for sessions

A collection of React hooks for interacting with Cerbos policy decision points

Vue directive to load and display secured images

insomnia plugin that can auto set authorization header after get jwt

Helpers for AWS Cognito to build web applications with authentication/authorization

Mongoose adapter for Casbin

Vue Plugin library for MSAL.JS (Microsoft Authentication Library for JS) - Support Vue.js 3.x or later

JWT authentication middleware.

Rich access control in an easy to read syntax featuring roles with inheritance, dynamic attribute tests, and more

Framework-agnostic authentication library built with Bun, TypeScript, and SQLite

JavaScript client for Oxidauth

Application authorization and authentication

Auth solution (password, facebook, & more) for your node.js Connect & Express apps

Basic auth middleware

Interactive CLI to scaffold a full-stack MERN role-based auth app with Google OAuth and .env setup.

A dependency-free multi-service authentication tool for node.js

Grant OAuth Proxy middleware for Hapi

Drizzle adapter for Casbin

Amazon style authorization using signing.

Social authentication for FoalTS

Package containing helpers for authorization in redux

Node which implements HTTP Basic/Digest Authorization.

A simple OAuth 2 endpoint for Restify

Secure password hashing and verification

Kilpi Core · Kilpi is the authorization framework for full-stack TypeScript applications, designed for flexible, powerful, agnostic, intuitive and developer friendly authorization.

A simple implementation of OAuth 2 providing async hooks to call to your own services

JSON Web Token (JWT) Bearer Token Profiles for OAuth 2.0 client authentication strategy for Passport.

Data level authorization for Mongoose

NestJS guard for validating Telegram WebApp init data

Flexible team-based authorization

A library for invoking Authorization Capabilities via HTTP signatures

Fast authentication layer for your SaaS, backed by Redis.

Mongoose adapter for Casbin

midway passport component

Nexus Shield Plugin

Axios interceptor to store, transmit, clear and automatically refresh tokens for authentication in a React Native environment

xprezzo basic auth parser

isomorphic, "magical" access control integrated with objection.js 🎉

IDaaS Authentication SDK for SPA applications

Separated module for authorization

IP rate-limiting middleware for Koajs 2. Use to limit repeated requests to APIs and/or endpoints such as password reset.

Universal module for everything.

Lightweight and extensible authorization engine for TypeScript inspired by CanCanCan. Define flexible permissions using actions, subjects, and conditions.

Client side HTTP Authorization header handling

OAuth 2.0 password grant authentication strategy for Passport with additional client information.

Permission management component for React

TypeScript SDK for Go IAM - A lightweight Identity and Access Management server

TEST PACKAGE - TypeScript SDK V2 for adding pure EIP-712 token-based authorization to MCP tools - No JWT, clean and simple

A simple authentication and authorization library for Vue.js using typescript

react-auth-verification-context is a library that provides a way to manage authentication state in a React application. It is implemented using the React context API, which allows you to pass data through the component tree without having to pass props do

A flexible Vue 3 directive for managing user permissions with support for AND, OR, regex, and pattern-based checks.

An OIDC client for Node.js

Passport strategy to authenticate using a previously issued refresh token, and provide new access tokens for Oauth 2.0 flow.

Provides JWT authentication for loopback applications. Includes storing roles inside tokens and handling refreshing. Built-in reuse detection.

baileys whatsapp-api

A React RouteGuard component for role-based and protected routing.

React components and hooks for granular RBAC

Passport strategy for authenticating with Google one time authorization code using the OAuth 2.0 API.