1.0.6 • Published 2 years ago

@izikaj/api_signature v1.0.6

Weekly downloads
-
License
MIT
Repository
-
Last release
2 years ago

Simple HMAC-SHA1 authentication via headers, port of https://github.com/psyipm/api_signature

Why?

Required to sign requests to API with signature validation based on api_signature Ruby Gem.

How?

  const signer = new Signer(process.env.API_KEY, process.env.API_SECRET);
  ...
  // ensure we have headers to sign
  request.setHeader('x-api-key', process.env.API_KEY);
  request.setHeader('content-type', 'application/json');
  // sign request
  const signature = signer.signRequest({
    // method: 'GET'
    method: request.method,
    // url: http://example.com/api/test
    url: process.env.API_ENDPOINT + request.url,
    headers: {
      // only significant headers is signed (depends on endpoint)
      'x-api-key': process.env.API_KEY,
      'content-type': 'application/json',
    },
    body: request.rawBody
  });
  // write provided request headers (host, x-datetime & authorization)
  for (const name in signature.headers) {
    request.setHeader(name, signature.headers[name]);
  }
  // lets perform request...

TODO:

  • add more tests
  • port validator
api_signature
@infinitebrahmanuniverse/nolb-_iz@everything-registry/sub-chunk-477@zalastax/nolb-_iz
1.0.6

2 years ago

1.0.5

2 years ago

1.0.4

2 years ago

1.0.3

2 years ago

1.0.2

2 years ago