npm
Sign UpSign In

weak-rbac
TypeScript icon, indicating that this package has built-in type declarations

0.0.4 • Public • Published

weak-rbac

This is the simplest RBAC for express router. You may use it to regulate session and access based on route and user role.

Example

app.get(
    '/hidden-resource',
    allow(['admin'], true), // Here we checking the access, it will be follow down if user role is not 'admin'
    (req, res, next) => {
        // res.send() the resource
        // next(error) if something wrong
    },
);

full example available on example.js file

Quick configuration of RBAC available

app.use(initRBAC({
    tokenHeaderName: 'X-My-Token',
    errorAllowedCallback: () => new HttpError(403, 'Permission denied'),
    errorSessionCallback: () => new HttpError(403, 'User Banned'),
    errorNoneRoleCallback: () => new HttpError(418, 'This Role not available in system'),
    roles: ['admin', 'user', 'john'],
}));

To Do

  • Tests (mocha.js)

Versions

Current Tags

  • Version
    Downloads (Last 7 Days)
    • Tag
  • 0.0.4
    0
    • latest

Version History

  • Version
    Downloads (Last 7 Days)
    • Published
  • 0.0.4
    0
  • 0.0.3
    0
  • 0.0.2
    0
  • 0.0.1
    0

Package Sidebar

Install

npm i weak-rbac

Repository

github.com/seitbekir/weak-rbac

Homepage

github.com/seitbekir/weak-rbac#readme

Weekly Downloads

0

Version

0.0.4

License

MIT

Unpacked Size

18.1 kB

Total Files

7

Last publish

Collaborators

  • seitbekir
Try on RunKit
Report malware