npm.io
0.2.0 • Published 2d ago

@ikeboy003/auth

Licence
MIT
Version
0.2.0
Deps
0
Size
37 kB
Vulns
0
Weekly
231
SummaryDependencyVersions

@ikeboy003/auth

Headless Cognito auth/session primitive. Framework-agnostic core + optional React binding. Drop-in: when the pool env vars are set, you wire nothing.

No brand, routing, or UI logic baked in — it gives you a session and a token; the app decides where to send people and how to render.

Install

npm i @ikeboy003/auth aws-amplify

aws-amplify and react are peers. React is optional (only needed for /react).

Configure

Zero-config when any of these env pairs are present (checked in order):

  • NEXT_PUBLIC_COGNITO_USER_POOL_ID / NEXT_PUBLIC_COGNITO_CLIENT_ID
  • VITE_COGNITO_USER_POOL_ID / VITE_COGNITO_CLIENT_ID
  • COGNITO_USER_POOL_ID / COGNITO_CLIENT_ID

Admin group defaults to admin (override with NEXT_PUBLIC_AUTH_ADMIN_GROUP).

Bundled apps (Next / Vite): configure explicitly. The env auto-read uses process.env[name] dynamically, and bundlers only inline static process.env.NEXT_PUBLIC_X literals — so in the browser the auto-read sees nothing. Pass the values from your app (where they inline) via the AuthProvider config prop, or configureAuth():

import { configureAuth } from "@ikeboy003/auth";
configureAuth({ userPoolId: "...", userPoolClientId: "...", adminGroup: "admin" });

Core (no React)

import {
  authEnabled, signIn, signOut, getCurrentUser, getIdToken,
} from "@ikeboy003/auth";

const user = await getCurrentUser(); // { sub, email, groups, isAdmin } | null
const token = await getIdToken();    // Cognito ID JWT — send as Bearer for RLS

Pair getIdToken with any postgREST client so row-level security applies:

import { createClient } from "@ikeboy003/cloudrest-client";
export const db = createClient({ baseUrl, getToken: getIdToken });

React

// Wrap once, at the root. In a bundled app, pass config (statically-inlined
// env from YOUR app) so the browser actually gets the pool ids:
import { AuthProvider } from "@ikeboy003/auth/react";
<AuthProvider
  config={{
    userPoolId: process.env.NEXT_PUBLIC_COGNITO_USER_POOL_ID,
    userPoolClientId: process.env.NEXT_PUBLIC_COGNITO_CLIENT_ID,
  }}
>
  {children}
</AuthProvider>;

// Anywhere below it.
import { useAuth } from "@ikeboy003/auth/react";
const { user, loading, signIn, signOut } = useAuth();

License

MIT

Keywords

authcognitoamplifysessionheadless