The latest articles on DEV Community by Suvin Nimnaka (@suvink). https://dev.to/suvink https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F288828%2F6b7f598c-a9ea-4ef7-aaa1-72dbfeb51909.jpeg https://dev.to/suvink en Suvin Nimnaka Sat, 06 Dec 2025 14:11:31 +0000 https://dev.to/suvink/dont-become-a-victim-of-pii-harvesting-1gk9 https://dev.to/suvink/dont-become-a-victim-of-pii-harvesting-1gk9 <blockquote> <p><em>Disclaimer:</em><br> <em>This post is for educational and security awareness purposes only. The techniques described were performed as a proof-of-concept to demonstrate vulnerabilities in how personal information is shared on social media platforms. No data was collected, stored, or misused in any way. The goal is to help job seekers protect their personal information online. Please do not use these techniques for malicious purposes or to harvest data without consent. Unauthorized data collection may violate platform terms of service and applicable privacy laws.</em></p> </blockquote> <p>I was scrolling through LinkedIn earlier today when I came across a job posting that looked completely legitimate at first glance.</p> <p>Backend Developer position. Remote work. Open to freshers.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2xx1nq3flo2id2iwfi9w.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2xx1nq3flo2id2iwfi9w.png" alt="Suspicious LinkedIn Post" width="800" height="670"></a></p> <p>Then I saw this line:</p> <p>"Comment your #email_ID and we'll send the assignment link within 24 hours."</p> <p>The post already had 35+ comments. People were dropping their personal email addresses in plain view.</p> <h2> The Red flags </h2> <p>I clicked on the poster's profile to learn more about the company and the recruiter's background.</p> <p>Their About section was blank. No company listed. Their post history showed random photos of "onboarding kits" from various tech companies, but nothing connecting them to an actual organization.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fasf444d291hi2t5avdqu.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fasf444d291hi2t5avdqu.png" alt="Empty About Page" width="800" height="670"></a></p> <p>Meanwhile, real people were publicly exposing their contact information.</p> <p>Maybe it was a legitimate post. Maybe it wasn't. I had no solid proof either way. But something felt off. Empty profile, no company affiliation, dozens of people publicly exposing their emails in the comments.</p> <p>That's when a different question hit me. Even if this poster had good intentions, how easy would it be for someone else to harvest all these publicly visible emails?</p> <p>I decided to find out.</p> <h2> Let's write some code </h2> <p>I wanted to understand the technical barrier to exploiting this kind of post. Turns out, it's almost non-existent.</p> <p>I opened ChatGPT and typed: "Write a Chrome extension that extracts email addresses from LinkedIn post comments."</p> <p>One minute later, I had working code.</p> <p>I didn't need to understand the LinkedIn DOM structure. I didn't need to write regex patterns for email validation. I didn't need to figure out Chrome extension manifests. The AI handled all of it.</p> <p>Copy, paste, load unpacked extension in Chrome. Done.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fsc6bssd6aazqwdzbnb2f.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fsc6bssd6aazqwdzbnb2f.png" alt="Email Extractor Extension" width="800" height="670"></a></p> <p>I clicked on the malicious job post, opened the extension, hit "Extract." Within seconds, I had a clean list of 9 email addresses that people had publicly commented.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ffyhj2zvshl5c0gjqvxvu.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ffyhj2zvshl5c0gjqvxvu.png" alt="Extracted Emails" width="800" height="670"></a></p> <p>No LinkedIn API access needed. No authentication bypass. No rate limiting to circumvent. No technical expertise required.</p> <p>The entire process, from idea to harvested emails, took under 3 minutes. With a little more time playing with the prompt, I would've gotten every single email extracted from the post.</p> <p>Now imagine this: multiple posts, multiple sock-puppet accounts, automated monitoring with Puppeteer or Selenium running on a cheap VPS. You're looking at thousands of emails harvested daily with basically zero effort or infrastructure cost.</p> <p>The scary part? I'm not even a security researcher. I'm just someone who knows how to use ChatGPT. And if I can do this in 3 minutes, imagine what someone with actual malicious intent can do.</p> <h2> What happens after emails are harvested </h2> <p>Let me be very clear here. I collected nothing beyond the proof of concept. But bad actors absolutely do, and the downstream attacks are more sophisticated than most people realize. I'll explain a couple of them.</p> <h3> Context-aware spear phishing </h3> <p>When an attacker knows you commented on a backend developer posting, they can craft targeted messages:</p> <p>"Thanks for your interest in the Senior Backend Engineer role. We've reviewed your background and would like to move forward. Please access the technical assessment here: [malicious link]"</p> <p>This isn't generic spam. It references your actual behavior and interests. The click-through rate on context-aware phishing is 5-10x higher than traditional campaigns.</p> <h3> Malicious payload delivery </h3> <p>That "assignment link" the recruiter will be sending could resolve to many things.</p> <ul> <li>Phishing pages that clone Google Docs or GitHub's login interface</li> <li>ZIP archives containing RATs (Remote Access Trojans)</li> <li>Fake repositories with malicious dependencies buried in <code>package.json</code> or <code>requirements.txt</code> </li> </ul> <p>Developers are especially vulnerable because our workflow involves downloading and executing code regularly. We're trained to <code>git clone</code> and <code>npm install</code> without suspicion.</p> <h3> Long-term dataset enrichment </h3> <p>Harvested emails get added to larger databases for future use. Your email from this LinkedIn comment can be correlated with many other information coming from various diffierent sources such as,</p> <ul> <li>Your GitHub activity (public repos, commit patterns, starred projects)</li> <li>Breach databases from previous incidents (haveibeenpwned, leaked credentials)</li> <li>OSINT from Twitter, personal blogs, conference talks</li> <li>Account enumeration across AWS, Azure, Digital Ocean</li> </ul> <p>This creates a persistent digital footprint. Attackers can revisit this data months or years later, long after you've forgotten about that one LinkedIn comment.</p> <h3> Automated account enumeration </h3> <p>Once they have your email, attackers run automated checks to see where else you have accounts. Tools like <code>holehe</code> or custom scripts can enumerate which cloud providers you use (AWS, GCP, Azure), your presence on GitHub, GitLab, Bitbucket, and developer tool accounts like npm, PyPI, or Docker Hub. Each confirmed account becomes another potential attack surface.</p> <h2> Why does this work so well for the attackers? </h2> <p>This works so well because LinkedIn's "professional environment" creates a false sense of security where people assume bad actors wouldn't operate where identities are theoretically verifiable. Job seekers, especially early-career developers, are economically vulnerable and when opportunity appears, critical evaluation goes out the window. The technical barrier for pulling off something like this is now close to zero. You don't need programming expertise anymore when you can ask an LLM to generate the code in 30 seconds. And it scales exponentially. One post harvests dozens of emails, ten posts hundreds, automated monitoring across multiple sock-puppet accounts captures thousands daily.</p> <h2> So, how to protect yourself from being a victim? </h2> <ol> <li><strong>Never post personal information publicly</strong></li> </ol> <p>Use LinkedIn's DM feature. Real recruiters understand this. If someone insists on public email drops, disengage immediately.</p> <ol> <li><strong>Validate the poster thoroughly</strong></li> </ol> <p>Before engaging with a recruitment post,</p> <ul> <li>Verify company affiliation (check if the domain exists and has a careers page)</li> <li>Look for consistent employment history</li> <li>Check if actual employees from that company interact with the post</li> <li>Search the company's official job board</li> </ul> <p>Empty profiles + urgency = big red flags.</p> <ol> <li><strong>Use platform-provided channels</strong></li> </ol> <p>Most of the time, legitimate companies have:</p> <ul> <li>Branded career portals with proper TLS certificates (served over HTTPS)</li> <li>Corporate email domains (not free providers like Gmail)</li> <li>Application tracking systems (Greenhouse, Lever, Workday or LinkedIn Quick Apply)</li> </ul> <p>If they're running hiring through comment sections, they're either fake or incompetent. Neither is worth your time.</p> <ol> <li><strong>Compartmentalize your identity</strong></li> </ol> <p>Use dedicated email addresses for job applications. Services like SimpleLogin or AnonAddy let you create unique aliases per application. If one gets compromised, you know exactly where the leak happened, and you can kill that alias without affecting your main inbox.</p> <p>Think of it as the principle of least privilege, applied to your digital identity.</p> <h2> Bottom line </h2> <p>Look, I get it. We all want jobs. But posting your email in a public LinkedIn comment is like pulling down your pants in a crowded mall and yelling "I'm here for the interview!" Sure, maybe a recruiter sees you. But so does everyone else, including the guy in the corner taking notes for all the wrong reasons.</p> <p>This isn't about paranoia. LinkedIn remains valuable for networking and career growth. But recognize that modern social engineering doesn't require technical sophistication. Attackers just don't exploit software vulnerabilities, They exploit human psychology in professional contexts.</p> <p>Your email is PII. It can be a primary key in multiple databases. It's the recovery mechanism for most of your accounts. Treat it with the same caution you'd treat your home address or SSN.</p> <p>Next time you see "Drop your email in the comments," pause and evaluate. Is this legitimate, or is someone harvesting data?</p> <p>Your inbox security depends on that split-second decision. Stay skeptical. Verify everything. And keep your PII out of public spaces as much as you can.</p> Suvin Nimnaka Sun, 24 Aug 2025 06:02:43 +0000 https://dev.to/suvink/i-built-a-twitter-bot-so-i-dont-have-to-check-twitter-every-5-minutes-1a0g https://dev.to/suvink/i-built-a-twitter-bot-so-i-dont-have-to-check-twitter-every-5-minutes-1a0g <p>Picture this. You've built an amazing product. You're proud of it. Your mom's proud of it. Even your cat seems impressed (though cats are notoriously hard to please). But here's the thing: people are talking about your product on Twitter (well, “X” now, but let’s be real, we’re all still calling it Twitter), and you have absolutely no idea what they're saying.</p> <p>Sure, you could spend your entire day doom-scrolling through Twitter, searching for mentions of your product. But let's be honest. That's about as appealing as watching paint dry in slow motion. Plus, you've got actual work to do, like building more amazing features or figuring out why the coffee machine in the office keeps making that weird noise.</p> <p><strong>The solution?</strong> Build a bot that watches Twitter for you and sends updates directly to your team's Google Chat. It's like having a really dedicated intern who never sleeps, never complains, and never eats your lunch from the office fridge.</p> <h2> What We're Building </h2> <p>We're creating a Node.js service that:</p> <ol> <li>Monitors Twitter for tweets containing your product's hashtag.</li> <li>Forwards the juicy details to your Google Chat workspace.</li> <li>Runs once, exits, and repeats the same every 15 minutes.</li> <li>Does all this without you having to touch Twitter with a 10-foot pole.</li> </ol> <h2> Prerequisites (The boring, necessary stuff) </h2> <p>Before we dive into the fun part, make sure you have:</p> <ul> <li>Node.js installed (version 14 or higher – we're not animals here)</li> <li>A Twitter Developer Account</li> <li>A Google Chat workspace (or the ability to create webhooks in one)</li> <li>A Choreo Account. If you don't have one, sign up for free at <a href="https://console.choreo.dev/signup" rel="noopener noreferrer">https://console.choreo.dev/signup</a>. </li> </ul> <h2> Step 1: Setting Up Your Twitter API Access </h2> <p>First things first. You need to get cozy with the Twitter API. Don't worry, it's not as scary as it sounds.</p> <ol> <li>Head over to <a href="https://developer.x.com/" rel="noopener noreferrer">developer.twitter.com</a>.</li> <li>Create an app (call it something cool like "HashtagWatcher3000").</li> <li>Generate a Bearer Token.</li> <li>Keep that token safe.</li> </ol> <h2> Step 2: Google Chat Webhook Setup </h2> <p>Now let's set up the delivery mechanism – Google Chat webhooks.</p> <ol> <li>Go to your Google Chat space.</li> <li>Click on the space name → "Manage webhooks".</li> <li>Create a new webhook.</li> <li>Copy that URL and note it down somewhere.</li> </ol> <h2> Step 3: Project Setup (The Base) </h2> <p>Create a new directory and initialize your project:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>twitter-hashtag-monitor <span class="nb">cd </span>twitter-hashtag-monitor npm init <span class="nt">-y</span> </code></pre> </div> <p>Install the dependencies we'll need:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>axios dotenv </code></pre> </div> <p><strong>Why these packages?</strong></p> <ul> <li> <code>axios</code>: For making HTTP requests</li> <li> <code>dotenv</code>: For managing environment variables (keeping secrets secret)</li> </ul> <h2> Step 4: Environment Configuration </h2> <p>Create a <code>.env</code> file to store your sensitive information:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>TWITTER_BEARER_TOKEN=your_actual_bearer_token_here GOOGLE_CHAT_WEBHOOK_URL=your_webhook_url_here HASHTAG=#yourproducthashtag </code></pre> </div> <p>And create a <code>.gitignore</code> file just to make sure you don't accidentally commit your API keys.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>node_modules .env </code></pre> </div> <p><strong>Important:</strong> Never, ever, EVER commit your <code>.env</code> file to version control. That's like leaving your house key under the doormat with a note saying "free stuff inside."</p> <h2> Step 5: The Main Event – Building the Bot </h2> <p>Now for the fun part! Create an <code>index.js</code> file.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nf">require</span><span class="p">(</span><span class="dl">"</span><span class="s2">dotenv</span><span class="dl">"</span><span class="p">).</span><span class="nf">config</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">axios</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">"</span><span class="s2">axios</span><span class="dl">"</span><span class="p">);</span> <span class="c1">// Configuration object (keeping configs organized)</span> <span class="kd">const</span> <span class="nx">config</span> <span class="o">=</span> <span class="p">{</span> <span class="na">bearerToken</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">TWITTER_BEARER_TOKEN</span><span class="p">,</span> <span class="na">googleChatWebhookUrl</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">GOOGLE_CHAT_WEBHOOK_URL</span><span class="p">,</span> <span class="na">hashtag</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">HASHTAG</span> <span class="o">||</span> <span class="dl">"</span><span class="s2">#choreoisawesome</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// Default hashtag</span> <span class="na">checkInterval</span><span class="p">:</span> <span class="mi">15</span><span class="p">,</span> <span class="c1">// minutes to look back</span> <span class="na">maxResults</span><span class="p">:</span> <span class="mi">10</span><span class="p">,</span> <span class="na">twitterServiceUrl</span><span class="p">:</span> <span class="dl">"</span><span class="s2">https://api.twitter.com/2/tweets/search/recent</span><span class="dl">"</span><span class="p">,</span> <span class="p">};</span> </code></pre> </div> <h3> The Tweet Search Function </h3> <p>This function is the heart of our operation:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">searchTweets</span><span class="p">()</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">now</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">();</span> <span class="c1">// Twitter needs a 10-second buffer, so we use 20 to be safe</span> <span class="kd">const</span> <span class="nx">endTime</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">(</span><span class="nx">now</span><span class="p">.</span><span class="nf">getTime</span><span class="p">()</span> <span class="o">-</span> <span class="mi">20</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">timeAgo</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">(</span><span class="nx">endTime</span><span class="p">.</span><span class="nf">getTime</span><span class="p">()</span> <span class="o">-</span> <span class="nx">config</span><span class="p">.</span><span class="nx">checkInterval</span> <span class="o">*</span> <span class="mi">60</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">params</span> <span class="o">=</span> <span class="p">{</span> <span class="na">query</span><span class="p">:</span> <span class="nx">config</span><span class="p">.</span><span class="nx">hashtag</span><span class="p">,</span> <span class="na">start_time</span><span class="p">:</span> <span class="nx">timeAgo</span><span class="p">.</span><span class="nf">toISOString</span><span class="p">(),</span> <span class="na">end_time</span><span class="p">:</span> <span class="nx">endTime</span><span class="p">.</span><span class="nf">toISOString</span><span class="p">(),</span> <span class="na">max_results</span><span class="p">:</span> <span class="nx">config</span><span class="p">.</span><span class="nx">maxResults</span><span class="p">,</span> <span class="dl">"</span><span class="s2">tweet.fields</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">created_at,author_id,public_metrics,text</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">user.fields</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">username,name</span><span class="dl">"</span><span class="p">,</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">axios</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="nx">config</span><span class="p">.</span><span class="nx">twitterServiceUrl</span><span class="p">,</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="na">Authorization</span><span class="p">:</span> <span class="s2">`Bearer </span><span class="p">${</span><span class="nx">config</span><span class="p">.</span><span class="nx">bearerToken</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">},</span> <span class="nx">params</span><span class="p">,</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">response</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">data</span> <span class="o">||</span> <span class="p">[];</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Error searching tweets:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">.</span><span class="nx">response</span><span class="p">?.</span><span class="nx">data</span> <span class="o">||</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">);</span> <span class="k">return</span> <span class="p">[];</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>What's happening here?</strong></p> <ul> <li>We create a time window (last 15 minutes, but ending 20 seconds ago)</li> <li>We ask Twitter for tweets containing our hashtag in that timeframe</li> <li>We request additional fields like metrics and user info (because context matters)</li> <li>If something goes wrong, we gracefully return an empty array instead of crashing</li> </ul> <p>To learn more about the search API, head over to the <a href="https://docs.x.com/x-api/posts/search-recent-posts" rel="noopener noreferrer">Search Recent Posts API on X API Documentation</a>.</p> <h3> The Google Chat Messenger </h3> <p>This function takes our Tweet data and formats it nicely for Google Chat.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">sendTweetsToService</span><span class="p">(</span><span class="nx">tweets</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">tweets</span><span class="p">.</span><span class="nx">length</span> <span class="o">===</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">No tweets found in the last</span><span class="dl">"</span><span class="p">,</span> <span class="nx">config</span><span class="p">.</span><span class="nx">checkInterval</span><span class="p">,</span> <span class="dl">"</span><span class="s2">minutes</span><span class="dl">"</span><span class="p">);</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">tweetToSend</span> <span class="o">=</span> <span class="nx">tweets</span><span class="p">[</span><span class="mi">0</span><span class="p">];</span> <span class="c1">// We only send the first tweet for now</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Found </span><span class="p">${</span><span class="nx">tweets</span><span class="p">.</span><span class="nx">length</span><span class="p">}</span><span class="s2"> tweet(s), sending the first one to Google Chat`</span><span class="p">);</span> <span class="c1">// Format message for Google Chat</span> <span class="kd">const</span> <span class="nx">message</span> <span class="o">=</span> <span class="p">{</span> <span class="na">text</span><span class="p">:</span> <span class="s2">`🐦 New Tweet Found!\n\n`</span> <span class="o">+</span> <span class="s2">`*Hashtag:* </span><span class="p">${</span><span class="nx">config</span><span class="p">.</span><span class="nx">hashtag</span><span class="p">}</span><span class="s2">\n`</span> <span class="o">+</span> <span class="s2">`*Author:* </span><span class="p">${</span><span class="nx">tweetToSend</span><span class="p">.</span><span class="nx">username</span> <span class="o">||</span> <span class="nx">tweetToSend</span><span class="p">.</span><span class="nx">author_id</span><span class="p">}</span><span class="s2">\n`</span> <span class="o">+</span> <span class="s2">`*Created:* </span><span class="p">${</span><span class="nx">tweetToSend</span><span class="p">.</span><span class="nx">created_at</span><span class="p">}</span><span class="s2">\n\n`</span> <span class="o">+</span> <span class="s2">`*Tweet:*\n</span><span class="p">${</span><span class="nx">tweetToSend</span><span class="p">.</span><span class="nx">text</span><span class="p">}</span><span class="s2">\n\n`</span> <span class="o">+</span> <span class="s2">`*Metrics:* ❤️ </span><span class="p">${</span><span class="nx">tweetToSend</span><span class="p">.</span><span class="nx">public_metrics</span><span class="p">?.</span><span class="nx">like_count</span> <span class="o">||</span> <span class="mi">0</span><span class="p">}</span><span class="s2"> | 🔁 </span><span class="p">${</span> <span class="nx">tweetToSend</span><span class="p">.</span><span class="nx">public_metrics</span><span class="p">?.</span><span class="nx">retweet_count</span> <span class="o">||</span> <span class="mi">0</span> <span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">axios</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span><span class="nx">config</span><span class="p">.</span><span class="nx">googleChatWebhookUrl</span><span class="p">,</span> <span class="nx">message</span><span class="p">,</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">Content-Type</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">application/json</span><span class="dl">"</span><span class="p">,</span> <span class="p">},</span> <span class="p">});</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">Successfully sent tweet to Google Chat</span><span class="dl">"</span><span class="p">);</span> <span class="c1">// Mission accomplished – time to exit</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">Tweet sent successfully. Stopping the service...</span><span class="dl">"</span><span class="p">);</span> <span class="nx">process</span><span class="p">.</span><span class="nf">exit</span><span class="p">(</span><span class="mi">0</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Error sending tweet to Google Chat:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">.</span><span class="nx">response</span><span class="p">?.</span><span class="nx">data</span> <span class="o">||</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Pro Tip:</strong> Instead of just sending a text message to Google Chat, you can send nicely formatted cards. Check the <a href="https://developers.google.com/workspace/chat/api/reference/rest/v1/cards" rel="noopener noreferrer">Google Chat Cards Documentation</a> for more information.</p> <h3> Tying It All Together </h3> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">async</span> <span class="kd">function</span> <span class="nf">checkAndSendTweets</span><span class="p">()</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`\n[</span><span class="p">${</span><span class="k">new</span> <span class="nc">Date</span><span class="p">().</span><span class="nf">toISOString</span><span class="p">()}</span><span class="s2">] Checking for tweets with hashtag: </span><span class="p">${</span><span class="nx">config</span><span class="p">.</span><span class="nx">hashtag</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">tweets</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">searchTweets</span><span class="p">();</span> <span class="k">await</span> <span class="nf">sendTweetsToService</span><span class="p">(</span><span class="nx">tweets</span><span class="p">);</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">startMonitoring</span><span class="p">()</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="s2">Starting Twitter Hashtag Monitor</span><span class="dl">"</span><span class="p">);</span> <span class="nf">checkAndSendTweets</span><span class="p">();</span> <span class="c1">// Run immediately</span> <span class="p">}</span> <span class="c1">// Handle graceful shutdown (Ctrl+C)</span> <span class="nx">process</span><span class="p">.</span><span class="nf">on</span><span class="p">(</span><span class="dl">"</span><span class="s2">SIGINT</span><span class="dl">"</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="dl">"</span><span class="se">\n</span><span class="s2">Shutting down Twitter Hashtag Monitor...</span><span class="dl">"</span><span class="p">);</span> <span class="nx">process</span><span class="p">.</span><span class="nf">exit</span><span class="p">(</span><span class="mi">0</span><span class="p">);</span> <span class="p">});</span> <span class="c1">// Start the service</span> <span class="nf">startMonitoring</span><span class="p">();</span> </code></pre> </div> <p>If you are too lazy to read the entire thing, here is the full source code: <a href="https://github.com/Suvink/fetch-tweets-from-hashtag" rel="noopener noreferrer">https://github.com/Suvink/fetch-tweets-from-hashtag</a></p> <h2> Step 6: Package.json Scripts </h2> <p>Add some convenient scripts to your <code>package.json</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"name"</span><span class="p">:</span><span class="w"> </span><span class="s2">"twitter-hashtag-monitor"</span><span class="p">,</span><span class="w"> </span><span class="nl">"version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"1.0.0"</span><span class="p">,</span><span class="w"> </span><span class="nl">"description"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Service to monitor Twitter hashtags and forward tweets"</span><span class="p">,</span><span class="w"> </span><span class="nl">"main"</span><span class="p">:</span><span class="w"> </span><span class="s2">"index.js"</span><span class="p">,</span><span class="w"> </span><span class="nl">"scripts"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"start"</span><span class="p">:</span><span class="w"> </span><span class="s2">"node index.js"</span><span class="p">,</span><span class="w"> </span><span class="nl">"dev"</span><span class="p">:</span><span class="w"> </span><span class="s2">"node index.js"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"dependencies"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"axios"</span><span class="p">:</span><span class="w"> </span><span class="s2">"^1.5.0"</span><span class="p">,</span><span class="w"> </span><span class="nl">"dotenv"</span><span class="p">:</span><span class="w"> </span><span class="s2">"^16.3.1"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"keywords"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"twitter"</span><span class="p">,</span><span class="w"> </span><span class="s2">"api"</span><span class="p">,</span><span class="w"> </span><span class="s2">"monitoring"</span><span class="p">,</span><span class="w"> </span><span class="s2">"hashtag"</span><span class="p">],</span><span class="w"> </span><span class="nl">"author"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Tony Stark"</span><span class="p">,</span><span class="w"> </span><span class="nl">"license"</span><span class="p">:</span><span class="w"> </span><span class="s2">"MIT"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h2> Step 7: Testing Your Creation </h2> <p>Time to see if your digital creation comes to life.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm start </code></pre> </div> <p>If everything is configured correctly, you should see:</p> <ol> <li>A log message indicating the bot is checking for tweets.</li> <li>Either a "no tweets found" message or a successful Google Chat notification.</li> <li>The process exits gracefully.</li> </ol> <p><strong>Important</strong>:<br> Twitter (X) API has very low rate limits (duh) for free accounts. You will only be able to search Tweets once every 15 minutes. </p> <h2> Step 8: Scheduling The Script on Choreo </h2> <p>Choreo is a fantastic platform for running scheduled tasks without the hassle of managing infrastructure. Here's how to deploy your task there.</p> <p>Before following the below steps, make sure you commit your code to GitHub.</p> <h3> Step 8.1: Set Up Your Choreo Component </h3> <ol> <li> <strong>Log into Choreo</strong>: Head over to <a href="https://console.choreo.dev" rel="noopener noreferrer">console.choreo.dev</a> and sign in with your account.</li> <li> <strong>Create a Component</strong>: Click on "Create Component" to start the magic.</li> <li> <strong>Choose Component Type</strong>: Select <strong>"Scheduled Task"</strong> as your component type.</li> <li> <strong>Link Your Repository</strong>: Connect your GitHub repository that contains the source code.</li> <li> <strong>Configure Build Settings</strong>: <ul> <li>Choose <strong>NodeJS</strong> as your <strong>Build Preset</strong>.</li> <li>Select your preferred Node.js version.</li> </ul> </li> <li> <strong>Click Create</strong>: Hit that create button and let Choreo work its magic</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fhupvmx3nm39e2rjbnx43.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fhupvmx3nm39e2rjbnx43.png" alt="Choreo Component Creation" width="800" height="439"></a></p> <h3> Step 8.2: Wait for the Build </h3> <p>Once your component is created, Choreo will start building your project:</p> <ul> <li>Go to <strong>Build</strong> page from the left menu.</li> <li>Watch the build process complete (grab another coffee while you wait).</li> <li>Make sure the build status shows as successful.</li> </ul> <h3> Step 8.3: Configure and Deploy </h3> <p>Now comes the fun part. Deployment!</p> <ol> <li>From the left menu, click on <strong>"Deploy"</strong>.</li> <li>Click the <strong>"Configure and Deploy"</strong> button.</li> <li> <strong>Environment Configurations</strong>: <ul> <li>In the pop-up drawer, click <strong>"Add Configuration"</strong> </li> <li>Add your environment variables from your <code>.env</code> file: <ul> <li> <code>TWITTER_BEARER_TOKEN</code>: Your Twitter API bearer token</li> <li> <code>GOOGLE_CHAT_WEBHOOK_URL</code>: Your Google Chat webhook URL </li> <li> <code>HASHTAG</code>: Your product hashtag (e.g., <code>#choreoisawesome</code>)</li> </ul> </li> </ul> </li> <li> <strong>Click Next</strong>: Move to the scheduling configuration</li> <li> <strong>Set Schedule</strong>: <ul> <li>In the schedule drawer, set it to run <strong>every 15 minutes</strong> </li> <li>This ensures the task is compatible with Twitter API rate limits :( </li> </ul> </li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ffy3110e3wslz9dt2pk7t.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ffy3110e3wslz9dt2pk7t.png" alt="Scheduling a task in Choreo" width="800" height="439"></a></p> <ol> <li>Hit (just press!) that deploy button and watch your task come to life!</li> </ol> <h3> Step 8.4: Monitoring the Execution </h3> <p>Want to see your bot in action?</p> <ul> <li>Go to <strong>Execute</strong> from the left menu</li> <li>Check the execution history to see when your bot runs</li> <li>View execution logs to see if tweets are being found and sent</li> <li>Monitor for any errors or issues</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fecouh486fxjltv7l53rl.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fecouh486fxjltv7l53rl.png" alt="Task execution page on Choreo" width="800" height="439"></a></p> <p><strong>Why Choreo is awesome for this:</strong></p> <ul> <li>No server management headaches</li> <li>Built-in scheduling (no cron jobs needed)</li> <li>Easy environment variable management</li> <li>Execution history and logging out of the box</li> <li>Scales automatically (though our bot is pretty lightweight)</li> </ul> <h2> Conclusion (The Part Where I Wrap This Up) </h2> <p>And there you have it! You've just built a Twitter monitoring bot that saves you from the endless scroll of social media doom. Your bot will dutifully watch Twitter for mentions of your product and deliver the good news (or constructive feedback) straight to your team's Google Chat.</p> <p>No more FOMO about what people are saying about your product. No more manual searching through Twitter. No more wondering if that one customer actually liked your latest feature.</p> <p>Just pure, automated, social media monitoring bliss.</p> <p>Now go forth and monitor those hashtags! And maybe treat yourself to a cheesecake from Barista. You've earned it.</p> <p><em>P.S. - If this helped you become the office hero, consider buying me a coffee or simply putting a reaction!</em></p> <p><a href="https://www.buymeacoffee.com/suvink" rel="noopener noreferrer"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fcdn.buymeacoffee.com%2Fbuttons%2Fv2%2Fdefault-yellow.png" alt="Buy Me A Coffee" width="545" height="153"></a></p> Suvin Nimnaka Fri, 15 Aug 2025 14:37:32 +0000 https://dev.to/suvink/how-to-build-a-discord-to-google-chat-bridge-bot-and-why-your-team-will-love-you-2ljj https://dev.to/suvink/how-to-build-a-discord-to-google-chat-bridge-bot-and-why-your-team-will-love-you-2ljj <p>Ever been in a meeting discussing important project updates in Google Chat while your devrel team drops fire memes in Discord? Yeah, me too. Today, we're fixing that communication chaos once and for all.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5lvijbnotm89wq8y654n.jpg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5lvijbnotm89wq8y654n.jpg" alt="Discord and Google Chat integration" width="800" height="450"></a></p> Image credits: Masters of AI &amp; Automation <h2> The Problem Many Modern Teams Face </h2> <p>Let's be honest. Your team probably lives in multiple chat apps. Marketing loves Slack, developers worship Discord, and management insists on Google Chat because "it integrates with our workspace." Meanwhile, important messages are getting lost in the shuffle faster than my motivation on Monday mornings.</p> <p>Sound familiar? Well, grab your favorite caffeinated beverage because we're about to build something that'll make you the office hero.</p> <h2> What We're Building </h2> <p>We're creating a Discord bot that acts like a digital messenger pigeon between Discord and Google Chat. Here's what this little guy will do:</p> <ul> <li> <strong>Listen</strong> to a specific Discord channel like it's eavesdropping at a coffee shop</li> <li> <strong>Capture</strong> messages and format them nicely (because we're not animals)</li> <li> <strong>Forward</strong> everything to Google Chat with rich formatting and direct links</li> <li> <strong>Make your team think</strong> you're some kind of integration wizard</li> </ul> <p>By the end of this tutorial, you'll have a bot that bridges these platforms seamlessly. No more "did you see what Janaka posted in Discord?" moments.</p> <h2> Before We Start Coding </h2> <p>Make sure you've got these obvious but important stuff.</p> <ul> <li> <strong>Node.js</strong> (version 20 or newer - if you're still on Node 14, it's time to upgrade, friend)</li> <li> <strong>NPM</strong> (comes with Node.js, like fries with a burger)</li> <li> <strong>Discord Developer Account</strong> with bot creation privileges</li> <li> <strong>Google Workspace Account</strong> (the kind that gives you access to Google Chat)</li> <li> <strong>A Choreo Account</strong>: If you don't have one, sign up free at <a href="https://console.choreo.dev/signup" rel="noopener noreferrer">https://console.choreo.dev/signup</a> </li> </ul> <h2> Step 1: Creating Your Discord Bot </h2> <p>First, let's bring a new Discord bot into existence:</p> <ol> <li>Head over to the <a href="https://discord.com/developers/applications" rel="noopener noreferrer">Discord Developer Portal</a> </li> <li>Click <strong>"New Application"</strong> and give it a name (I went with "PingKong" - King Kong, but for pinging across apps.)</li> <li>Navigate to the <strong>"Bot"</strong> tab and click <strong>"Add Bot"</strong>.</li> <li> <strong>Important:</strong> Enable "Message Content Intent" - this is like giving your bot permission to actually read what people are saying.</li> <li>Copy that bot token (keep it secret, keep it safe).</li> <li>In OAuth2 URL Generator, select <strong>"bot"</strong> scope and these permissions: <ul> <li>Read Messages/View Channels</li> <li>Send Messages</li> <li>Read Message History</li> </ul> </li> <li>Use the generated URL to invite your bot to your server.</li> </ol> <p><em>Pro tip: Your bot will show up offline initially - don't panic, it's not broken, just offline until we turn it up</em></p> <h2> Step 2: Setting Up Google Chat Webhook </h2> <p>Google Chat webhooks are surprisingly straightforward and probably the easiest thing to do in this tutorial:</p> <ol> <li>Open Google Chat and find your Chat Space.</li> <li>Click the space name → <strong>"Apps &amp; integrations"</strong> </li> <li>Click <strong>"Add webhooks"</strong> </li> <li>Give it a name.</li> <li>Add an avatar if you're feeling fancy.</li> <li>Hit <strong>"Save"</strong> and copy that webhook URL</li> </ol> <h2> Step 3: Project Setup </h2> <p>Time to create our project structure:</p> <ol> <li>Create a new directory for the project home. </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>discord-to-gchat-bot <span class="nb">cd </span>discord-to-gchat-bot </code></pre> </div> <ol> <li>Initialize a new Node project. </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm init <span class="nt">-y</span> </code></pre> </div> <ol> <li>Install our dependencies. </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>discord.js axios dotenv typescript @types/node npm <span class="nb">install</span> <span class="nt">-D</span> typescript ts-node </code></pre> </div> <ol> <li>Set up TypeScript. </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npx tsc <span class="nt">--init</span> </code></pre> </div> <p><strong>What we just installed:</strong></p> <ul> <li> <code>discord.js</code> - The library that connects your bot to Discord.</li> <li> <code>axios</code> - For making HTTP requests.</li> <li> <code>dotenv</code> - Keeps our secrets safe in environment variables.</li> <li> <code>typescript</code> - Because we're professionals who like type safety.</li> </ul> <h2> Step 4: TypeScript Configuration </h2> <p>Update your <code>tsconfig.json</code> with these settings:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"compilerOptions"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"target"</span><span class="p">:</span><span class="w"> </span><span class="s2">"ES2020"</span><span class="p">,</span><span class="w"> </span><span class="nl">"module"</span><span class="p">:</span><span class="w"> </span><span class="s2">"CommonJS"</span><span class="p">,</span><span class="w"> </span><span class="nl">"outDir"</span><span class="p">:</span><span class="w"> </span><span class="s2">"./dist"</span><span class="p">,</span><span class="w"> </span><span class="nl">"rootDir"</span><span class="p">:</span><span class="w"> </span><span class="s2">"./src"</span><span class="p">,</span><span class="w"> </span><span class="nl">"strict"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"esModuleInterop"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"skipLibCheck"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"forceConsistentCasingInFileNames"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"resolveJsonModule"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"include"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"src/**/*"</span><span class="p">],</span><span class="w"> </span><span class="nl">"exclude"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"node_modules"</span><span class="p">,</span><span class="w"> </span><span class="s2">"dist"</span><span class="p">]</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>This configuration basically tells TypeScript: "Compile our code to ES2020, be strict about types, and don't include node_modules in compilation" (because that would be chaos).</p> <h2> Step 5: Environment Variables </h2> <p>Create a <code>.env</code> file in your project root:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>DISCORD_TOKEN=your_discord_bot_token_here GOOGLE_CHAT_WEBHOOK_URL=your_webhook_url_here TARGET_CHANNEL_ID=discord_channel_id_to_watch </code></pre> </div> <p><strong>Getting your Discord channel ID:</strong> Enable Developer Mode in Discord settings (Settings → Advanced), then right-click any channel and select "Copy ID".</p> <p><em>Security note: Never commit your .env file to version control. It's like posting your passwords on a billboard.</em></p> <h2> Step 6: Type Definitions </h2> <p>Create <code>src/types.ts</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kr">enum</span> <span class="nx">BOT_EVENTS</span> <span class="p">{</span> <span class="nx">READY</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">ready</span><span class="dl">"</span><span class="p">,</span> <span class="nx">MESSAGE_CREATE</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">messageCreate</span><span class="dl">"</span><span class="p">,</span> <span class="nx">ERROR</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">error</span><span class="dl">"</span><span class="p">,</span> <span class="p">}</span> <span class="k">export</span> <span class="kr">interface</span> <span class="nx">EnvironmentVariables</span> <span class="p">{</span> <span class="nl">DISCORD_TOKEN</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">GOOGLE_CHAT_WEBHOOK_URL</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">TARGET_CHANNEL_ID</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span> <span class="k">export</span> <span class="kr">interface</span> <span class="nx">GoogleChatPayload</span> <span class="p">{</span> <span class="nl">cardsV2</span><span class="p">:</span> <span class="p">{</span> <span class="na">cardId</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">card</span><span class="p">:</span> <span class="p">{</span> <span class="na">header</span><span class="p">:</span> <span class="p">{</span> <span class="na">title</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">subtitle</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">imageUrl</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">imageType</span><span class="p">?:</span> <span class="dl">"</span><span class="s2">CIRCLE</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">SQUARE</span><span class="dl">"</span><span class="p">;</span> <span class="nl">imageAltText</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">};</span> <span class="nl">sections</span><span class="p">:</span> <span class="p">{</span> <span class="nx">header</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">widgets</span><span class="p">:</span> <span class="p">{</span> <span class="nx">decoratedText</span><span class="p">?:</span> <span class="p">{</span> <span class="nx">topLabel</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">text</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">startIcon</span><span class="p">?:</span> <span class="p">{</span> <span class="nx">knownIcon</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">iconUrl</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">};</span> <span class="p">};</span> <span class="nl">textParagraph</span><span class="p">?:</span> <span class="p">{</span> <span class="na">text</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">};</span> <span class="nl">buttonList</span><span class="p">?:</span> <span class="p">{</span> <span class="na">buttons</span><span class="p">:</span> <span class="p">{</span> <span class="na">text</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">onClick</span><span class="p">:</span> <span class="p">{</span> <span class="nx">openLink</span><span class="p">?:</span> <span class="p">{</span> <span class="na">url</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">};</span> <span class="p">};</span> <span class="p">}[];</span> <span class="p">};</span> <span class="p">}[];</span> <span class="p">}[];</span> <span class="p">};</span> <span class="p">}[];</span> <span class="p">}</span> </code></pre> </div> <p><strong>What's happening here:</strong></p> <ul> <li>We're defining the structure for Google Chat's card format (it's like HTML but in JSON form). For more info, refer to the <a href="https://developers.google.com/workspace/chat/api/reference/rest/v1/cards" rel="noopener noreferrer">Google Chat Cards Documentation</a>.</li> <li>TypeScript will yell at us if we try to use the wrong structure (which is good!)</li> <li>Think of interfaces as contracts - they define what shape our data should have</li> </ul> <h2> Step 7: The Main Event - Building Our Bot </h2> <p>Create <code>src/server.ts</code> - this is where the magic happens:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">Client</span><span class="p">,</span> <span class="nx">GatewayIntentBits</span><span class="p">,</span> <span class="nx">Message</span><span class="p">,</span> <span class="nx">TextChannel</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">discord.js</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">axios</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">axios</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="o">*</span> <span class="k">as</span> <span class="nx">dotenv</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">dotenv</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">BOT_EVENTS</span><span class="p">,</span> <span class="nx">EnvironmentVariables</span><span class="p">,</span> <span class="nx">GoogleChatPayload</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./types</span><span class="dl">"</span><span class="p">;</span> <span class="c1">// Discord's logo - because branding matters</span> <span class="kd">const</span> <span class="nx">discordLogoUrl</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">&lt;REPLACE_WITH_A_URL_TO_DISCORD_LOGO&gt;</span><span class="dl">"</span><span class="p">;</span> <span class="nx">dotenv</span><span class="p">.</span><span class="nf">config</span><span class="p">();</span> <span class="c1">// Load our secret variables</span> <span class="c1">// This function makes sure we have all our required environment variables</span> <span class="c1">// Think of it as a pre-flight checklist</span> <span class="kd">const</span> <span class="nx">validateEnv</span> <span class="o">=</span> <span class="p">():</span> <span class="nx">EnvironmentVariables</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">DISCORD_TOKEN</span><span class="p">,</span> <span class="nx">GOOGLE_CHAT_WEBHOOK_URL</span><span class="p">,</span> <span class="nx">TARGET_CHANNEL_ID</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">DISCORD_TOKEN</span> <span class="o">||</span> <span class="o">!</span><span class="nx">GOOGLE_CHAT_WEBHOOK_URL</span> <span class="o">||</span> <span class="o">!</span><span class="nx">TARGET_CHANNEL_ID</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Missing required environment variables - check your .env file!</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">DISCORD_TOKEN</span><span class="p">,</span> <span class="nx">GOOGLE_CHAT_WEBHOOK_URL</span><span class="p">,</span> <span class="nx">TARGET_CHANNEL_ID</span> <span class="p">};</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">env</span> <span class="o">=</span> <span class="nf">validateEnv</span><span class="p">();</span> <span class="c1">// Create our Discord client with the right permissions</span> <span class="kd">const</span> <span class="nx">client</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Client</span><span class="p">({</span> <span class="na">intents</span><span class="p">:</span> <span class="p">[</span> <span class="nx">GatewayIntentBits</span><span class="p">.</span><span class="nx">Guilds</span><span class="p">,</span> <span class="c1">// Access to server info</span> <span class="nx">GatewayIntentBits</span><span class="p">.</span><span class="nx">GuildMessages</span><span class="p">,</span> <span class="c1">// Read messages</span> <span class="nx">GatewayIntentBits</span><span class="p">.</span><span class="nx">MessageContent</span> <span class="c1">// Actually see message content</span> <span class="p">],</span> <span class="p">});</span> </code></pre> </div> <p>Now for the heart of our bot - the message forwarding function:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="cm">/** * This function takes a Discord message and formats it nicely for Google Chat */</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">sendToGoogleChat</span><span class="p">(</span><span class="nx">discordMessage</span><span class="p">:</span> <span class="nx">Message</span><span class="p">):</span> <span class="nb">Promise</span><span class="o">&lt;</span><span class="k">void</span><span class="o">&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">let</span> <span class="na">channelName</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="kd">let</span> <span class="nx">threadTitle</span> <span class="o">=</span> <span class="dl">""</span><span class="p">;</span> <span class="c1">// Handle different channel types (because Discord has many flavors)</span> <span class="k">if </span><span class="p">(</span><span class="nx">discordMessage</span><span class="p">.</span><span class="nx">channel</span><span class="p">.</span><span class="nf">isThread</span><span class="p">())</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">thread</span> <span class="o">=</span> <span class="nx">discordMessage</span><span class="p">.</span><span class="nx">channel</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">parentChannel</span> <span class="o">=</span> <span class="nx">thread</span><span class="p">.</span><span class="nx">parent</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">parentChannel</span><span class="p">)</span> <span class="p">{</span> <span class="nx">channelName</span> <span class="o">=</span> <span class="nx">parentChannel</span><span class="p">.</span><span class="nx">name</span><span class="p">;</span> <span class="nx">threadTitle</span> <span class="o">=</span> <span class="nx">thread</span><span class="p">.</span><span class="nx">name</span><span class="p">;</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nx">channelName</span> <span class="o">=</span> <span class="nx">thread</span><span class="p">.</span><span class="nx">name</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nx">channelName</span> <span class="o">=</span> <span class="p">(</span><span class="nx">discordMessage</span><span class="p">.</span><span class="nx">channel</span> <span class="k">as</span> <span class="nx">TextChannel</span><span class="p">).</span><span class="nx">name</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Extract the details from the message</span> <span class="kd">const</span> <span class="nx">username</span> <span class="o">=</span> <span class="nx">discordMessage</span><span class="p">.</span><span class="nx">author</span><span class="p">.</span><span class="nx">username</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">avatarUrl</span> <span class="o">=</span> <span class="nx">discordMessage</span><span class="p">.</span><span class="nx">author</span><span class="p">.</span><span class="nf">displayAvatarURL</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">messageContent</span> <span class="o">=</span> <span class="nx">discordMessage</span><span class="p">.</span><span class="nx">content</span><span class="p">;</span> <span class="c1">// Create a direct link back to the original message</span> <span class="c1">// It's like leaving breadcrumbs, but digital</span> <span class="kd">const</span> <span class="nx">messageLink</span> <span class="o">=</span> <span class="s2">`https://discord.com/channels/</span><span class="p">${</span><span class="nx">discordMessage</span><span class="p">.</span><span class="nx">guild</span><span class="p">?.</span><span class="nx">id</span><span class="p">}</span><span class="s2">/</span><span class="p">${</span><span class="nx">discordMessage</span><span class="p">.</span><span class="nx">channel</span><span class="p">.</span><span class="nx">id</span><span class="p">}</span><span class="s2">/</span><span class="p">${</span><span class="nx">discordMessage</span><span class="p">.</span><span class="nx">id</span><span class="p">}</span><span class="s2">`</span><span class="p">;</span> <span class="c1">// Build our fancy Google Chat card</span> <span class="kd">const</span> <span class="na">payload</span><span class="p">:</span> <span class="nx">GoogleChatPayload</span> <span class="o">=</span> <span class="p">{</span> <span class="na">cardsV2</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">cardId</span><span class="p">:</span> <span class="s2">`discord-message-</span><span class="p">${</span><span class="nx">discordMessage</span><span class="p">.</span><span class="nx">id</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="na">card</span><span class="p">:</span> <span class="p">{</span> <span class="na">header</span><span class="p">:</span> <span class="p">{</span> <span class="na">title</span><span class="p">:</span> <span class="dl">"</span><span class="s2">New Message from Discord</span><span class="dl">"</span><span class="p">,</span> <span class="na">subtitle</span><span class="p">:</span> <span class="nx">threadTitle</span> <span class="o">||</span> <span class="nx">channelName</span><span class="p">,</span> <span class="na">imageUrl</span><span class="p">:</span> <span class="nx">discordLogoUrl</span><span class="p">,</span> <span class="na">imageType</span><span class="p">:</span> <span class="dl">"</span><span class="s2">CIRCLE</span><span class="dl">"</span><span class="p">,</span> <span class="na">imageAltText</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Discord logo</span><span class="dl">"</span><span class="p">,</span> <span class="p">},</span> <span class="na">sections</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">widgets</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">decoratedText</span><span class="p">:</span> <span class="p">{</span> <span class="na">topLabel</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Posted by</span><span class="dl">"</span><span class="p">,</span> <span class="na">text</span><span class="p">:</span> <span class="nx">username</span><span class="p">,</span> <span class="na">startIcon</span><span class="p">:</span> <span class="p">{</span> <span class="na">iconUrl</span><span class="p">:</span> <span class="nx">avatarUrl</span><span class="p">,</span> <span class="p">},</span> <span class="p">},</span> <span class="p">},</span> <span class="p">{</span> <span class="na">textParagraph</span><span class="p">:</span> <span class="p">{</span> <span class="na">text</span><span class="p">:</span> <span class="nx">messageContent</span> <span class="o">||</span> <span class="dl">"</span><span class="s2">(No text content - probably an emoji battle)</span><span class="dl">"</span><span class="p">,</span> <span class="p">},</span> <span class="p">},</span> <span class="p">{</span> <span class="na">buttonList</span><span class="p">:</span> <span class="p">{</span> <span class="na">buttons</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">text</span><span class="p">:</span> <span class="dl">"</span><span class="s2">View in Discord</span><span class="dl">"</span><span class="p">,</span> <span class="na">onClick</span><span class="p">:</span> <span class="p">{</span> <span class="na">openLink</span><span class="p">:</span> <span class="p">{</span> <span class="na">url</span><span class="p">:</span> <span class="nx">messageLink</span><span class="p">,</span> <span class="p">},</span> <span class="p">},</span> <span class="p">},</span> <span class="p">],</span> <span class="p">},</span> <span class="p">},</span> <span class="p">],</span> <span class="p">},</span> <span class="p">],</span> <span class="p">},</span> <span class="p">},</span> <span class="p">],</span> <span class="p">};</span> <span class="c1">// Send it off to Google Chat</span> <span class="k">await</span> <span class="nx">axios</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span><span class="nx">env</span><span class="p">.</span><span class="nx">GOOGLE_CHAT_WEBHOOK_URL</span><span class="p">,</span> <span class="nx">payload</span><span class="p">,</span> <span class="p">{</span> <span class="na">headers</span><span class="p">:</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">Content-Type</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">application/json</span><span class="dl">"</span><span class="p">,</span> <span class="p">},</span> <span class="p">});</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Message forwarded from </span><span class="p">${</span><span class="nx">username</span><span class="p">}</span><span class="s2"> in </span><span class="p">${</span><span class="nx">channelName</span><span class="p">}</span><span class="s2"> ✅`</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Error sending to Google Chat:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">);</span> <span class="c1">// In production, you might want to add retry logic here</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>Finally, let's set up our event listeners:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Listen for new messages (this is where the magic happens)</span> <span class="nx">client</span><span class="p">.</span><span class="nf">on</span><span class="p">(</span><span class="nx">BOT_EVENTS</span><span class="p">.</span><span class="nx">MESSAGE_CREATE</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">message</span><span class="p">:</span> <span class="nx">Message</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Skip DM messages - we're only interested in server messages</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">message</span><span class="p">.</span><span class="nx">guild</span><span class="p">)</span> <span class="k">return</span><span class="p">;</span> <span class="c1">// Ignore bot messages (including our own) - prevents infinite loops</span> <span class="k">if </span><span class="p">(</span><span class="nx">message</span><span class="p">.</span><span class="nx">author</span><span class="p">.</span><span class="nx">bot</span><span class="p">)</span> <span class="k">return</span><span class="p">;</span> <span class="c1">// Only process messages from our target channel or its threads</span> <span class="kd">const</span> <span class="nx">channelId</span> <span class="o">=</span> <span class="nx">message</span><span class="p">.</span><span class="nx">channel</span><span class="p">.</span><span class="nx">id</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">parentId</span> <span class="o">=</span> <span class="nx">message</span><span class="p">.</span><span class="nx">channel</span><span class="p">.</span><span class="nf">isThread</span><span class="p">()</span> <span class="p">?</span> <span class="nx">message</span><span class="p">.</span><span class="nx">channel</span><span class="p">.</span><span class="nx">parentId</span> <span class="p">:</span> <span class="kc">null</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">channelId</span> <span class="o">!==</span> <span class="nx">env</span><span class="p">.</span><span class="nx">TARGET_CHANNEL_ID</span> <span class="o">&amp;&amp;</span> <span class="nx">parentId</span> <span class="o">!==</span> <span class="nx">env</span><span class="p">.</span><span class="nx">TARGET_CHANNEL_ID</span><span class="p">)</span> <span class="k">return</span><span class="p">;</span> <span class="c1">// Forward the message to Google Chat</span> <span class="k">await</span> <span class="nf">sendToGoogleChat</span><span class="p">(</span><span class="nx">message</span><span class="p">);</span> <span class="p">});</span> <span class="c1">// When the bot successfully connects</span> <span class="nx">client</span><span class="p">.</span><span class="nf">on</span><span class="p">(</span><span class="nx">BOT_EVENTS</span><span class="p">.</span><span class="nx">READY</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`🤖 Bot logged in as </span><span class="p">${</span><span class="nx">client</span><span class="p">.</span><span class="nx">user</span><span class="p">?.</span><span class="nx">tag</span><span class="p">}</span><span class="s2">!`</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`👀 Monitoring channel ID: </span><span class="p">${</span><span class="nx">env</span><span class="p">.</span><span class="nx">TARGET_CHANNEL_ID</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`🚀 Ready to accept messages!`</span><span class="p">);</span> <span class="p">});</span> <span class="c1">// Handle errors gracefully</span> <span class="nx">client</span><span class="p">.</span><span class="nf">on</span><span class="p">(</span><span class="nx">BOT_EVENTS</span><span class="p">.</span><span class="nx">ERROR</span><span class="p">,</span> <span class="p">(</span><span class="nx">error</span><span class="p">:</span> <span class="nb">Error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Discord client error:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">);</span> <span class="c1">// In a real app, you might want to restart the bot or alert administrators</span> <span class="p">});</span> <span class="c1">// Start the bot</span> <span class="nx">client</span><span class="p">.</span><span class="nf">login</span><span class="p">(</span><span class="nx">env</span><span class="p">.</span><span class="nx">DISCORD_TOKEN</span><span class="p">).</span><span class="k">catch</span><span class="p">((</span><span class="nx">error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Failed to login:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span><span class="p">);</span> <span class="nx">process</span><span class="p">.</span><span class="nf">exit</span><span class="p">(</span><span class="mi">1</span><span class="p">);</span> <span class="p">});</span> </code></pre> </div> <h2> Step 8: Package Scripts </h2> <p>Update your <code>package.json</code> scripts section with the following:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"scripts"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"build"</span><span class="p">:</span><span class="w"> </span><span class="s2">"tsc"</span><span class="p">,</span><span class="w"> </span><span class="nl">"start"</span><span class="p">:</span><span class="w"> </span><span class="s2">"node dist/server.js"</span><span class="p">,</span><span class="w"> </span><span class="nl">"dev"</span><span class="p">:</span><span class="w"> </span><span class="s2">"tsc &amp;&amp; node dist/server.js"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p><em>Note: These are pretty standard TypeScript stuff.</em></p> <h2> Step 9: Launch Time! 🚀 </h2> <p>Build and run your bot:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Compile TypeScript to JavaScript</span> npm run build <span class="c"># Start the bot</span> npm start </code></pre> </div> <p>If everything works, you should see your bot come online in Discord and start monitoring your channel. Send a test message and watch it appear in Google Chat like magic!</p> <h2> Taking It a Step Further </h2> <h3> Filter Messages by Keywords </h3> <p>Want to only forward important messages? Add some filtering.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Only forward messages containing "urgent" or "important"</span> <span class="kd">const</span> <span class="nx">keywords</span> <span class="o">=</span> <span class="p">[</span><span class="dl">'</span><span class="s1">urgent</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">important</span><span class="dl">'</span><span class="p">,</span> <span class="dl">'</span><span class="s1">breaking</span><span class="dl">'</span><span class="p">];</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">keywords</span><span class="p">.</span><span class="nf">some</span><span class="p">(</span><span class="nx">keyword</span> <span class="o">=&gt;</span> <span class="nx">message</span><span class="p">.</span><span class="nx">content</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">().</span><span class="nf">includes</span><span class="p">(</span><span class="nx">keyword</span><span class="p">)))</span> <span class="p">{</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h3> Monitor Multiple Channels </h3> <p>Replace single channel monitoring with multiple:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">targetChannels</span> <span class="o">=</span> <span class="nx">env</span><span class="p">.</span><span class="nx">TARGET_CHANNEL_ID</span><span class="p">.</span><span class="nf">split</span><span class="p">(</span><span class="dl">'</span><span class="s1">,</span><span class="dl">'</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">targetChannels</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="nx">channelId</span><span class="p">)</span> <span class="o">&amp;&amp;</span> <span class="o">!</span><span class="nx">targetChannels</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="nx">parentId</span><span class="p">))</span> <span class="p">{</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h2> Deploying the Bot </h2> <p>WSO2's Choreo is a developer-friendly cloud platform that makes deploying applications as easy as clicking a button. Let's walk through deploying our Discord bot as a Webhook component on Choreo.</p> <h3> Step 1: Commit Your Code to GitHub </h3> <p>You already know what to do here :)</p> <h3> Step 2: Create a Webhook Component </h3> <ol> <li>Click <strong>"Create Component"</strong> in your project.</li> <li> <strong>Select Component Type</strong>: Choose <strong>"Webhook"</strong> from the component types. You might want to click "View All Component Types" to find this.</li> <li> <strong>Connect Your Repository</strong>: <ul> <li> Select <strong>"GitHub"</strong> as your source</li> <li> Authorize Choreo to access your repositories</li> <li> Choose the repository containing your bot code</li> </ul> </li> <li>Setup the Component: <ul> <li>Set the <strong>Build Preset</strong> to <code>Node.js</code> </li> <li>Set the <strong>Language Version</strong> to 20.x.x</li> </ul> </li> <li>Click <strong>Create and Deploy</strong>.</li> </ol> <p>For more information, refer to <a href="https://wso2.com/choreo/docs/developer/develop-components/develop-a-webhook/" rel="noopener noreferrer">Develop a Webhook</a> documentation on Choreo.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fexvi1telt0dqeit3fk8s.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fexvi1telt0dqeit3fk8s.png" alt="Creating a Choreo Webhook Component" width="800" height="401"></a></p> <h3> Step 3: Configure Environment Variables </h3> <p>This is where we safely store our Discord token and webhook URL:</p> <ol> <li> In your component, go to the <strong>"DevOps"</strong> tab from the left menu.</li> <li> Click on <strong>"Configs &amp; Secrets"</strong> in the left sidebar.</li> <li>Click <strong>+ Create</strong>.</li> <li>Set the type of the Configuration as "Environment Variables" and mark it as a secret.</li> <li>Give the configuration a Display Name: Mine is <strong>ping-kong-configs</strong>.</li> <li>Add your environment variables one by one. After adding each, click <strong>Add</strong>.</li> <li>Click <strong>Create</strong> to create the configutation group and save it.</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fg8qqyvzpeh78s80cxvza.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fg8qqyvzpeh78s80cxvza.png" alt="Creating a Choreo Configuration Group" width="800" height="401"></a></p> <p>For more information, refer to <a href="https://wso2.com/choreo/docs/developer/devops-and-ci-cd/manage-configurations-and-secrets/#add-an-environment-variable-to-your-container" rel="noopener noreferrer">Manage Configurations and Secrets</a> documentation on Choreo.</p> <h2> Some Basic Troubleshooting Steps If Things Go Wrong </h2> <p><strong>Bot shows offline?</strong></p> <ul> <li>Double-check your Discord token</li> <li>Verify the bot has proper server permissions</li> </ul> <p><strong>No messages forwarding?</strong></p> <ul> <li>Confirm your TARGET_CHANNEL_ID is correct</li> <li>Make sure "Message Content Intent" is enabled</li> <li>Check that the bot can read the target channel</li> </ul> <p><strong>Google Chat webhook failing?</strong></p> <ul> <li>Verify your webhook URL is still valid</li> <li>Check if the webhook was removed from the Chat space</li> </ul> <p><strong>TypeScript compilation errors?</strong></p> <ul> <li>Run <code>npm run build</code> to see detailed error messages</li> <li>Make sure all dependencies are installed</li> </ul> <h2> Wrapping Up </h2> <p>Congratulations! You've just built a communication bridge that would make you a hero at work. Your team can now stay connected across platforms without missing important messages.</p> <p>This project demonstrates the power of APIs and webhooks for platform integration. With this foundation, you could do more cool stuff like:</p> <ul> <li>Add bidirectional messaging</li> <li>Support more message types (images, reactions, etc.)</li> <li>Create bridges to other platforms like Slack or Microsoft Teams</li> <li>Add message threading and advanced formatting</li> </ul> <p>The best part? Your team will think you're some kind of integration wizard, when really you just know how to make different APIs play nicely together.</p> <p>Now go forth and bridge those communication gaps! And remember: with great power comes great responsibility to not spam your teammates with bot messages. 😉</p> <p><em>P.S. - If this helped you become the office hero, consider buying me a coffee or simply add a reaction. If it broke everything... well, that's what version control is for!</em></p> <p><a href="https://www.buymeacoffee.com/suvink" rel="noopener noreferrer"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fcdn.buymeacoffee.com%2Fbuttons%2Fv2%2Fdefault-yellow.png" alt="Buy Me A Coffee" width="545" height="153"></a></p> Suvin Nimnaka Tue, 18 Mar 2025 17:07:18 +0000 https://dev.to/suvink/redis-headless-service-vs-cluster-ip-service-which-one-should-you-use-2hio https://dev.to/suvink/redis-headless-service-vs-cluster-ip-service-which-one-should-you-use-2hio <p>If you’ve ever tried to set up a Redis cluster in Kubernetes, you’ve probably stumbled upon two types of services: the <strong>ClusterIP service</strong> and the <strong>Headless service</strong>. At first glance, they might seem like two sides of the same coin, but trust me, they’re not.</p> <h3> What’s a Redis Cluster? </h3> <p>Before we get into the services, let’s quickly recap what a Redis cluster is. Redis cluster is a distributed version of Redis that allows you to shard your data across multiple nodes automatically. It’s like having a team of Redis instances working together, each handling a portion of the data. This setup gives you high availability, fault tolerance, and the ability to scale horizontally. For more info on the Redis cluster, see <a href="https://redis.io/docs/latest/operate/oss_and_stack/management/scaling/" rel="noopener noreferrer">Redis documentation</a>.</p> <p>In my local K8s cluster, I’ve deployed a <a href="https://bitnami.com/stacks/redis-cluster" rel="noopener noreferrer">Bitnami Redis cluster</a>. When I do a <code>kubectl get pods -n redis</code>, it shows me 6 pods because I have configured the cluster to have 3 master nodes and one slave node each.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fhto10lmcsb1kxeqla27l.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fhto10lmcsb1kxeqla27l.png" alt="Local Cluster Pods" width="800" height="207"></a></p> <p>Now, let's check what are the services created for the Redis cluster with <code>kubectl get svc -n redis</code>:</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2n5j5fxwuidhqh3bki61.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2n5j5fxwuidhqh3bki61.png" alt="Local Cluster Services" width="800" height="75"></a></p> <p>It lists three services: <code>redis-cluster</code> (also known as the Cluster IP service), <code>redis-cluster-headless</code>, and <code>redis-cluster-metrics</code>. As the name suggests, the metrics service is used to expose Redis cluster metrics for monitoring.</p> <p>In this blog, we’ll focus on the headless service and the cluster IP service.</p> <h3> The Cluster IP Service </h3> <p>The cluster IP service, or in my example, the <code>redis-cluster</code> service is a standard Kubernetes service that provides a single, stable IP address for accessing a set of pods. It load-balances traffic across the pods, making it easy to use for basic operations. When a client connects to this service, Kubernetes load-balances requests across the Redis nodes making it a straightforward method for simple use cases.</p> <p>While the cluster IP service is easy to use, it has some limitations when it comes to a Redis cluster.</p> <p>Redis cluster uses <code>MOVED</code> and <code>ASK</code> redirections to make sure the commands are routed to the correct node. In a cluster setup, each node is responsible for a specific range of hash slots. The hash slot for a given key is determined using the CRC16 algorithm, with the total number of hash slots being fixed.</p> <p>For example, in my Bitnami Redis cluster, let's assume that the master nodes handle the following ranges:</p> <ul> <li>Node 1: 0–5460</li> <li>Node 2: 5461–10922</li> <li>Node 3: 10923–16383</li> </ul> <p>If a key falls into hash slot 1234, it belongs to Node 1. However, when a client sends a command to store this key, it cannot directly connect to Node 1. The cluster IP service load balances the request and forwards it to a random pod. If the selected pod doesn’t serve the required hash slot, it responds with <code>MOVED</code> or <code>ASK</code>, instructing the client to reach the correct node.</p> <p>When the client retries to connect to the correct node, it again connects via the cluster IP service, but since the service is load-balanced, the request is sent to another random pod. This cycle continues, preventing a direct connection to the intended node.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fres.cloudinary.com%2Fdgebfmk1g%2Fimage%2Fupload%2Fv1742318007%2Fredis-cluster_udgb4e.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fres.cloudinary.com%2Fdgebfmk1g%2Fimage%2Fupload%2Fv1742318007%2Fredis-cluster_udgb4e.png" alt="Illustration of Cluster IP Service Retries" width="800" height="332"></a><br> <em>Click <a href="https://res.cloudinary.com/dgebfmk1g/image/upload/v1742318007/redis-cluster_udgb4e.png" rel="noopener noreferrer">here</a> for the full quality image.</em></p> <h3> The Headless Service </h3> <p>Unlike the cluster IP service, the headless service is designed to expose the individual IPs of your Redis pods, allowing clients to connect directly to the Redis nodes as needed.</p> <p>If you look at the earlier image showing the list of services, you’ll notice that the headless service doesn’t have an assigned IP. Instead, when a client queries its DNS name (e.g.: <code>redis-headless.namespace.svc.cluster.local</code>), it gets back the IP addresses of all Redis pods in the cluster. The client can then connect to one of these nodes and use the <code>CLUSTER NODES</code> or <code>CLUSTER SLOTS</code> command to retrieve the full cluster topology. This provides key details like node roles (master or slave) and hash slot assignments, allowing the client to map out the cluster.</p> <p>With this information, when a client needs to store a key, it can determine which node is responsible for that key and connect directly using the headless service—ensuring efficient and accurate routing of requests.</p> <h3> Which service should I use? </h3> <p>If you’ve tried setting up a service that connects to a Redis cluster using a Redis client, you might have run into connection issues when using the cluster IP service. That’s because most Redis clients (if not all) are designed to understand the cluster topology and send commands directly to the right node, avoiding redirections.</p> <p>So, if you’re connecting to a Redis cluster from a client, you need to use the headless service.</p> <p>However, if you’re just running simple operations and performance isn’t a concern—like testing the Redis cluster from the CLI—the cluster IP service will work just fine.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7md6bo0podckl6avxgmz.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7md6bo0podckl6avxgmz.png" alt="That's all folks" width="800" height="800"></a></p> <p>That’s it for this post! If you have any questions, drop them in the comments. Thanks for reading!</p> redis rediscluster database kubernetes Suvin Nimnaka Wed, 27 Dec 2023 19:16:17 +0000 https://dev.to/suvink/coding-authentication-stop-now-and-let-choreo-manage-it-4ofa https://dev.to/suvink/coding-authentication-stop-now-and-let-choreo-manage-it-4ofa <p>As a developer, you might have come across situations where you want to add authentication to a web app but it takes so much time/effort to do so writing all the code and managing protocols that you kind of wished there was an easy way. Well, Choreo's Managed Authentication lets you add authentication to your web app with a few clicks and a few lines of code easily. </p> <p>Let's see how.</p> <p><em>Note: Choreo's managed authentication is currently available only for React, Angular, and Vue.js web applications.</em></p> <h3> Prerequisites </h3> <ul> <li>A React app </li> <li>A GitHub Account</li> <li>A Choreo Account (<a href="https://console.choreo.dev/signup" rel="noopener noreferrer">Create an account here</a>. It's FREE)</li> <li>Basic understanding of React JS</li> </ul> <h3> Step 1: The Code </h3> <p>Once you enable Managed Authentication (which we will be doing in step 2), you need to redirect your application users to the respective login and logout paths for them to authenticate. </p> <h4> Configure Login </h4> <p>To implement the login functionality, all you have to do is, redirect the user to the <code>/auth/login</code> path. Once redirected, Choreo will show a login form and users can use their credentials to log in. </p> <p>Let's implement this in a sample app.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">React</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">react</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">Link</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">react-router-dom</span><span class="dl">"</span><span class="p">;</span> <span class="kd">function</span> <span class="nf">App</span><span class="p">()</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">App</span><span class="dl">"</span><span class="o">&gt;</span> <span class="p">{</span><span class="cm">/* Vanilla JS */</span><span class="p">}</span> <span class="o">&lt;</span><span class="nx">button</span> <span class="nx">onClick</span><span class="o">=</span><span class="p">{()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nb">window</span><span class="p">.</span><span class="nx">location</span><span class="p">.</span><span class="nx">href</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">/auth/login</span><span class="dl">"</span> <span class="p">}}</span><span class="o">&gt;</span><span class="nx">Login</span><span class="o">&lt;</span><span class="sr">/button</span><span class="err">&gt; </span> <span class="p">{</span><span class="cm">/* React Router v6 */</span><span class="p">}</span> <span class="o">&lt;</span><span class="nx">Link</span> <span class="nx">to</span><span class="o">=</span><span class="dl">"</span><span class="s2">/auth/login</span><span class="dl">"</span><span class="o">&gt;</span><span class="nx">Login</span><span class="o">&lt;</span><span class="sr">/Link</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">}</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">App</span><span class="p">;</span> </code></pre> </div> <p><em>If you are using React Router to handle navigation, you can use the respective navigation components offered by the React Router DOM. For this tutorial, we will be using vanilla JS.</em></p> <h4> Read user information </h4> <p>Once the user is logged in, you may need to access information like the user's name, email, etc. Choreo sends this information encoded in a cookie (named <code>userinfo</code>) upon successful login. We can extract the information using a cookie parsing library. For this example, we will be using <a href="https://www.npmjs.com/package/js-cookie" rel="noopener noreferrer"><code>js-cookie</code></a> library.</p> <p>You can execute <code>npm i js-cookie</code> command from your terminal to install the library.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">React</span><span class="p">,</span> <span class="p">{</span> <span class="nx">useState</span><span class="p">,</span> <span class="nx">useEffect</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">react</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">Cookies</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">js-cookie</span><span class="dl">'</span><span class="p">;</span> <span class="kd">function</span> <span class="nf">App</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">encodedUserInfo</span> <span class="o">=</span> <span class="nx">Cookies</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">userInfo</span><span class="p">,</span> <span class="nx">setUserInfo</span><span class="p">]</span> <span class="o">=</span> <span class="nx">React</span><span class="p">.</span><span class="nf">useState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="nf">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">encodedUserInfo</span><span class="p">)</span> <span class="k">return</span><span class="p">;</span> <span class="c1">// Read the cookie and set it to the state.</span> <span class="kd">const</span> <span class="nx">userInfo</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nf">atob</span><span class="p">(</span><span class="nx">encodedUserInfo</span><span class="p">))</span> <span class="k">if </span><span class="p">(</span><span class="nx">userInfo</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">info</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">userInfo</span><span class="p">);</span> <span class="nx">localStorage</span><span class="p">.</span><span class="nf">setItem</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">,</span> <span class="nx">info</span><span class="p">);</span> <span class="nf">setUserInfo</span><span class="p">(</span><span class="nx">info</span><span class="p">);</span> <span class="nx">Cookies</span><span class="p">.</span><span class="nf">remove</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">path</span><span class="p">:</span> <span class="dl">'</span><span class="s1">/</span><span class="dl">'</span> <span class="p">})</span> <span class="p">}</span> <span class="p">},</span> <span class="p">[</span><span class="nx">encodedUserInfo</span><span class="p">]);</span> <span class="k">return </span><span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">App</span><span class="dl">"</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">button</span> <span class="nx">onClick</span><span class="o">=</span><span class="p">{()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nb">window</span><span class="p">.</span><span class="nx">location</span><span class="p">.</span><span class="nx">href</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">/auth/login</span><span class="dl">"</span> <span class="p">}}</span><span class="o">&gt;</span><span class="nx">Login</span><span class="o">&lt;</span><span class="sr">/button</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">}</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">App</span><span class="p">;</span> </code></pre> </div> <p>In this example code, first, we use the <code>js-cookie</code> library to read the <code>userinfo</code> cookie and then we set the information to the local state as well as to the local storage for persistence. After that, we clear the cookie (or biscuit if you're British). </p> <p>Now, at this point, we can modify our code a bit to show the user's username if authenticated and if not, we'll show the login button.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">React</span><span class="p">,</span> <span class="p">{</span> <span class="nx">useState</span><span class="p">,</span> <span class="nx">useEffect</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">react</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">Cookies</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">js-cookie</span><span class="dl">'</span><span class="p">;</span> <span class="kd">function</span> <span class="nf">App</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">encodedUserInfo</span> <span class="o">=</span> <span class="nx">Cookies</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">userInfo</span><span class="p">,</span> <span class="nx">setUserInfo</span><span class="p">]</span> <span class="o">=</span> <span class="nx">React</span><span class="p">.</span><span class="nf">useState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="nf">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">encodedUserInfo</span><span class="p">)</span> <span class="k">return</span><span class="p">;</span> <span class="c1">// Read the cookie and set it to the state.</span> <span class="kd">const</span> <span class="nx">userInfo</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nf">atob</span><span class="p">(</span><span class="nx">encodedUserInfo</span><span class="p">))</span> <span class="k">if </span><span class="p">(</span><span class="nx">userInfo</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">info</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">userInfo</span><span class="p">);</span> <span class="nx">localStorage</span><span class="p">.</span><span class="nf">setItem</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">,</span> <span class="nx">info</span><span class="p">);</span> <span class="nf">setUserInfo</span><span class="p">(</span><span class="nx">info</span><span class="p">);</span> <span class="nx">Cookies</span><span class="p">.</span><span class="nf">remove</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">path</span><span class="p">:</span> <span class="dl">'</span><span class="s1">/</span><span class="dl">'</span> <span class="p">})</span> <span class="p">}</span> <span class="p">},</span> <span class="p">[</span><span class="nx">encodedUserInfo</span><span class="p">]);</span> <span class="k">return </span><span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">App</span><span class="dl">"</span><span class="o">&gt;</span> <span class="p">{</span> <span class="nx">userInfo</span> <span class="p">?</span> <span class="o">&lt;</span><span class="nx">div</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">h1</span><span class="o">&gt;</span><span class="nx">Welcome</span> <span class="p">{</span><span class="nx">userInfo</span><span class="p">.</span><span class="nx">username</span><span class="p">}</span><span class="o">&lt;</span><span class="sr">/h1</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/div&gt; </span><span class="err">: </span> <span class="o">&lt;</span><span class="nx">button</span> <span class="nx">onClick</span><span class="o">=</span><span class="p">{()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nb">window</span><span class="p">.</span><span class="nx">location</span><span class="p">.</span><span class="nx">href</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">/auth/login</span><span class="dl">"</span> <span class="p">}}</span><span class="o">&gt;</span><span class="nx">Login</span><span class="o">&lt;</span><span class="sr">/button</span><span class="err">&gt; </span> <span class="p">}</span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">}</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">App</span><span class="p">;</span> </code></pre> </div> <h4> Configure Logout </h4> <p>Similar to the login, we have to redirect the users to <code>auth/logout</code> path to log a user out. But for logout, we have to redirect the user with the session hint parameter which we can find in the <code>'session_hint</code> cookie. This cookie is also set when the user is successfully authenticated. Let's add that code to our example.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="nx">React</span><span class="p">,</span> <span class="p">{</span> <span class="nx">useState</span><span class="p">,</span> <span class="nx">useEffect</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">react</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="nx">Cookies</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">js-cookie</span><span class="dl">'</span><span class="p">;</span> <span class="kd">function</span> <span class="nf">App</span><span class="p">()</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">encodedUserInfo</span> <span class="o">=</span> <span class="nx">Cookies</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">userInfo</span><span class="p">,</span> <span class="nx">setUserInfo</span><span class="p">]</span> <span class="o">=</span> <span class="nx">React</span><span class="p">.</span><span class="nf">useState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="nf">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">encodedUserInfo</span><span class="p">)</span> <span class="k">return</span><span class="p">;</span> <span class="c1">// Read the cookie and set it to the state.</span> <span class="kd">const</span> <span class="nx">userInfo</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nf">atob</span><span class="p">(</span><span class="nx">encodedUserInfo</span><span class="p">))</span> <span class="k">if </span><span class="p">(</span><span class="nx">userInfo</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">info</span> <span class="o">=</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">(</span><span class="nx">userInfo</span><span class="p">);</span> <span class="nx">localStorage</span><span class="p">.</span><span class="nf">setItem</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">,</span> <span class="nx">info</span><span class="p">);</span> <span class="nf">setUserInfo</span><span class="p">(</span><span class="nx">info</span><span class="p">);</span> <span class="nx">Cookies</span><span class="p">.</span><span class="nf">remove</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">path</span><span class="p">:</span> <span class="dl">'</span><span class="s1">/</span><span class="dl">'</span> <span class="p">})</span> <span class="p">}</span> <span class="p">},</span> <span class="p">[</span><span class="nx">encodedUserInfo</span><span class="p">]);</span> <span class="kd">const</span> <span class="nx">handleLogout</span> <span class="o">=</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Read the cookie</span> <span class="kd">const</span> <span class="nx">sessionHint</span> <span class="o">=</span> <span class="nx">Cookies</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">'</span><span class="s1">session_hint</span><span class="dl">'</span><span class="p">);</span> <span class="c1">// Clear session data</span> <span class="nx">Cookies</span><span class="p">.</span><span class="nf">remove</span><span class="p">(</span><span class="dl">'</span><span class="s1">userinfo</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">path</span><span class="p">:</span> <span class="dl">'</span><span class="s1">/</span><span class="dl">'</span> <span class="p">})</span> <span class="nx">localStorage</span><span class="p">.</span><span class="nf">clear</span><span class="p">();</span> <span class="c1">// Redirect the user</span> <span class="nb">window</span><span class="p">.</span><span class="nx">location</span><span class="p">.</span><span class="nx">href</span> <span class="o">=</span> <span class="s2">`/auth/logout?session_hint=</span><span class="p">${</span><span class="nx">sessionHint</span><span class="p">}</span><span class="s2">`</span><span class="p">;</span> <span class="p">}</span> <span class="k">return </span><span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">App</span><span class="dl">"</span><span class="o">&gt;</span> <span class="p">{</span> <span class="nx">userInfo</span> <span class="p">?</span> <span class="o">&lt;</span><span class="nx">div</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">h1</span><span class="o">&gt;</span><span class="nx">Welcome</span> <span class="p">{</span><span class="nx">userInfo</span><span class="p">.</span><span class="nx">username</span><span class="p">}</span><span class="o">&lt;</span><span class="sr">/h1</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="nx">button</span> <span class="nx">onClick</span><span class="o">=</span><span class="p">{</span><span class="nx">handleLogout</span><span class="p">}</span><span class="o">&gt;</span><span class="nx">Log</span> <span class="nx">Out</span><span class="o">&lt;</span><span class="sr">/button</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/div&gt; </span><span class="err">: </span> <span class="o">&lt;</span><span class="nx">button</span> <span class="nx">onClick</span><span class="o">=</span><span class="p">{()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nb">window</span><span class="p">.</span><span class="nx">location</span><span class="p">.</span><span class="nx">href</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">/auth/login</span><span class="dl">"</span> <span class="p">}}</span> <span class="o">&gt;</span> <span class="nx">Login</span> <span class="o">&lt;</span><span class="sr">/button</span><span class="err">&gt; </span> <span class="p">}</span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">}</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">App</span><span class="p">;</span> </code></pre> </div> <p>To explain the <code>handleLogout</code> function, first, we read the <code>session_hint</code> cookie. Then we clear the user information we persisted in the browser for better security. Lastly, we direct the user to the <code>auth/logout</code> path with the session hint as a query parameter. </p> <p>🎉 Congratulations. Now you have an app with authentication enabled. Still, there's one more step to be done. </p> <h3> Step 2: Host the code on Choreo. </h3> <p>To complete this step, you need to have you source code committed to a GitHub (public) repository and you need to log into your Choreo Console. </p> <h4> Create a WebApp Component </h4> <p>Once you are logged in to the Choreo Console, select the Web Application component and create a new web app.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F52mqsof3h9e9dw4zypqq.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F52mqsof3h9e9dw4zypqq.png" alt="Choose the WebApplication Component from the Choreo Console"></a></p> <p>Enter a name for the component and connect your GitHub repository to the component. From the buildpack section, choose "React" buildpack as we are creating a React Web App.</p> <p>In the build configurations, input your build command (default: <code>npm run build</code>), build path (default: <code>/build</code>) and Node.js version. Finally, click on Create button.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9hzhuj4dexv1jkff9m1e.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F9hzhuj4dexv1jkff9m1e.png" alt="Web app creation settings"></a></p> <h4> Build the web application </h4> <p>After the component creation, navigate to the "Build" area of the Choreo Console.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fg2j1d8ders0bgutui44i.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fg2j1d8ders0bgutui44i.png" alt="Use the left navigation bar to access the Build area"></a></p> <p>Click on Build, Choose the latest commit of your GitHub repository and build it. It will take some time for the application to be built so in the meantime, feel free to explore the Choreo Console and see what it can do for you!</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F6fjdw2q46spl6d9n6upj.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F6fjdw2q46spl6d9n6upj.png" alt="Follow these steps to build the app"></a></p> <h4> Deploy the web application </h4> <p>Once the web app is built, navigate to the Deploy area from the left navigation menu.</p> <p>From the "Set up" area, click on "Configure &amp; Deploy" button to deploy the web application. </p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Files76t7n9v5pabi8nei.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Files76t7n9v5pabi8nei.png" alt="Deploy the web app"></a></p> <p>From the right drawer, just click next because we are not mounting any configurations for this web app and then you will see the Authentication step. You can already see that "Managed Authentication with Choreo" is enabled. </p> <p>In this menu, we have to configure the Post Login Path, Post Logout Path and the Error Path.</p> <ul> <li><p><strong>Post Login Path</strong> - The relative path that the application will be redirected to on successful sign-in. In our example, we used the same page to display the user's info as well as to handle login/logout. So we will use <code>/</code> as the Post Login Path.</p></li> <li><p><strong>Post Logout Path</strong> - The relative path to which Choreo redirects you on successful sign-out. For the same reason as above, we will use <code>/</code> for this.</p></li> <li><p><strong>Error Path</strong> - The relative path to which Choreo redirects you when an error occurs during a redirection. By default, Choreo has a built-in error page to display errors. So we can leave this blank and let Choreo take care of that. </p></li> </ul> <h4> Configure Users </h4> <p>To test the authentication settings we implemented, we can quickly add a demo user in the same "Authentication Settings" step. Click on the Create button and you can create a demo user with a strong password. </p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2z9alad8s0ubhwmsrlx7.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2z9alad8s0ubhwmsrlx7.png" alt="Create the demo user"></a></p> <p>After creating the demo user, click on the "Deploy" button to deploy the app. Again, it will take a moment for the app to get deployed. Once deployed, you can click on the Web App URL on the Development Environment card and explore the app we created. </p> <h3> Step 3: Try out a flow </h3> <p>Click on the login button on the application. It will redirect you to the <code>/auth/login</code> path and you can see Choreo's default login page.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fism97ef908ay99es67di.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fism97ef908ay99es67di.png" alt="Choreo's default login page"></a></p> <p>Add your demo user's credentials and click on "Sign In". After successful sign in, you will see "Welcome demouser" message and the logout button on the screen. </p> <h3> Add more users </h3> <p>When your app goes to production, you need to add more users than the demo user we created. To do that, go to the Choreo Console, navigate to Organization Settings &gt; Application Security &gt; Identity Providers and Click the "Manage" button on the "Choreo built-in Identity Provider". From there, you can download the CSV template for the users, fill it and upload it to the console.</p> <p>That's it folks!</p> <h3> Conclusion </h3> <p>In this tutorial, we implemented authentication functionality to a React JS web application using Choreo Managed Authentication. If you want to quickly start and experiment this feature, feel free to fork <a href="https://github.com/Suvink/choreo-managed-auth-example" rel="noopener noreferrer">this repository</a> and deploy it on the Choreo Console. </p> <p>Choreo Managed Authentication can be used for more advanced scenarios and it has more features that we can user in an enterprise environment. We will discuss them in the next article. </p> <p>Until then, Happy Coding!</p> webdev authentication wso2 react Suvin Nimnaka Thu, 16 Nov 2023 16:32:52 +0000 https://dev.to/suvink/understanding-istio-a-beginners-guide-to-service-mesh-48k5 https://dev.to/suvink/understanding-istio-a-beginners-guide-to-service-mesh-48k5 <p>In the ever-changing world of modern software engineering, creating and managing applications with many moving parts can feel a bit like conducting a symphony. Imagine you're Hans Zimmer and your application is a musical masterpiece of the Pirates of the Caribbean, with each instrument representing a different microservice playing in harmony. Now, keeping this symphony in tune and ensuring every note is played just right becomes a complex challenge.</p> <p>This is where Istio steps onto the stage. Istio is like the conductor for your microservices orchestra, making sure each component plays its part seamlessly. In simpler terms, Istio is a powerful tool designed to simplify the management of applications made up of many smaller, interconnected pieces.</p> <p>Let's break it down in technical terms. Imagine that you have a web application with various services like user authentication, database access, and front-end rendering. As your user base grows, so does the complexity of managing these services. Istio comes to the rescue by providing a set of tools that help you manage traffic, enhance security, and gain insights into what's happening behind the scenes.</p> <p>But what's a service mesh and what does Istio have to do with it?</p> <p>In simple terms, the service mesh is our Hans Zimmer. Just like Zimmer instructs his instrument players to play a symphony, the service mesh takes care of managing and optimizing the communication pathways between services. Istio offers tools and features to implement and manage this service mesh, ensuring that your software's performance is orchestrated smoothly and securely. (It's open source!)</p> <h3> How Istio works: </h3> <p>The Istio architecture can be explained in two main sections:</p> <ol> <li>The Data Plane</li> <li>The Control Plane</li> </ol> <h3> Istio Data Plane </h3> <p>The Data Plane is the operational heart of Istio, and it consists of a network of sidecar proxies, typically Envoy proxies, that are injected alongside each of your services. These sidecar proxies act as messengers, carrying out the instructions from the conductor (Control Plane) to ensure seamless communication between services.</p> <p>If we go back to our Hans Zimmer example, each of the players in Zimmer's orchestra has a dedicated trainer. This trainer runs around whispering instructions and ensuring the player's performance aligns with the overall symphony. Similarly, the envoy proxies act as the trainers for the services, managing traffic, enforcing policies, and providing vital information about what's happening within each service.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F07t598anfbf7gmbqgrk1.jpg" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F07t598anfbf7gmbqgrk1.jpg" alt="Istio DP"></a></p> Image Credits: <a href="https://istio.io/" rel="noopener noreferrer">Istio</a> <h3> Istio Control Plane </h3> <p>The Control Plane in Istio serves as the command center, overseeing the entire operation of your service mesh. It consists of three principal components, each playing a distinct role in ensuring your software's performance is orchestrated with precision.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fskv47737vqxd8gwqzgbp.jpg" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fskv47737vqxd8gwqzgbp.jpg" alt="Istio DP"></a></p> Image Credits: <a href="https://istio.io/" rel="noopener noreferrer">Istio</a> <p><strong>1. The Galley</strong></p> <p>The galley component is Istio's configuration management, distribution and processing component. In a Hanz Zimmer show, there is a master choreographer backstage who is responsible for all the amazing dances on the stage. They may not show themselves on the stage, but they make sure that every dancer is ready and follows the script. Similarly, the galley receives the configuration file from the developer with instructions on how to configure the service mesh and hands it over to the next component; the Pilot. </p> <p><strong>2. The Pilot</strong></p> <p>Istio Pilot is a critical component within the Istio service mesh architecture, serving as the navigation system that guides the various services through the ocean of microservices. The pilot receives the configuration from the Galley and then converts it to Envoy configurations and will distribute it to each of the Envoy proxies in the network. This is just like Zimmer ensures each musician in his orchestra knows when to play and how loud to be. </p> <p><strong>3. The Citadel</strong></p> <p>Citadel plays a crucial role in Istio's security features, providing a robust infrastructure for securing communication within the service mesh. It provides each of these services with strong identities and generates certificates so that services can trust each other and communicate confidentially via mutual TLS (mTLS). In a Zimmer concert, this is something like the backstage pass that all the players get. The pass ensures that only authorized performers can access the backstage areas.</p> <p>To put all these things together, it can be illustrated like this.</p> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7dxrheb04gao7box4nd9.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7dxrheb04gao7box4nd9.png" alt="Istio DP"></a></p> Image Credits: <a href="https://istio.io/" rel="noopener noreferrer">Istio</a> <p>or something like <a href="https://www.youtube.com/watch?v=KvdiMj8ei7Q" rel="noopener noreferrer">this</a> :p </p> <h3> Why Istio? </h3> <p>Istio ensures that organizations deliver decentralized applications at scale by simplifying network operations such as inter-service traffic management, encryption, authorization, troubleshooting, auditing, etc. </p> <p>According to <a href="https://www.solo.io/" rel="noopener noreferrer">solo.io</a>, Istio provides the following capabilities beyond what plain Kubernetes provides:</p> <p>Quoting from <a href="https://www.solo.io/" rel="noopener noreferrer">solo.io</a>,</p> <blockquote> 1. <b>Cloud native application security</b> — you can focus on application-level security with strong identity-driven authorization, authentication, and encryption. <br> <br> 2. <b>Efficient traffic management</b>— achieve granular control over traffic and network behavior using rich routing rules, failover, retries, and error injection. In post-production testing, the Chaos Monkey integration allows SREs to inject faults and delays to improve resilience. <br> <br> 3. <b>Service mesh monitoring</b> — Itsio provides service-level visibility so you can track, monitor, and troubleshoot issues. Without fine-grained details, bottlenecks take a long time to resolve. A service mesh makes it easy to disable failed services and replicas and maintain API responsiveness. <br> <br> 4. <b>Easy deployment with Kubernetes</b> — Istio offers network controls and visibility for modern and traditional workloads, including virtual machines and containers. <br> <br> 5. <b>Simplified load balancing</b> — advanced features can automate load balancing, provide client-based routing, and support canary deployments. <br> <br> 6. <b>Policy enforcement</b> —a configuration API and policy layer help enforce policies with access control, quotas, and rate limits. </blockquote> <p>That's about it folks! Hope y'all had a brief idea about what service mesh is and how Istio works. If you're wondering why Hans Zimmer was the highlight of this blog, please spare some time to watch <a href="https://www.youtube.com/watch?v=8nfhHBJQXOY" rel="noopener noreferrer">Bastille, Hans Zimmer - Pompeii MMXXIII</a>! It is amazing. </p> <p>If you have any questions or clarifications or have some extra points to add to this article, please drop them in the comments. I'm happy to read them and get back to you.<br> Happy coding!</p> <h3> Further Reading </h3> <p><a href="https://www.youtube.com/watch?v=6zDrLvpfCK4" rel="noopener noreferrer">IBM Technology - Istio Service Mesh Explained</a><br> <a href="https://www.solo.io/topics/istio/istio-kubernetes" rel="noopener noreferrer">Solo.io - Why You Need Istio in K8s and a Quick Tutorial</a><br> <a href="https://www.solo.io/topics/istio/istio-architecture/" rel="noopener noreferrer">Solo.io - Istio architecture</a><br> <a href="https://istio.io/latest/docs/ops/deployment/architecture/" rel="noopener noreferrer">Istio - Architecture </a></p> <p>Cover Image Credits: <a href="https://boxboat.com" rel="noopener noreferrer">BoxBoat</a></p> istio kubernetes cloudnative servicemesh Suvin Nimnaka Sat, 30 Apr 2022 03:15:41 +0000 https://dev.to/suvink/oidc-authentication-for-express-apps-with-asgardeo-5gbe https://dev.to/suvink/oidc-authentication-for-express-apps-with-asgardeo-5gbe <p>In my <a href="https://dev.to/suvink/add-authentication-to-your-express-app-with-asgardeo-13bh">previous article</a>, I discussed how we can use <a href="https://www.npmjs.com/package/@asgardeo/auth-node" rel="noopener noreferrer">Asgardeo Node SDK</a> to add authentication to your Express app. As I mentioned before, the process of using the Node SDK in an Express app is not straightforward because the Node SDK is a generic SDK which is compatible across any Node JS platform. In this article, I will show you how you can use the Asgardeo Express SDK to add authentication to your Express app easily. </p> <p>TLDR;<br> Try the official sample app <a href="https://github.com/asgardeo/asgardeo-auth-express-sdk/samples" rel="noopener noreferrer">here</a>. </p> <p><strong>Prerequisites</strong> </p> <ul> <li>An Asgardeo organization. (You can create an organization upon registration at <a href="https://asgardeo.io/signup" rel="noopener noreferrer">https://asgardeo.io/signup</a>).</li> <li>A Standard Based Application - Once you create an organization in the Asgardeo Console, you can create a Standard Based Application from the dashboard. (<a href="https://wso2.com/asgardeo/docs/guides/applications/register-standard-based-app/" rel="noopener noreferrer">More info</a>) </li> </ul> <p><strong>Projet Initialization</strong><br> Create a new directory (a folder) and open the directory using your code editor. Open a terminal and type <code>yarn init --y</code> and it will initialize a new project and create a <code>package.json</code> file. </p> <p>The next step is to install the dependancies.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>yarn add @asgardeo/auth-express cookie-parser express </code></pre> </div> <p>Then add Nodemon as a dev dependancy to hot reload your changes.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>yarn add -D nodemon </code></pre> </div> <p>Once you install Nodemon, modify the <code>package.json</code> and add <code>"serve": "nodemon server.js"</code> in the <strong>scripts</strong> section so we can use Nodemon to run the server. </p> <p><strong>Create an Express app</strong><br> Create a new file and name it as <code>server.js</code>.<br> Then create a simple express server inside your <code>server.js</code> file. You can use the code below.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">express</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">'</span><span class="s1">express</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">cookieParser</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">'</span><span class="s1">cookie-parser</span><span class="dl">'</span><span class="p">);</span> <span class="c1">//Define the Port</span> <span class="kd">const</span> <span class="nx">PORT</span> <span class="o">=</span> <span class="mi">5000</span><span class="p">;</span> <span class="c1">//Initialize Express App</span> <span class="kd">const</span> <span class="nx">app</span> <span class="o">=</span> <span class="nf">express</span><span class="p">();</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nf">cookieParser</span><span class="p">());</span> <span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/</span><span class="dl">"</span><span class="p">,</span> <span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="dl">"</span><span class="s2">Hello World</span><span class="dl">"</span><span class="p">);</span> <span class="p">});</span> <span class="c1">//Start the app and listen on the PORT</span> <span class="nx">app</span><span class="p">.</span><span class="nf">listen</span><span class="p">(</span><span class="nx">PORT</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Server Started at PORT </span><span class="p">${</span> <span class="nx">PORT</span> <span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="p">});</span> </code></pre> </div> <p>After creating the server, run it using,<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>yarn run serve </code></pre> </div> <p>Now if you navigate to <code>http://localhost:5000</code>, you should see a "Hello World" response from the server.</p> <p><strong>Add configuration for Asgardeo Authentication</strong><br> Create a new file in the directory and name it as <code>config.js</code>. Inside this file, you need to specify the configuration for the Asgardeo Auth.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">config</span> <span class="o">=</span> <span class="p">{</span> <span class="na">clientID</span><span class="p">:</span> <span class="dl">"</span><span class="s2">YOUR_CLIENT_ID</span><span class="dl">"</span><span class="p">,</span> <span class="na">clientSecret</span><span class="p">:</span> <span class="dl">"</span><span class="s2">YOUR_CLIENT_SECRET</span><span class="dl">"</span><span class="p">,</span> <span class="na">baseUrl</span><span class="p">:</span> <span class="dl">"</span><span class="s2">YOUR_BASE_URL</span><span class="dl">"</span><span class="p">,</span> <span class="na">appURL</span><span class="p">:</span> <span class="dl">"</span><span class="s2">http://localhost:5000</span><span class="dl">"</span><span class="p">,</span> <span class="na">scope</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">openid</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">profile</span><span class="dl">"</span><span class="p">]</span> <span class="p">};</span> <span class="nx">module</span><span class="p">.</span><span class="nx">exports</span> <span class="o">=</span> <span class="nx">config</span><span class="p">;</span> </code></pre> </div> <p>Replace the <code>clientID</code>, <code>clientSecret</code> and <code>baseUrl</code> from the values you get from <a href="https://console.asgardeo.io/" rel="noopener noreferrer">Asgardeo Console</a>. Since we run our server in <code>http://localhost:5000</code>, we have to add it as the appURL. </p> <p><strong>Note:</strong><br> Make sure you add <code>localhost:5000</code> as an allowed origin and add <code>localhost:5000/login</code> as an authorized redirect URL in the console. We will discuss why should we authorize <code>localhost:5000/login</code> endpoint specifically later on. </p> <p><strong>Use the AsgardeoAuth middleware</strong><br> Open the <code>server.js</code> file and import the middleware from the SDK.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="p">{</span> <span class="nx">AsgardeoExpressClient</span> <span class="p">}</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">"</span><span class="s2">@asgardeo/auth-express</span><span class="dl">"</span><span class="p">);</span> </code></pre> </div> <p>Then instantiate the Asgardeo Express client with the config we created earlier.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">AsgardeoExpressClient</span><span class="p">.</span><span class="nf">getInstance</span><span class="p">(</span><span class="nx">config</span><span class="p">);</span> </code></pre> </div> <p>Now you have to define three callback functions which are needed to initiate the middleware.</p> <ol> <li> <code>onSignIn</code> - Handle a successful user sign in.</li> <li> <code>onSignOut</code> - Handle a successful user sign out.</li> <li> <code>onError</code> - Handle errors that might occur in the authentication process. </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">onSignIn</span> <span class="o">=</span> <span class="p">(</span><span class="nx">res</span><span class="p">,</span> <span class="nx">response</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">response</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">200</span><span class="p">).</span><span class="nf">send</span><span class="p">(</span><span class="nx">response</span><span class="p">);</span> <span class="p">}</span><span class="k">else</span><span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">500</span><span class="p">).</span><span class="nf">send</span><span class="p">(</span><span class="dl">"</span><span class="s2">Something went wrong</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">onSignOut</span> <span class="o">=</span> <span class="p">(</span><span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">200</span><span class="p">).</span><span class="nf">send</span><span class="p">(</span><span class="dl">"</span><span class="s2">Sign out successful</span><span class="dl">"</span><span class="p">);</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">onError</span> <span class="o">=</span> <span class="p">(</span><span class="nx">res</span><span class="p">,</span> <span class="nx">error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if</span><span class="p">(</span><span class="nx">error</span><span class="p">){</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">).</span><span class="nf">send</span><span class="p">(</span><span class="nx">error</span><span class="p">);</span> <span class="p">}</span><span class="k">else</span><span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">500</span><span class="p">).</span><span class="nf">send</span><span class="p">(</span><span class="dl">"</span><span class="s2">Something went wrong</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="p">};</span> </code></pre> </div> <p>After defining the callback functions, use the middleware with the Express app we created.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span> <span class="nx">AsgardeoExpressClient</span><span class="p">.</span><span class="nf">asgardeoExpressAuth</span><span class="p">(</span><span class="nx">onSignIn</span><span class="p">,</span> <span class="nx">onSignOut</span><span class="p">,</span> <span class="nx">onError</span><span class="p">)</span> <span class="p">);</span> </code></pre> </div> <p>That is all you have to do with the Express SDK to implement authentication. At this point, you can just navigate to <code>http://localhost:5000/login</code> and authenticate yourself. That brings me to explain why we added <code>localhost:5000/login</code> as an authorized redirect URL. The SDK itself is pre-configured to set the login endpoint to <code>/login</code> and to set the logout endpoint to <code>/logout</code>. So even though you didn't have to implement the logic for those 2 endpoints, you still need to authorize the endpoints in the console in order to function properly. </p> <p>In case you don't like the pre-configured login and logout paths, you can always override the defaults in the config file. All you have to do is add another property to the config object as follows.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">config</span> <span class="o">=</span> <span class="p">{</span> <span class="p">...</span><span class="nx">config</span><span class="p">,</span> <span class="na">loginPath</span> <span class="p">:</span> <span class="dl">"</span><span class="s2">/customLogin</span><span class="dl">"</span><span class="p">,</span> <span class="na">logoutPath</span><span class="p">:</span> <span class="dl">"</span><span class="s2">/customLogout</span><span class="dl">"</span> <span class="p">}</span> </code></pre> </div> <p>Don't forget to change the authorized redirect URL in the console if you're using a custom login and logout paths.</p> <p><strong>Implementing Protected Routes</strong><br> In some use cases, you may want to protect a specific route with a login. To do this, Asgardeo Express SDK provides you with a simple middleware. All you have to do is, attach the <code>isAuthenticated</code> middleware to the route you want to protect.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/protected</span><span class="dl">"</span><span class="p">,</span> <span class="nx">isAuthenticated</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">200</span><span class="p">).</span><span class="nf">send</span><span class="p">({</span> <span class="na">message</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Hello from protected route!</span><span class="dl">"</span> <span class="p">});</span> <span class="p">});</span> </code></pre> </div> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fwfs13mapwvg3abym3yqg.jpeg" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fwfs13mapwvg3abym3yqg.jpeg" alt="Image description"></a></p> <p>The Asgardeo Express SDK has many features in addition to the basic login functions I described above. You can check them out at <a href="https://github.com/asgardeo/asgardeo-auth-express-sdk" rel="noopener noreferrer">Express SDK GitHub</a> repo. As always, feel free to reach me if you have any questions and you are welcome to <a href="https://github.com/asgardeo/asgardeo-auth-express-sdk/blob/main/pull_request_template.md" rel="noopener noreferrer">make contributions</a> to the SDK as well. Thanks for reading! </p> javascript express wso2 asgardeo Suvin Nimnaka Fri, 22 Apr 2022 04:09:13 +0000 https://dev.to/suvink/add-authentication-to-your-express-app-with-asgardeo-13bh https://dev.to/suvink/add-authentication-to-your-express-app-with-asgardeo-13bh <p>When you are writing code for a project, at some point you're gonna have to come across user logins. To perform user specific tasks, to save user data and to do various kinds of stuff, user accounts is a mandatory feature in any system. But building a fully fledged login system is not so easy: especially having the flexibility to incorporate many kinds of login options (Email and password, Social Logins, Magic Links, etc) securely takes in a lot of effort. That is where <a href="https://asgardeo.io/" rel="noopener noreferrer">Asgardeo</a> by <a href="https://wso2.com/" rel="noopener noreferrer">WSO2</a> comes into play.</p> <h4> TLDR; </h4> <p>Try the official sample app <a href="https://github.com/asgardeo/asgardeo-auth-node-sdk/tree/main/samples" rel="noopener noreferrer">here</a>.</p> <p>Asgardeo is an IDaaS (Identity as a Service) empowering developers to implement secure and frictionless access. In a broader sense, it is a cloud-based solution that offers Identity and Access Management (IAM) capabilities to your applications easily. Now let's have a look at how we can integrate Asgardeo OIDC (Open ID Connect) authentication to our Express application. For that, we will be using Asgardeo Node SDK.</p> <p><strong>Prerequisites</strong> </p> <ul> <li>An Asgardeo organization. (You can create an organization upon registration at <a href="https://asgardeo.io/signup" rel="noopener noreferrer">https://asgardeo.io/signup</a>).</li> <li>A Standard Based Application - Once you create an organization in the Asgardeo Console, you can create a Standard Based Application from the dashboard. (<a href="https://wso2.com/asgardeo/docs/guides/applications/register-standard-based-app/" rel="noopener noreferrer">More info</a>) </li> </ul> <p><strong>Projet Initialization</strong><br> Let's get started. First and foremost you're gonna have to create a new folder (or a directory) and initialize a new project. You can do that with <code>yarn init --y</code> and it will create a new <code>package.json</code> file for you. Now open your folder in your favourite code editor and we're ready to proceed.</p> <p>Now you have to install all the dependancies.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>yarn add @asgardeo/auth-node cookie-parser express uuid </code></pre> </div> <p>To live reload the changes as we do, we need <code>nodemon</code> as a dev dependancy.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>yarn add -D nodemon </code></pre> </div> <p>After installing, add the following to your <code>package.json</code> file. (If you already have a scripts block, you can replace it)<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="nl">"scripts"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"test"</span><span class="p">:</span><span class="w"> </span><span class="s2">"echo </span><span class="se">\"</span><span class="s2">Error: no test specified</span><span class="se">\"</span><span class="s2"> &amp;&amp; exit 1"</span><span class="p">,</span><span class="w"> </span><span class="nl">"serve"</span><span class="p">:</span><span class="w"> </span><span class="s2">"nodemon server.js"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p><strong>Implement an Express app</strong><br> Create a new file and name it as <code>server.js</code>. (You can choose whatever the name you want :p but make sure you change the name in the <code>package.json</code> as well!)<br> Then create a simple express server inside your <code>server.js</code> file. Something similar to this.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">express</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">'</span><span class="s1">express</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">cookieParser</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">'</span><span class="s1">cookie-parser</span><span class="dl">'</span><span class="p">);</span> <span class="c1">//Define the Port</span> <span class="kd">const</span> <span class="nx">PORT</span> <span class="o">=</span> <span class="mi">5000</span><span class="p">;</span> <span class="c1">//Initialize Express App</span> <span class="kd">const</span> <span class="nx">app</span> <span class="o">=</span> <span class="nf">express</span><span class="p">();</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nf">cookieParser</span><span class="p">());</span> <span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/</span><span class="dl">"</span><span class="p">,</span> <span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="dl">"</span><span class="s2">Hello World</span><span class="dl">"</span><span class="p">);</span> <span class="p">});</span> <span class="c1">//Start the app and listen on the PORT</span> <span class="nx">app</span><span class="p">.</span><span class="nf">listen</span><span class="p">(</span><span class="nx">PORT</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Server Started at PORT </span><span class="p">${</span> <span class="nx">PORT</span> <span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="p">});</span> </code></pre> </div> <p>Run the server with<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>yarn run serve </code></pre> </div> <p>Now if you navigate to <code>localhost:5000</code>, you should see a "Hello World".</p> <p><strong>Integrate Asgardeo Authentication</strong></p> <p>Now that we have a working Express app, let's integrate Asgardeo authentication. First you need to create a new file and name it to <code>config.js</code>.<br> Inside that file, you need to specify the configuration for Asgardeo initialization.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">config</span> <span class="o">=</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">clientID</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">YOUR_CLIENT_ID</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">clientSecret</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">YOUR_CLIENT_SECRET</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">baseUrl</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">YOUR_BASE_URL</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">signInRedirectURL</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">http://localhost:5000/login</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">signOutRedirectURL</span><span class="dl">"</span><span class="p">:</span> <span class="dl">"</span><span class="s2">http://localhost:5000</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">scope</span><span class="dl">"</span><span class="p">:</span> <span class="p">[</span> <span class="dl">"</span><span class="s2">openid</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">profile</span><span class="dl">"</span> <span class="p">],</span> <span class="p">};</span> <span class="nx">module</span><span class="p">.</span><span class="nx">exports</span> <span class="o">=</span> <span class="nx">config</span><span class="p">;</span> </code></pre> </div> <p>Replace the <code>clientID</code>, <code>clientSecret</code> and <code>baseUrl</code> from the values you get from <a href="https://console.asgardeo.io/" rel="noopener noreferrer">Asgardeo Console</a>. The <code>signInRedirectURL</code> is the one a user should be redirected after the login. Keep in mind that the login endpoint and <code>signInRedirectURL</code> should be the same (You'll see why later).<br> Also make sure you add <code>localhost:5000</code> as an allowed origin and add <code>signInRedirectURL</code> as an authorized redirect URL in the console.</p> <p>Now open the <code>server.js</code> file and import the Asgardeo Node SDK and our config file. (Note: As an additional package, we need the <a href="https://www.npmjs.com/package/uuid" rel="noopener noreferrer">uuid</a> package as well.)<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="p">{</span> <span class="nx">AsgardeoNodeClient</span> <span class="p">}</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">'</span><span class="s1">@asgardeo/auth-node</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="p">{</span> <span class="na">v4</span><span class="p">:</span> <span class="nx">uuidv4</span> <span class="p">}</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">"</span><span class="s2">uuid</span><span class="dl">"</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">config</span> <span class="o">=</span> <span class="nf">require</span><span class="p">(</span><span class="dl">'</span><span class="s1">./config</span><span class="dl">'</span><span class="p">);</span> </code></pre> </div> <p>Then initialize the AsgardeoNodeClient with the configuration.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">authClient</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">AsgardeoNodeClient</span><span class="p">(</span><span class="nx">config</span><span class="p">);</span> </code></pre> </div> <p>After that, we can move onto implementing the login endpoint.<br> Earlier, we declared our <code>signInRedirectURL</code> in the config file to a <code>/login</code> endpoint. So we'll implement that endpoint here.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/login</span><span class="dl">"</span><span class="p">,</span> <span class="p">(</span><span class="nx">req</span><span class="p">,</span><span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="p">});</span> </code></pre> </div> <p>Inside the route handler, first you need to check if the incoming request is already authenticated or not. To do this, we can check the <code>ASGARDEO_SESSION_ID</code> cookie. If the request has a session ID, we can use that to re-authenticate the user and if not, we can create a new session ID and assign it to the request.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">let</span> <span class="nx">userID</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">cookies</span><span class="p">.</span><span class="nx">ASGARDEO_SESSION_ID</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">userID</span><span class="p">)</span> <span class="p">{</span> <span class="nx">userID</span> <span class="o">=</span> <span class="nf">uuidv4</span><span class="p">();</span> <span class="p">}</span> </code></pre> </div> <p>After that, you have to implement a callback function which will be used to redirect the user to the authorization URL. At the same time, you can send the user ID as a cookie back to the user. Make sure you use the httpOnly and sameSite attributes to prevent your cookie from cross-site request forgery (CSRF) attacks.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">redirectCallback</span> <span class="o">=</span> <span class="p">(</span><span class="nx">url</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">url</span><span class="p">)</span> <span class="p">{</span> <span class="c1">//Make sure you use the httpOnly and sameSite attributes to prevent from cross-site request forgery (CSRF) attacks.</span> <span class="nx">res</span><span class="p">.</span><span class="nf">cookie</span><span class="p">(</span><span class="dl">'</span><span class="s1">ASGARDEO_SESSION_ID</span><span class="dl">'</span><span class="p">,</span> <span class="nx">userID</span><span class="p">,</span> <span class="p">{</span> <span class="na">maxAge</span><span class="p">:</span> <span class="mi">900000</span><span class="p">,</span> <span class="na">httpOnly</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">sameSite</span><span class="p">:</span><span class="dl">'</span><span class="s1">lax</span><span class="dl">'</span> <span class="p">});</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">url</span><span class="p">);</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> <span class="p">};</span> </code></pre> </div> <p>This function will take in the authorization URL string as a parameter and will redirect the user. Now we will use the <code>signIn</code> function from the SDK to authorize the user.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">authClient</span><span class="p">.</span><span class="nf">signIn</span><span class="p">(</span><span class="nx">redirectCallback</span><span class="p">,</span> <span class="nx">userID</span><span class="p">,</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">.</span><span class="nx">code</span><span class="p">,</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">.</span><span class="nx">session_state</span><span class="p">,</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">.</span><span class="nx">state</span><span class="p">).</span><span class="nf">then</span><span class="p">(</span><span class="nx">response</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">//Just to see whats going on</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">response</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">response</span><span class="p">.</span><span class="nx">idToken</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">200</span><span class="p">).</span><span class="nf">send</span><span class="p">(</span><span class="nx">response</span><span class="p">);</span> <span class="p">}</span> <span class="p">});</span> </code></pre> </div> <p>Now let's figure out why we added the <code>signInRedirectURL</code> in the config file as same as the login endpoint (<code>/login</code>). The <code>signIn</code> method accepts 5 parameters namely redirectCallback, userID, code, session_state and state. When a user logs in for the first time, the <code>/login</code> endpoint will not get any values for <code>code</code>, <code>session_state</code> and <code>state</code> even though the <code>signIn</code> function expects the URL to have them. If those parameters are not present, the SDK will generate an authorization URL and passes it down to the <code>redirectCallback</code> function. From there, the user will be redirected to the Asgardeo Login Page and will securely authenticated. After doing so, as per our config file, the user will be redirected into the <code>signInRedirectURL</code>. This redirection will have the <code>code</code>, <code>session_state</code> and <code>state</code> URL parameters. Now the SDK knows this user has been redirected from the Asgardeo Login and will validate the <code>code</code>, <code>session_state</code> and <code>state</code>, then create a session in the Express app against the <code>userID</code>. There is a complicated process under the hood, but the user just have to call <code>/login</code> endpoint once and the SDK will handle the flow smoothly.</p> <p>The final code block for the <code>/login</code> endpoint will look like this.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/login</span><span class="dl">"</span><span class="p">,</span> <span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">let</span> <span class="nx">userID</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">cookies</span><span class="p">.</span><span class="nx">ASGARDEO_SESSION_ID</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">userID</span><span class="p">)</span> <span class="p">{</span> <span class="nx">userID</span> <span class="o">=</span> <span class="nf">uuidv4</span><span class="p">();</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">redirectCallback</span> <span class="o">=</span> <span class="p">(</span><span class="nx">url</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">url</span><span class="p">)</span> <span class="p">{</span> <span class="c1">//Make sure you use the httpOnly and sameSite attributes to prevent from cross-site request forgery (CSRF) attacks.</span> <span class="nx">res</span><span class="p">.</span><span class="nf">cookie</span><span class="p">(</span><span class="dl">'</span><span class="s1">ASGARDEO_SESSION_ID</span><span class="dl">'</span><span class="p">,</span> <span class="nx">userID</span><span class="p">,</span> <span class="p">{</span> <span class="na">maxAge</span><span class="p">:</span> <span class="mi">900000</span><span class="p">,</span> <span class="na">httpOnly</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">sameSite</span><span class="p">:</span><span class="dl">'</span><span class="s1">lax</span><span class="dl">'</span> <span class="p">});</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">url</span><span class="p">);</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> <span class="p">};</span> <span class="nx">authClient</span><span class="p">.</span><span class="nf">signIn</span><span class="p">(</span><span class="nx">redirectCallback</span><span class="p">,</span> <span class="nx">userID</span><span class="p">,</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">.</span><span class="nx">code</span><span class="p">,</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">.</span><span class="nx">session_state</span><span class="p">,</span> <span class="nx">req</span><span class="p">.</span><span class="nx">query</span><span class="p">.</span><span class="nx">state</span><span class="p">).</span><span class="nf">then</span><span class="p">(</span><span class="nx">response</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">response</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">response</span><span class="p">.</span><span class="nx">idToken</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">200</span><span class="p">).</span><span class="nf">send</span><span class="p">(</span><span class="nx">response</span><span class="p">);</span> <span class="p">}</span> <span class="p">});</span> <span class="p">});</span> </code></pre> </div> <p>Now you have a working login endpoint for your users 🥳. Let's add a log out endpoint as well.</p> <p>Logging out is rather easy than implementing the log in. We'll start with defining a new route.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/logout</span><span class="dl">"</span><span class="p">,</span> <span class="p">(</span><span class="nx">req</span><span class="p">,</span><span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="p">});</span> </code></pre> </div> <p>In the logout logic, first we need to check if the session ID cookie is present in the request. If so, we know this user has already been authenticated.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">if </span><span class="p">(</span><span class="nx">req</span><span class="p">.</span><span class="nx">cookies</span><span class="p">.</span><span class="nx">ASGARDEO_SESSION_ID</span> <span class="o">===</span> <span class="kc">undefined</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="dl">"</span><span class="s2">Unauthenticated</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>If the cookie is not present, we reject the logout request. But if it's present, we need to logout the user and delete the session.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">authClient</span><span class="p">.</span><span class="nf">signOut</span><span class="p">(</span><span class="nx">req</span><span class="p">.</span><span class="nx">cookies</span><span class="p">.</span><span class="nx">ASGARDEO_SESSION_ID</span><span class="p">).</span><span class="nf">then</span><span class="p">(</span><span class="nx">response</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">//Invalidate the session cookie</span> <span class="nx">res</span><span class="p">.</span><span class="nf">cookie</span><span class="p">(</span><span class="dl">'</span><span class="s1">ASGARDEO_SESSION_ID</span><span class="dl">'</span><span class="p">,</span> <span class="kc">null</span><span class="p">,</span> <span class="p">{</span> <span class="na">maxAge</span><span class="p">:</span> <span class="mi">0</span> <span class="p">});</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">response</span><span class="p">);</span> <span class="p">}).</span><span class="k">catch</span><span class="p">(</span><span class="nx">err</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="p">});</span> </code></pre> </div> <p>We can extract the session ID from the cookie and then pass it on to <code>signOut</code> function. It will identify the relevant user's session and will destroy accordingly. After that, we need to invalidate the cookie. This can be done by setting the value to <code>null</code> sending back. So the code block for <code>/logout</code> endpoint will look like this.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">app</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="dl">"</span><span class="s2">/logout</span><span class="dl">"</span><span class="p">,</span> <span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">req</span><span class="p">.</span><span class="nx">cookies</span><span class="p">.</span><span class="nx">ASGARDEO_SESSION_ID</span> <span class="o">===</span> <span class="kc">undefined</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="dl">"</span><span class="s2">Unauthenticated</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="nx">authClient</span><span class="p">.</span><span class="nf">signOut</span><span class="p">(</span><span class="nx">req</span><span class="p">.</span><span class="nx">cookies</span><span class="p">.</span><span class="nx">ASGARDEO_SESSION_ID</span><span class="p">).</span><span class="nf">then</span><span class="p">(</span><span class="nx">response</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">//Invalidate the session cookie</span> <span class="nx">res</span><span class="p">.</span><span class="nf">cookie</span><span class="p">(</span><span class="dl">'</span><span class="s1">ASGARDEO_SESSION_ID</span><span class="dl">'</span><span class="p">,</span> <span class="kc">null</span><span class="p">,</span> <span class="p">{</span> <span class="na">maxAge</span><span class="p">:</span> <span class="mi">0</span> <span class="p">});</span> <span class="nx">res</span><span class="p">.</span><span class="nf">redirect</span><span class="p">(</span><span class="nx">response</span><span class="p">);</span> <span class="p">}).</span><span class="k">catch</span><span class="p">(</span><span class="nx">err</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">send</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="p">});</span> <span class="p">}</span> <span class="p">});</span> </code></pre> </div> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Foe8tduszii0krnklvqtw.jpeg" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Foe8tduszii0krnklvqtw.jpeg" alt="Image description"></a></p> <p>Congratulations now you have implemented <a class="mentioned-user" href="https://dev.to/asgardeo">@asgardeo</a> authentication to your Express app. The Asgardeo Node SDK comes up with more functions that will be useful to implement your next project so do check them out as well. Please check the official sample app <a href="https://github.com/asgardeo/asgardeo-auth-node-sdk/tree/main/samples" rel="noopener noreferrer">here</a> and you can try out the SDK including the functions we coded earlier in this article. That's it for now, thanks for reading. See you folks soon! </p> express javascript asgardeo oauth20 Suvin Nimnaka Sat, 18 Dec 2021 14:05:23 +0000 https://dev.to/suvink/easily-add-certifications-to-linkedin-from-your-website-550j https://dev.to/suvink/easily-add-certifications-to-linkedin-from-your-website-550j <p>A few weeks back <a class="mentioned-user" href="https://dev.to/lakindu">@lakindu</a> and I were building a platform for <a href="https://academy.richmondlive.lk" rel="noopener noreferrer">@Richmond Live</a> 's new training program. The students were given a digital certificate for the courses they completed at the Richmond Live's academy and once they log in, they can share their certificate across social media platforms or simply download the PDF certificate. In addition to that, students can maintain their public profile which can be used as a portfolio for their achievements at the academy. </p> <p>While building this platform, we needed a feature to have a button that will add the certification directly to LinkedIn. Checked the official LinkedIn documentation but to keep things simple, we wanted a small NPM package that can do the job. Unfortunately we couldn't find anything that is flexible and stable enough to use in out application. We ended up using the hard way; building the button from the scratch.</p> <p>After a few days we decided to create a package ourselves for people to use easily. So <a href="https://www.npmjs.com/package/linkedin-certification" rel="noopener noreferrer"><code>Linkedin-certification</code></a> was born!</p> <h3> What does it do? </h3> <p>It will let you to add your certifications directly into LinkedIn from your website. (<em>Not directly! You still need to confirm the details :wink</em>)</p> <h3> How to install? </h3> <p>If you're using <code>npm</code>,<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>npm install linkedin-certification --save </code></pre> </div> <p>or else if you're a <code>yarn</code> user,<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>yarn add linkedin-certification </code></pre> </div> <h3> How to use it? </h3> <ul> <li>First, import the package </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">LinkedinCertification</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">linkedin-certification</span><span class="dl">"</span><span class="p">;</span> </code></pre> </div> <ul> <li>Then use the imported component with your certification details. </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="o">&lt;</span><span class="nx">LinkedinCertification</span> <span class="nx">certificationName</span><span class="o">=</span><span class="dl">"</span><span class="s2">My Sample Certification</span><span class="dl">"</span> <span class="nx">organizationName</span><span class="o">=</span><span class="dl">"</span><span class="s2">My Sample Organization</span><span class="dl">"</span> <span class="nx">issuedMonth</span><span class="o">=</span><span class="p">{</span><span class="mi">12</span><span class="p">}</span> <span class="nx">issuedYear</span><span class="o">=</span><span class="p">{</span><span class="mi">2021</span><span class="p">}</span> <span class="nx">expirationMonth</span><span class="o">=</span><span class="p">{</span><span class="mi">3</span><span class="p">}</span> <span class="nx">expirationYear</span><span class="o">=</span><span class="p">{</span><span class="mi">2023</span><span class="p">}</span> <span class="nx">certificateId</span><span class="o">=</span><span class="dl">"</span><span class="s2">29c2e87e-5c1c-11ec-bf63-0242ac130002</span><span class="dl">"</span> <span class="nx">certificateURL</span><span class="o">=</span><span class="dl">"</span><span class="s2">https://www.google.com</span><span class="dl">"</span> <span class="nx">newTab</span><span class="o">=</span><span class="p">{</span><span class="kc">true</span><span class="p">}</span> <span class="sr">/</span><span class="err">&gt; </span></code></pre> </div> <p>Thats it! You can see a button like this on your application upon saving.<br> <a href="https://camo.githubusercontent.com/46b14f0a5c9408a8b9ad5e66166806390290bae8ef580a47cdbdcf54c565cb41/68747470733a2f2f692e696d6775722e636f6d2f6c336d3432614e2e706e67" class="article-body-image-wrapper"><img src="https://camo.githubusercontent.com/46b14f0a5c9408a8b9ad5e66166806390290bae8ef580a47cdbdcf54c565cb41/68747470733a2f2f692e696d6775722e636f6d2f6c336d3432614e2e706e67"></a></p> <h3> The property list </h3> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Property</th> <th>Type</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><code>certificationName</code></td> <td><code>string</code></td> <td>The name of the certification. <code>[Required]</code> </td> </tr> <tr> <td><code>organizationName</code></td> <td><code>string</code></td> <td>The name of the organizaion. <code>[Required]</code> </td> </tr> <tr> <td><code>issuedMonth</code></td> <td><code>number</code></td> <td>Certification issued month</td> </tr> <tr> <td><code>issuedYear</code></td> <td><code>number</code></td> <td>Certification issued year</td> </tr> <tr> <td><code>expirationMonth</code></td> <td><code>number</code></td> <td>Certification expiry month</td> </tr> <tr> <td><code>expirationYear</code></td> <td><code>number</code></td> <td>Certification expiry year</td> </tr> <tr> <td><code>certificateId</code></td> <td><code>number</code></td> <td>Unique ID of the certification</td> </tr> <tr> <td><code>certificateURL</code></td> <td><code>string</code></td> <td>URL for the certification</td> </tr> <tr> <td><code>newTab</code></td> <td><code>boolean</code></td> <td>Set <code>true</code> to open the LinkedIn Certification window in a new tab</td> </tr> <tr> <td><code>customButton</code></td> <td><code>React Node</code></td> <td>Lets you pass your own custom button.</td> </tr> </tbody> </table></div> <h3> YES you saw it right! </h3> <p><code>linkedin-certification</code> lets you add your custom buttons instead of the default one that comes with the package! Got a really cool button with a bunch of animations? Or need a button that goes with your website theme? We got you! Use the <code>customButton</code> property and pass down your own button component.</p> <h3> Contributions are welcome! </h3> <p>If you come across any bugs or feature requests, please <a href="https://github.com/Suvink/linkedin-certification/issues" rel="noopener noreferrer">open an issue</a> or send a pull request. I'm happy to improve this with your cool ideas!</p> <h2> Help me more! </h2> <p>If you like this package, please consider buying me a coffee so that I can keep improving this even further! <br> <a href="https://www.buymeacoffee.com/suvink" rel="noopener noreferrer"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fcdn.buymeacoffee.com%2Fbuttons%2Fv2%2Fdefault-yellow.png" alt="Buy Me A Coffee"></a></p> <p>Thanks for reading folks! Happy coding! </p> react npm typescript linkedin Suvin Nimnaka Thu, 07 Jan 2021 16:02:11 +0000 https://dev.to/suvink/e-waste-admin-panel-2den https://dev.to/suvink/e-waste-admin-panel-2den <h2> How it works </h2> <p>Admin panel shows you an overview of how the system works. It provides realtime numbers and charts so you can have an idea of how the system performs at a glance. Also these charts are downloadable so it is easy to make reports with these. I'm using <code>chart.js</code> to create these charts. It was easy to integrate and provides a good looking customizable charts. </p> <h2> Screenshots </h2> <p><a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fi%2Fl1agsja85eyyepemffm2.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fi%2Fl1agsja85eyyepemffm2.png"></a><br> <a href="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fi%2Ffzwj63izg6jjqrprinoy.png" class="article-body-image-wrapper"><img src="https://media.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fi%2Ffzwj63izg6jjqrprinoy.png"></a></p> <p>If you have any concerns or suggestions for improvements, please let us know!</p> dohackathon showdev vue Suvin Nimnaka Wed, 30 Dec 2020 15:22:29 +0000 https://dev.to/suvink/e-waste-collector-platform-28l1 https://dev.to/suvink/e-waste-collector-platform-28l1 <h2> How it works </h2> <p><b>Step 1</b>: Existing Collectors can log into the system using their emails and passwords and the new customers can quickly sign up using their email address.</p> <p><b>Step 2</b>: In the dashboard, you can see the pending request that has been placed by clients. Click on "Reserve" to reserve a job.</p> <p><b>Step 3</b>: Then you have can see the customers details.</p> <p><b>Step 4</b>: Once you arrive at the customers house, collect the item, weigh it and add the weight to the system. And then click on "Mark As Completed" </p> <h2> Screenshots </h2> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--kZBwHTFA--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/rnm0j8eg5nqgli3phqsw.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--kZBwHTFA--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/rnm0j8eg5nqgli3phqsw.png" width="800" height="435"></a><br> <a href="https://res.cloudinary.com/practicaldev/image/fetch/s--aQkrIlu9--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/rpozwh8f0am019z2y4xt.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--aQkrIlu9--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/rpozwh8f0am019z2y4xt.png" width="800" height="435"></a></p> <p>If you have any concerns or suggestions for improvements, please let us know! </p> showdev dohackathon Suvin Nimnaka Tue, 22 Dec 2020 13:49:18 +0000 https://dev.to/suvink/e-waste-client-platform-ohi https://dev.to/suvink/e-waste-client-platform-ohi <h2> How it works </h2> <p><b>Step 1</b>: Existing customers can log into the system using their emails and passwords and the new customers can quickly sign up using their email address.</p> <p><b>Step 2</b>: In the dashboard, you can see the points you've earned, and options to use the e-waste system. Click on the e-waste request.</p> <p><b>Step 3</b>: Then you have to fill the quick form about your e-waste item. Then click "Submit".</p> <p><b>Step 4</b>: You will see a pending request on your dashboard. Once a collector approves your request, You will see the contact details of the collector as well. </p> <h2> Redeem Points </h2> <p>The customers can redeem the points with one of our partners for their loyalty points or similar. This option is currently unavailable and we will implement this in the long run.</p> <h2> Share Points </h2> <p>Another significant feature of the e-waste system is you can share points among your friends. If you are not interested in any of out partner programs, you still can use e-waste and share your points with your friends!</p> <h2> Screenshots </h2> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--t22OaUNi--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://res.cloudinary.com/practicaldev/image/fetch/s--d8KRA5Up--/c_limit%252Cf_auto%252Cfl_progressive%252Cq_auto%252Cw_880/https://dev-to-uploads.s3.amazonaws.com/i/lh55ny4i1qcctmw61u9n.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--t22OaUNi--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://res.cloudinary.com/practicaldev/image/fetch/s--d8KRA5Up--/c_limit%252Cf_auto%252Cfl_progressive%252Cq_auto%252Cw_880/https://dev-to-uploads.s3.amazonaws.com/i/lh55ny4i1qcctmw61u9n.png" width="800" height="412"></a><br> <a href="https://res.cloudinary.com/practicaldev/image/fetch/s--gdtEl_Ff--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/bu6bhfn422ixgcgvewff.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--gdtEl_Ff--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/bu6bhfn422ixgcgvewff.png" width="800" height="365"></a><br> <a href="https://res.cloudinary.com/practicaldev/image/fetch/s--eArth0lm--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/rgaod9a3c860z0ocya87.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--eArth0lm--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/rgaod9a3c860z0ocya87.png" width="800" height="421"></a><br> <a href="https://res.cloudinary.com/practicaldev/image/fetch/s--Z97_XtGD--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/j5ofe3lpit5fybf0cx57.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--Z97_XtGD--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_800/https://dev-to-uploads.s3.amazonaws.com/i/j5ofe3lpit5fybf0cx57.png" width="800" height="410"></a></p> <p>If you have any concerns or suggestions for improvements, please let us know! </p> dohackathon vue showdev