nodejs-firestore-session

An express session store backed by Google Cloud Firestore (by googleapis)
Add to my DEV experience Suggest topics
Source Code
nodejs-firestore-session Reviews
Suggest alternative
Edit details
Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App
With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.
surveyjs.io
featured

Nodejs-firestore-session Alternatives

Similar projects and alternatives to nodejs-firestore-session

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better nodejs-firestore-session alternative or higher similarity.
Suggest an alternative to nodejs-firestore-session

nodejs-firestore-session reviews and mentions

Posts with mentions or reviews of nodejs-firestore-session. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-11-25.
  • The Google 0-day all Infostealer groups are exploiting
    1 project | news.ycombinator.com | 30 Dec 2023
    I generally believe it. Google's security team has been lax on cookie security. I reported an issue earlier this year about non-expiring session cookies, they said it was previously reported in 2019. The bug remains [1]. Sadly other Google projects use this code...

    Historically they've been quick to patch things I've reported, so it feels like a decline.

    [1] https://github.com/googleapis/nodejs-firestore-session/issue...

  • Stop using JSON Web Tokens for user sessions
    3 projects | news.ycombinator.com | 25 Nov 2023
    The lack of logout and XSS are problems, but I ran into a couple apps that completely forgot to expire sessions due to lacking framework support. In nodejs's cookie-session and @google-cloud/connect-firestore sessions never expire. This issue impacts downstream software including, awkwardly enough, Google's Passkey demo apps. There isn't interest in fixing this.

    Make sure your app is actually using a JWT framework, not a lesser version, and implements basic security practices.

    [1] https://github.com/expressjs/cookie-session

    [2] https://github.com/googleapis/nodejs-firestore-session

  • Show HN: WebSession, a Secure Replacement for Cookies
    1 project | news.ycombinator.com | 24 Oct 2023
    Surprisingly, there's several cookie-based approaches that forget to handle any sort of server-side expiration. Here's one:

    https://github.com/googleapis/nodejs-firestore-session/issue...

    I agree that WebSession would benefit from a time since last touched expiration, although I'll point out that a time-based approach doesn't handle the "when device is locked" requirement.

  • A note from our sponsor - SaaSHub
    www.saashub.com | 6 May 2024
    SaaSHub helps you find the best software and product alternatives Learn more →

Stats

Basic nodejs-firestore-session repo stats
3
37
4.3
27 days ago

googleapis/nodejs-firestore-session is an open source project licensed under Apache License 2.0 which is an OSI approved license.

The primary programming language of nodejs-firestore-session is TypeScript.

Popular Comparisons

  1. nodejs-firestore-session VS biscuit-rust
  2. nodejs-firestore-session VS cookie-session

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com