UNPKG

feathers-authentication

Version:

Add Authentication to your FeathersJS app.

github.com/feathersjs/feathers-authentication

feathersjs/feathers-authentication

91 lines (69 loc) 2.93 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
'use strict'; Object.defineProperty(exports, "__esModule", { value: true }); exports.default = authenticate; var _feathersErrors = require('feathers-errors'); var _feathersErrors2 = _interopRequireDefault(_feathersErrors); var _debug = require('debug'); var _debug2 = _interopRequireDefault(_debug); function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; } var debug = (0, _debug2.default)('feathers-authentication:express:authenticate'); function authenticate(strategy) { var options = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : {}; // TODO (EK): Support arrays of strategies if (!strategy) { throw new Error('The \'authenticate\' hook requires one of your registered passport strategies.'); } return function (req, res, next) { // If we are already authenticated skip if (req.authenticated) { return next(); } // if (!req.app.passport._strategy(strategy)) { // return next(new Error(`Your '${strategy}' authentication strategy is not registered with passport.`)); // } // TODO (EK): Can we do something in here to get away // from express-session for OAuth1? // TODO (EK): Handle chaining multiple strategies req.app.authenticate(strategy, options)(req).then(function () { var result = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {}; // TODO (EK): Support passport failureFlash // TODO (EK): Support passport successFlash if (result.success) { Object.assign(req, { authenticated: true }, result.data); Object.assign(req.feathers, { authenticated: true }, result.data); if (options.successRedirect && !options.__oauth) { debug('Redirecting to ' + options.successRedirect); res.status(302); return res.redirect(options.successRedirect); } return next(); } if (result.fail) { if (options.failureRedirect && !options.__oauth) { debug('Redirecting to ' + options.failureRedirect); res.status(302); return res.redirect(options.failureRedirect); } var challenge = result.challenge, _result$status = result.status, status = _result$status === undefined ? 401 : _result$status; var message = challenge && challenge.message ? challenge.message : challenge; if (options.failureMessage) { message = options.failureMessage; } res.status(status); return Promise.reject(new _feathersErrors2.default[status](message, challenge)); } if (result.redirect) { debug('Redirecting to ' + result.url); res.status(result.status); return res.redirect(result.url); } // Only gets here if pass() is called by the strategy next(); }).catch(next); }; } module.exports = exports['default'];