UNPKG

fruitstand

Version:

fruit stand

github.com/classmember/fruitstand

classmember/fruitstand

133 lines (94 loc) 5.07 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
# passport-facebook [![Build](https://travis-ci.org/jaredhanson/passport-facebook.png)](https://travis-ci.org/jaredhanson/passport-facebook) [![Coverage](https://coveralls.io/repos/jaredhanson/passport-facebook/badge.png)](https://coveralls.io/r/jaredhanson/passport-facebook) [![Quality](https://codeclimate.com/github/jaredhanson/passport-facebook.png)](https://codeclimate.com/github/jaredhanson/passport-facebook) [![Dependencies](https://david-dm.org/jaredhanson/passport-facebook.png)](https://david-dm.org/jaredhanson/passport-facebook) [![Tips](http://img.shields.io/gittip/jaredhanson.png)](https://www.gittip.com/jaredhanson/) [Passport](http://passportjs.org/) strategy for authenticating with [Facebook](http://www.facebook.com/) using the OAuth 2.0 API. This module lets you authenticate using Facebook in your Node.js applications. By plugging into Passport, Facebook authentication can be easily and unobtrusively integrated into any application or framework that supports [Connect](http://www.senchalabs.org/connect/)-style middleware, including [Express](http://expressjs.com/). ## Install $ npm install passport-facebook ## Usage #### Configure Strategy The Facebook authentication strategy authenticates users using a Facebook account and OAuth 2.0 tokens. The strategy requires a `verify` callback, which accepts these credentials and calls `done` providing a user, as well as `options` specifying a app ID, app secret, and callback URL. passport.use(new FacebookStrategy({ clientID: FACEBOOK_APP_ID, clientSecret: FACEBOOK_APP_SECRET, callbackURL: "http://localhost:3000/auth/facebook/callback" }, function(accessToken, refreshToken, profile, done) { User.findOrCreate({ facebookId: profile.id }, function (err, user) { return done(err, user); }); } )); #### Authenticate Requests Use `passport.authenticate()`, specifying the `'facebook'` strategy, to authenticate requests. For example, as route middleware in an [Express](http://expressjs.com/) application: app.get('/auth/facebook', passport.authenticate('facebook')); app.get('/auth/facebook/callback', passport.authenticate('facebook', { failureRedirect: '/login' }), function(req, res) { // Successful authentication, redirect home. res.redirect('/'); }); #### Extended Permissions If you need extended permissions from the user, the permissions can be requested via the `scope` option to `passport.authenticate()`. For example, this authorization requests permission to the user's statuses and checkins: app.get('/auth/facebook', passport.authenticate('facebook', { scope: ['user_status', 'user_checkins'] })); #### Display Mode The display mode with which to render the authorization dialog can be set by specifying the `display` option. Refer to Facebook's [OAuth Dialog](https://developers.facebook.com/docs/reference/dialogs/oauth/) documentation for more information. app.get('/auth/facebook', passport.authenticate('facebook', { display: 'touch' })); #### Profile Fields The Facebook profile is very rich, and may contain a lot of information. The strategy can be configured with a `profileFields` parameter which specifies a list of fields (named by Portable Contacts convention) your application needs. For example, to fetch only user's facebook ID, name, and picture, configure strategy like this. passport.use(new FacebookStrategy({ // clientID, clientSecret and callbackURL profileFields: ['id', 'displayName', 'photos'] }, // verify callback )); If `profileFields` is not specified, the default fields supplied by Facebook will be parsed. ## Examples For a complete, working example, refer to the [login example](https://github.com/jaredhanson/passport-facebook/tree/master/examples/login). ## Issues Facebook's OAuth 2.0 implementation has a [bug][1] in which the fragment `#_=_` is appended to the callback URL. This appears to affect Firefox and Chrome, but not Safari. This fragment can be removed via client-side JavaScript, and [@niftylettuce](https://github.com/niftylettuce) provides a suggested [workaround][2]. Developers are encouraged to direct their complaints to Facebook in an effort to get them to implement a proper fix for this issue. [1]: https://developers.facebook.com/bugs/196125357123225 [2]: https://github.com/jaredhanson/passport-facebook/issues/12#issuecomment-5913711 ## Related Modules - [passport-facebook-canvas](https://github.com/missinglink/passport-facebook-canvas) — authentication for apps on Facebook Canvas - [passport-facebook-token](https://github.com/drudge/passport-facebook-token) — authenticate tokens issued to devices (iOS, Android, etc.) ## Tests $ npm install $ npm test ## Credits - [Jared Hanson](http://github.com/jaredhanson) ## License [The MIT License](http://opensource.org/licenses/MIT) Copyright (c) 2011-2014 Jared Hanson <[http://jaredhanson.net/](http://jaredhanson.net/)>