UNPKG

passport-auth-token

Version:

Authentication token strategy for Passport.

github.com/mbell8903/passport-auth-token

mbell8903/passport-auth-token

106 lines (77 loc) 3.03 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
# passport-auth-token [![Build](https://travis-ci.org/mbell8903/passport-auth-token.png)](https://travis-ci.org/mbell8903/passport-auth-token) [![Coverage Status](https://coveralls.io/repos/mbell8903/passport-auth-token/badge.png)](https://coveralls.io/r/mbell8903/passport-auth-token) [![Quality](https://codeclimate.com/github/mbell8903/passport-auth-token.png)](https://codeclimate.com/github/mbell8903/passport-auth-token) [![Dependencies](https://david-dm.org/mbell8903/passport-auth-token.png)](https://david-dm.org/mbell8903/passport-auth-token) [Passport](http://passportjs.org/) strategy for authenticating with an authentication token. This module lets you authenticate using a token in your Node.js applications. It is based on passport-local module by Jared Hanson. By plugging into Passport, token authentication can be easily and unobtrusively integrated into any application or framework that supports [Connect](http://www.senchalabs.org/connect/)-style middleware, including [Express](http://expressjs.com/). ## Install $ npm install passport-auth-token ## Usage #### Configure Strategy The token authentication strategy authenticates users using a token. The strategy requires a `verify` callback, which accepts these credentials and calls `done` providing a user. Here is the pseudo code. passport.use('authtoken', new AuthTokenStrategy( function(token, done) { AccessToken.findOne({ id: token }, function(error, accessToken) { if (error) { return done(error); } if (accessToken) { if (!token.isValid(accessToken)) { return done(null, false); } User.findOne({ id: accessToken.userId }, function(error, user) { if (error) { return done(error); } if (!user) { return done(null, false); } return done(null, user); }); } else { return done(null); } }); } )); #### Authenticate Requests Use `passport.authenticate()`, specifying the `'authtoken'` strategy, to authenticate requests. For example, as route middleware in an [Express](http://expressjs.com/) application: app.post('/login', passport.authenticate( 'authtoken', { session: false, optional: false } ), function(req, res) { res.redirect('/'); } ); You can also set the parameter `optional` to true, so the same call can be both authenticated and not authenticated. ## Examples For complete, working examples, refer to the multiple [examples](https://github.com/jaredhanson/passport-token/tree/master/examples) included. (NOT UPDATED) ## Tests $ npm install $ npm test ## Credits - [Mike Bell](http://github.com/mbell8903) ## License [The MIT License](http://opensource.org/licenses/MIT) Copyright (c) 2014 Mike Bell