UNPKG

passport-exact

Version:

Exact authentication strategy for Passport.

github.com/auth0/passport-exact

auth0/passport-exact

112 lines (87 loc) 3.22 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
var express = require('express') , passport = require('passport') , util = require('util') , bodyParser = require('body-parser') , cookieParser = require('cookie-parser') , methodOverride = require('method-override') , session = require('express-session') , static = require('serve-static') , Strategy = require('../lib/passport-exact').Strategy; var CLIENT_ID = "91c0381c...2b96a8e11"; var CLIENT_SECRET = "mZ...it"; console.log(Strategy); // Passport session setup. // To support persistent login sessions, Passport needs to be able to // serialize users into and deserialize users out of the session. Typically, // this will be as simple as storing the user ID when serializing, and finding // the user by ID when deserializing. However, since this example does not // have a database of user records, the complete Google profile is // serialized and deserialized. passport.serializeUser(function(user, done) { done(null, user); }); passport.deserializeUser(function(obj, done) { done(null, obj); }); // Use the Exact Strategy within Passport. // Strategies in Passport require a `verify` function, which accept // credentials (in this case, an accessToken, refreshToken, and Google // profile), and invoke a callback with a user object. passport.use(new Strategy({ clientID: CLIENT_ID, clientSecret: CLIENT_SECRET, baseUrl: "https://start.exactonline.nl", callbackURL: "http://127.0.0.1:3000/auth/exact/callback" }, function(accessToken, refreshToken, profile, done) { // asynchronous verification, for effect... console.log(profile); process.nextTick(function () { // To keep the example simple, the user's Google profile is returned to // represent the logged-in user. In a typical application, you would want // to associate the Google account with a user record in your database, // and return that user instead. return done(null, profile); }); } )); var app = express(); app.set('views', __dirname + '/views'); app.set('view engine', 'ejs'); app.use(cookieParser()); app.use(bodyParser()); app.use(methodOverride()); app.use(session({ secret: 'keyboard cat' })); // Initialize Passport! Also use passport.session() middleware, to support // persistent login sessions (recommended). app.use(passport.initialize()); app.use(passport.session()); app.get('/', function(req, res){ res.render('index', { user: req.user }); }); app.get('/account', ensureAuthenticated, function(req, res){ res.render('account', { user: req.user }); }); app.get('/login', function(req, res){ res.render('login', { user: req.user }); }); app.get('/auth/exact', passport.authenticate('exact', {state:'somestate'}), function(req, res){ // function will not be called. }); app.get('/auth/exact/callback', passport.authenticate('exact', { failureRedirect: '/login' }), function(req, res) { res.redirect('/'); }); app.get('/logout', function(req, res){ req.logout(); res.redirect('/'); }); app.use(static(__dirname + '/public')); app.listen(3000); function ensureAuthenticated(req, res, next) { if (req.isAuthenticated()) { return next(); } res.redirect('/login'); }