UNPKG

passport-openid

Version:

OpenID authentication strategy for Passport.

github.com/jaredhanson/passport-openid

jaredhanson/passport-openid

111 lines (81 loc) 3.62 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
# Passport-OpenID [Passport](https://github.com/jaredhanson/passport) strategy for authenticating with [OpenID](http://openid.net/). This module lets you authenticate using OpenID in your Node.js applications. By plugging into Passport, OpenID authentication can be easily and unobtrusively integrated into any application or framework that supports [Connect](http://www.senchalabs.org/connect/)-style middleware, including [Express](http://expressjs.com/). ## Install $ npm install passport-openid ## Usage #### Configure Strategy The OpenID authentication strategy authenticates users using an OpenID identifier. The strategy requires a `validate` callback, which accepts this identifier and calls `done` providing a user. Additionally, options can be supplied to specify a return URL and realm. passport.use(new OpenIDStrategy({ returnURL: 'http://localhost:3000/auth/openid/return', realm: 'http://localhost:3000/' }, function(identifier, done) { User.findByOpenID({ openId: identifier }, function (err, user) { return done(err, user); }); } )); #### Authenticate Requests Use `passport.authenticate()`, specifying the `'openid'` strategy, to authenticate requests. For example, as route middleware in an [Express](http://expressjs.com/) application: app.post('/auth/openid', passport.authenticate('openid')); app.get('/auth/openid/return', passport.authenticate('openid', { failureRedirect: '/login' }), function(req, res) { // Successful authentication, redirect home. res.redirect('/'); }); #### Saving Associations Associations between a relying party and an OpenID provider are used to verify subsequent protocol messages and reduce round trips. In order to take advantage of this, an application must store these associations. This can be done by registering functions with `saveAssociation` and `loadAssociation`. strategy.saveAssociation(function(handle, provider, algorithm, secret, expiresIn, done) { // custom storage implementation saveAssoc(handle, provider, algorithm, secret, expiresIn, function(err) { if (err) { return done(err) } return done(); }); }); strategy.loadAssociation(function(handle, done) { // custom retrieval implementation loadAssoc(handle, function(err, provider, algorithm, secret) { if (err) { return done(err) } return done(null, provider, algorithm, secret) }); }); ## Examples For a complete, working example, refer to the [signon example](https://github.com/jaredhanson/passport-openid/tree/master/examples/signon). ## Strategies using OpenID <table> <thead> <tr><th>Strategy</th></tr> </thead> <tbody> <tr><td><a href="https://github.com/rajaraodv/passport-cloudfoundry-openidconnect">Cloud Foundry UAA (OpenID Connect)</a></td></tr> <tr><td><a href="https://github.com/jaredhanson/passport-google">Google</a></td></tr> <tr><td><a href="https://github.com/liamcurry/passport-steam">Steam</a></td></tr> <tr><td><a href="https://github.com/jaredhanson/passport-yahoo">Yahoo!</a></td></tr> </tbody> </table> ## Tests $ npm install --dev $ make test [![Build Status](https://secure.travis-ci.org/jaredhanson/passport-openid.png)](http://travis-ci.org/jaredhanson/passport-openid) ## Credits - [Jared Hanson](http://github.com/jaredhanson) ## License [The MIT License](http://opensource.org/licenses/MIT) Copyright (c) 2011-2013 Jared Hanson <[http://jaredhanson.net/](http://jaredhanson.net/)>