Local token authentication strategy for Passport.
npm install passport-local-token
Passport strategy for authenticating with an authentication token.
This module lets you authenticate using a token in your Node.js
applications. It is based on passport-local module by Jared Hanson.
By plugging into Passport, token authentication can be easily and
unobtrusively integrated into any application or framework that supports
Connect-style middleware, including
Express.
$ npm install passport-local-token
#### Configure Strategy
The token authentication strategy authenticates users using a token.
The strategy requires a verify callback, which accepts these
credentials and calls done providing a user.
Here is the pseudo code.
passport.use('local-token', new LocalStrategy(
function(token, done) {
AccessToken.findOne({
id: token
}, function(error, accessToken) {
if (error) {
return done(error);
}
if (accessToken) {
if (!token.isValid(accessToken)) {
return done(null, false);
}
User.findOne({
id: accessToken.userId
}, function(error, user) {
if (error) {
return done(error);
}
if (!user) {
return done(null, false);
}
return done(null, user);
});
} else {
return done(null);
}
});
}
));
#### Authenticate Requests
Use passport.authenticate(), specifying the 'local' strategy, to
authenticate requests.
For example, as route middleware in an Express
application:
app.post('/login',
passport.authenticate(
'local-token',
{
session: false,
optional: false
}
),
function(req, res) {
res.redirect('/');
}
);
You can also set the parameter optional to true, so the same call can be both authenticated and not authenticated.
For complete, working examples, refer to the multiple examples included. (NOT UPDATED)
$ npm install
$ npm test
Copyright (c) 2014 Paolo Ferretti <http://paoloferretti.net/>