Need help with passport-oauth2?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

jaredhanson
494 Stars 263 Forks MIT License 164 Commits 71 Opened issues

Description

OAuth 2.0 authentication strategy for Passport and Node.js.

Services available

!
?

Need anything else?

Contributors list

# 4,877
JavaScr...
npm
React N...
vk
134 commits
# 33,574
coffees...
node-js
oauth2
rails-a...
2 commits
# 64,807
Ruby
embeds
gitlab
Rails
2 commits
# 520,360
PHP
CSS
1 commit
# 286,898
authent...
token
C++
Python
1 commit
# 55,033
Objecti...
Shell
React N...
OCaml
1 commit
# 26,103
coffees...
ESLint
jonschl...
ecmascr...
1 commit
# 169,389
Shell
CSS
HTML
chrome-...
1 commit
# 31,900
Mongoos...
Express
cors
Sass
1 commit
# 87,667
CSS
github-...
Markdow...
Shell
1 commit
# 22,674
WordPre...
Kotlin
Electro...
React
1 commit
# 53,134
PHP
Nest
HTML
Atom
1 commit

passport-oauth2

General-purpose OAuth 2.0 authentication strategy for Passport.

This module lets you authenticate using OAuth 2.0 in your Node.js applications. By plugging into Passport, OAuth 2.0 authentication can be easily and unobtrusively integrated into any application or framework that supports Connect-style middleware, including Express.

Note that this strategy provides generic OAuth 2.0 support. In many cases, a provider-specific strategy can be used instead, which cuts down on unnecessary configuration, and accommodates any provider-specific quirks. See the list for supported providers.

Developers who need to implement authentication against an OAuth 2.0 provider that is not already supported are encouraged to sub-class this strategy. If you choose to open source the new provider-specific strategy, please add it to the list so other people can find it.


Advertisement
Learn OAuth 2.0 - Get started as an API Security Expert
Just imagine what could happen to YOUR professional career if you had skills in OAuth > 8500 satisfied students


npm build coverage ...

Install

$ npm install passport-oauth2

Usage

Configure Strategy

The OAuth 2.0 authentication strategy authenticates users using a third-party account and OAuth 2.0 tokens. The provider's OAuth 2.0 endpoints, as well as the client identifer and secret, are specified as options. The strategy requires a

verify
callback, which receives an access token and profile, and calls
cb
providing a user.
passport.use(new OAuth2Strategy({
    authorizationURL: 'https://www.example.com/oauth2/authorize',
    tokenURL: 'https://www.example.com/oauth2/token',
    clientID: EXAMPLE_CLIENT_ID,
    clientSecret: EXAMPLE_CLIENT_SECRET,
    callbackURL: "http://localhost:3000/auth/example/callback"
  },
  function(accessToken, refreshToken, profile, cb) {
    User.findOrCreate({ exampleId: profile.id }, function (err, user) {
      return cb(err, user);
    });
  }
));

Authenticate Requests

Use

passport.authenticate()
, specifying the
'oauth2'
strategy, to authenticate requests.

For example, as route middleware in an Express application:

app.get('/auth/example',
  passport.authenticate('oauth2'));

app.get('/auth/example/callback', passport.authenticate('oauth2', { failureRedirect: '/login' }), function(req, res) { // Successful authentication, redirect home. res.redirect('/'); });

Related Modules

Contributing

Tests

The test suite is located in the

test/
directory. All new features are expected to have corresponding test cases. Ensure that the complete test suite passes by executing:
$ make test

Coverage

All new feature development is expected to have test coverage. Patches that increse test coverage are happily accepted. Coverage reports can be viewed by executing:

$ make test-cov
$ make view-cov

License

The MIT License

Copyright (c) 2011-2016 Jared Hanson <http://jaredhanson.net/>

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.