【发布时间】:2019-09-05 22:18:02
【问题描述】:
我正在为我们的应用程序设置身份验证路由,但我似乎无法让 PassportJs 的 Google oAuth 2.0 策略使用 sequelize 给我一个 req.user 对象。下面是我的代码,我试图只剪掉相关部分:)
以下是我的 app.js 的设置方式:
//Dependencies
const creds = require('./credentials');
const express = require('express');
const bodyparser = require('body-parser');
const passport = require('passport');
const flash = require('connect-flash');
const Sequelize = require('sequelize');
const cookieParser = require('cookie-parser');
const session = require('express-session');
const SequelizeStore = require('connect-session-sequelize')(session.Store);
const sequelize = new Sequelize(creds.mssqlAuth);
//Routes
const indexRouter = require('./routes/index');
const authRouter = require('./routes/auth');
//Init
const app = express
//View engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'pug');
//Session config
app.use(session({
secret: 'this is a super secret session sign in string',
store: new SequelizeStore({
db: sequelize,
checkExpirationInterval: 15 * 60 * 1000,
expiration: 8 * 60 * 60 * 1000
}),
resave: true,
saveUninitialized: true,
cookie: { maxAge: 8 * 60 * 60 * 1000, secure : true }
}));
//Init middlewares
app.use(passport.initialize());
app.use(passport.session());
//Init Routes
app.use('/', indexRouter);
app.use('/auth', authRouter);
这是我的身份验证路线:
'use strict';
// Dependencies
const express = require('express');
const passport = require('passport');
const GoogleStrategy = require('passport-google-oauth20').Strategy;
const creds = require('../credentials');
const Models = require('../models');
const Sequelize = require('sequelize');
const sequelize = new Sequelize(creds.mssqlAuth);
//Init router
const router = express.Router();
//Winston logging - dev purposes only
const winston = require('winston');
//Authenticate with Google and get users data
passport.use(new GoogleStrategy({
clientID: creds.googleAuth.clientID,
clientSecret: creds.googleAuth.clientSecret,
callbackURL: 'http://localhost:3000/auth/callback'
},
function(accessToken, refreshToken, profile, done) {
Models.users.findOne({
where: {
email: profile.emails[0].value,
}
}).then( user =>{
if (user){
Models.user.update({
**Update existing user here...**
},
where: { **Update existing user here...**} })
.then( user =>{
return Models.users.findOne({
where: { email: profile.emails[0].value }
});
}).then(user =>{
return done(null, user);
}).catch(error => { return done(error, null)});
}
else if(!user){
//****For the sake of brevity - Same as above, only create the new user****//
}
}).catch(error => { return done(error, null)});
//Serialization
passport.serializeUser(function(user, done) {
done(null, user.id);
});
passport.deserializeUser(function(id, done) {
Models.users.findOne({
where: { id: id }
})
.then(user => done(null, user))
.catch(error => done(error, null));
});
//Initial auth call to Google
router.get('/',
passport.authenticate('google', {
hd: 'ourDomain.com',
scope: ['email'],
prompt: 'select_account'
})
);
//Callback - Send user to index or back to auth screen
router.get('/callback',
passport.authenticate('google',
{ failureRedirect: '/auth',
successRedirect: '/' }
));
我似乎能够验证所有这些,我什至将一个新用户写入我们的用户表。但随后在我的索引路线中,我正在检查以确保 req.user 存在。它始终是未定义的,这会导致返回到 auth 路由。
我想知道这是否与在 //localhost 而不是实际服务器下进行设置有关?此代码旨在成为我们快速开展新项目的样板设置。
奇怪的是,这段代码似乎在每次运行时都会将 3 个单独的会话写入我们的会话表。我不确定这是否是一个不相关的问题,或者这是否是我们这里问题的原因。
有人有指导吗?
【问题讨论】:
-
我们最终找到了解决方案,这与在 localhost 上运行应用程序有关。我会尽快输入答案
标签: javascript node.js express sequelize.js passport.js