login-plus
Advanced tools
Readme
login service for express
language: 
also available in:
> npm install login-plus
var express = require('express');
var app = express();
var bodyParser = require('body-parser');
app.use(bodyParser.urlencoded({extended:true}));
var loginPlus = new (require('login-plus').Manager);
loginPlus.init(app,{ successRedirect:'/index' });
loginPlus.setValidator(
function(username, password, done) {
if(username === 'admin' && password === 'secret.pass'){
done(null, {username: 'admin', when: Date()});
}else{
done('username or password error');
}
}
);
app.get('/user-info',function(req,res){
res.end(
'user: '+req.session.passport.username+
' logged since '+req.session.passport.when
);
});
From this line on, loginPlus controls whether the session is logged.
If not, it redirects to /login.
| opts | default opts | use |
|---|---|---|
| loginPagePath | internal [1] | path to the .jade file that contains the login screen |
| loginPageServe | jade motor | function that serves the login page (use this function when a .jade file is not desired) |
| baseUrl | / | base URL for all other URLs |
| successRedirect | mandatory | successful login path |
| successReturns | false | returns to previous path when login |
| loginUrlPath | /login | URL to the login page |
| noLoggedUrlPath | /login | URL to the unlogged page where the authentification is required when trying to log in |
| failedLoginUrlPath | /login | URL to the failing login page |
| userFieldName | username | name of the "username" field |
| secret | random key | keys for cookies |
| alreadyLoggedIn | successRedirect | /login redirection when is already logged |
| skipCheckAlreadyLoggedIn | false | allows /login redirects to login page even if the user is already logged |
| php | false | hibrid login system mergin with PHP |
| .save_path | path of PHP session files | |
| .varLogged | $SESSION variable name for login control | |
| loginForm | opciones del formulario de login | |
| .usernameLabel | Username | username label |
| .passwordLabel | Password | password label |
| .buttonLabel | Log In | button label |
| .formTitle | login | form title |
| .formImg | form image | |
| .autoLogin | false | enable direct login from URL with ?u=user&p=pass&a=1 |
| store.module | null | function that returns the constructor of the module to store sessions (it receive the express-session instance as first argument) |
From this point on, the middlewares can access the data session contained in req.user.
It registers the function that the user must validate and in case of success, obtains
the additional necessary information for the session (for example, role or level of permission)
that will be available in req.session.passport
FAQs
login service for express
The npm package login-plus receives a total of 19 weekly downloads. As such, login-plus popularity was classified as not popular.
We found that login-plus demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
The White House is addressing fragmented cybersecurity regulations as CISOs report spending up to 50% of their time on compliance, aiming to harmonize requirements and improve cybersecurity outcomes.
Security News
Research
The Socket Research Team has identified a malicious Python package that is typosquatting the popular crytic-compile utility, frequently used in popular toolkits and development environments for smart contracts and crypto applications.
Security News
NIST updates on the NVD backlog after media reports that over 50% of KEVs were unenriched since mid-February. They've contracted additional support and partnered with CISA to clear the backlog by fiscal year-end.