passport-http-header-strategy

HTTP Bearer set header authentication strategy for Passport

1.1.0
latest
Source
npm

Version published: 4 years ago

Weekly downloads: 13K; decreased by-39.73%

Maintainers: 1

Weekly downloads

Created: 9 years ago

Source

passport-http-header-strategy

HTTP define header authentication strategy for Passport

Install

$ npm install passport-http-header-strategy

Usage

header set header(default authorization)
param set use req.body or req.query token name to request(default access_token)
passReqToCallback if eturn

Configure Strategy

passport.use(new headerStrategy({header: 'X-APP-TOKEN', param: 'app_token', passReqToCallback: true},
  function(req, token, done) {
    User.findOne({ token: token }, function (err, user) {
      if (err) { return done(err); }
      if (!user) { return done(null, false); }
      return done(null, user, { scope: 'all' });
    });
  }
));

Authenticate Requests

Use passport.authenticate(), specifying the 'bearer' strategy, to authenticate requests. Requests containing bearer tokens do not require session support, so the session option can be set to false.

For example, as route middleware in an Express application:

app.get('/profile', 
  passport.authenticate('header', { session: false }),
  function(req, res) {
    res.json(req.user);
  });

Examples

examples - example

Tests

$ npm install
$ mocha

Reference

ReferJared Hanson passport-http-bearer module

License

The MIT License

Keywords

FAQs

What is passport-http-header-strategy?

Is passport-http-header-strategy popular?

Is passport-http-header-strategy well maintained?

Package last updated on 28 Jun 2020

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install