passport-http-header-strategy

HTTP Bearer set header authentication strategy for Passport

1.0.4
Source
npm

Version published: 9 years ago

Weekly downloads: 23K; increased by89.17%

Maintainers: 1

Weekly downloads

Created: 9 years ago

Source

passport-http-header-strategy

HTTP define header authentication strategy for Passport

Install

$ npm install passport-http-header-strategy

Usage

header 设置请求头(默认authorization)
param 设置以req.body或req.query参数形式请求的token名称(默认access_token)
passReqToCallback 是否返回

Configure Strategy

passport.use(new headerStrategy({header: 'X-APP-TOKEN', param: 'app_token', passReqToCallback: true},
  function(req, token, done) {
    User.findOne({ token: token }, function (err, user) {
      if (err) { return done(err); }
      if (!user) { return done(null, false); }
      return done(null, user, { scope: 'all' });
    });
  }
));

Authenticate Requests

Use passport.authenticate(), specifying the 'bearer' strategy, to authenticate requests. Requests containing bearer tokens do not require session support, so the session option can be set to false.

For example, as route middleware in an Express application:

app.get('/profile', 
  passport.authenticate('header', { session: false }),
  function(req, res) {
    res.json(req.user);
  });

Examples

examples - 示例

Tests

$ npm install
$ mocha

参考

参考Jared Hanson的passport-http-bearer模块

License

The MIT License

Keywords

FAQs

What is passport-http-header-strategy?

Is passport-http-header-strategy popular?

Is passport-http-header-strategy well maintained?

Package last updated on 31 Mar 2016

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install