使用Auth0和node.js將身份驗證集成到我的應用程序中

Question

我正在開發cloud9環境中的應用程序。使用：

• 節點4.43
• 表達4.13.4

我已經集成我演示Auth0佔了我的上開發應用程序。 我能夠登錄（被重定向到我的應用程序的第一頁），但是當我打印req.isAuthenticated（）時我變得錯誤。也req.user是未定義的。

我按照auth0的quick start爲node.js中

我附加了那些主要invovled三個文件：

app.js：

var express = require('express'), 
    app = express(), 
    BodyParser = require("body-parser"), 
    mongoose = require("mongoose"), 
    student = require ("./models/student"), 
    students_class = require("./models/class"), 
    // ============= 
    //  auth0 
    // ============= 
    passport = require('passport'), 
    strategy = require('./models/setup-passport'), 
    cookieParser = require('cookie-parser'), 
    session = require('express-session'); 
    app.use(cookieParser()); 
    app.use(session({ secret: 'FpvAOOuCcSBLL3AlGxwpNh5x-U46YCRoyBKWJhTPnee2UELMd_gjdbKcbhpIHZoA', resave: false, saveUninitialized: false })); 
    app.use(passport.initialize()); 
    app.use(passport.session()); 

    app.get('/login',passport.authenticate('auth0', { failureRedirect: '/url-if-something-fails' }), 
    function(req, res) { 

    res.send(req.user); 
    if (!req.user) { 
     throw new Error('user null'); 
    } 
    res.redirect("/", {username: req.user}); 
    }); 





mongoose.connect("mongodb://localhost/myapp"); 

// ============================ 
//   routes 
// ============================ 

var classRoutes = require("./routes/class"), 
    indexRoutes = require("./routes/index"), 
    studentRoutes = require("./routes/student"), 
    assocRroutes = require ("./routes/assoc"); 

// ============================================ 
//   configuring the app 
// ============================================ 
app.set("view engine", "ejs"); 
app.use(express.static ("public")); 
app.use(BodyParser.urlencoded({extended: true})); 
app.use(classRoutes); 
app.use (indexRoutes); 
app.use(studentRoutes); 
app.use(assocRroutes); 





app.listen(process.env.PORT, process.env.IP, function() { 
    console.log('Attendance Server is Running ....'); 
}); 

設置-passport.js

var passport = require('passport'); 
var Auth0Strategy = require('passport-auth0'); 

var strategy = new Auth0Strategy({ 
    domain:  'me.auth0.com', 
    clientID:  'my-client-id', 
    clientSecret: 'FpvAOOuCcSBLL3AlGxwpNh5x-U46YCRoyBKWJhTPnee2UELMd_gjdbKcbhpIHZoA', 
    callbackURL: '/callback' 
    }, function(accessToken, refreshToken, extraParams, profile, done) { 
    // accessToken is the token to call Auth0 API (not needed in the most cases) 
    // extraParams.id_token has the JSON Web Token 
    // profile has all the information from the user 
    return done(null, profile); 
    }); 

passport.use(strategy); 

// This is not a best practice, but we want to keep things simple for now 
passport.serializeUser(function(user, done) { 
    done(null, user); 
}); 

passport.deserializeUser(function(user, done) { 
    done(null, user); 
}); 

module.exports = strategy; 

index.js（實際最前一頁在這裏我想成功登錄後重新定向頁面：

var express = require("express"); 
var passport = require('passport'); 
var ensureLoggedIn = require('connect-ensure-login').ensureLoggedIn(); 
var router = express.Router(); 
var student = require ("../models/student"); 

//INDEX 

router.get("/callback", function(req, res) { 
    student.find({}, function(err, student) { 
     console.log(req.isAuthenticated()) 
     if (err) { 
      console.log(err); 
     } else { 
      res.render("home/index.ejs", { 
       students: student 
      }); 
     } 

    }); 
}); 


module.exports = router; 

有什麼建議可能會出錯？ 對我來說也很奇怪，在app.js上，指南正在初始化變量策略，但實際上從來沒有使用它。

BUMP

Answer 1

你是不是要求在/callback端點passport.authenticate()。請參閱比較：https://auth0.com/docs/quickstart/webapp/nodejs#5-add-auth0-callback-handler

// Auth0 callback handler 
app.get('/callback', 
    passport.authenticate('auth0', { failureRedirect: '/url-if-something-fails' }), 
    function(req, res) { 
    if (!req.user) { 
     throw new Error('user null'); 
    } 
    res.redirect("/user"); 
    });