有很多问题与在社交身份验证后获得未定义的req.user有关,但我没有发现任何问题可以帮助我。
我已经能够成功地使用passport进行twitter身份验证的示例:https://github.com/passport/express-4.x-twitter-example.我试着尽可能地遵循这种模式,但似乎无法让它发挥作用。
具体来说,我能够成功地进行身份验证,但req.user是未定义的。这对我来说毫无意义,因为我的用户数据从示例中返回时没有问题。
我不倾向于认为这是一个中间件问题(就像其他中间件一样),因为中间件与示例中使用的中间件相同。这可能是关于拥有多个域,但我不确定是什么。所有这些都是在本地主机上完成的。
在Twitter中,该应用程序设置为网站为:127.0.0.1:3000/signin以及回调url为:127.0.0.1:2999/auth/twitter/return
正如您所知,我的客户端正在端口3000上工作,它正在对运行在端口2999上的服务器进行调用。
为了简单地介绍代码,127.0.0.1:3000/signin上的客户端有一个按钮,链接到127.0.0.1:2999/auth/twitter,从而启动身份验证请求。在后台,express服务器是在server/index.js--server中创建的。这会导入routes/index.js中的路由,其中一些路由由控制器authenticate.js处理。正如你所看到的,oauth-twitter请求是在authenticate.js中发出的。同样,身份验证成功进行,我被重定向到127.0.0.1:3000/search。然而,正如你在this.twitter_callback中看到的,我正在打印req.user,它是未定义的。
请注意,我已经从代码中编辑了消费者密钥/机密。
server/index.js
var cors = require('cors')
var bodyParser = require('body-parser')
var express = require('express');
var app = express();
var http = require('http').Server(app)
var io = require('socket.io')(http)
// NOT SURE WHY I NEED TO GO BACK 3 FOLDERS TO GET TO PORT_CONFIG
var port = require("../port_config.json").server_port;
var PORT = Number(process.env.PORT || port);
var routes = require('./routes/index.js')
var database = require('./database/db.js')
var db = new database()
app.use(cors()); // middleware that allows cross-platform requests
app.use(bodyParser.json());
db.dbConnect(function(err,db_instance){
// routes
routes(app, db_instance, io)
// send user polls on connection
// TEMPORARY (WILL BE GRABBED ON LOGIN)
var user = null // WILL BE SET AFTER LOGIN
io.on('connection', function(socket) {
var places_attending = db_instance.collection('places_attending')
places_attending.find({}).toArray(function(err,docs){
var places_user_attending = docs.map(doc => {
if (doc.attending.indexOf(user) !== -1) {
return {
id: doc.id,
name: doc.name,
num_attending: doc.attending.length
}
}
})
socket.emit('places_user_attending', places_user_attending);
})
})
})
http.listen(PORT, function () {
console.log('Backend server listening at http://localhost:' + PORT);
})
module.exports = http
routes/index.js
var Search = require('../controllers/search.js')
var Add = require('../controllers/add.js')
var Authenticate = require('../controllers/authenticate.js')
module.exports = function(app, db, io) {
var search = new Search(db, io)
var add = new Add(db, io)
var authenticate = new Authenticate(app)
app.route('/api/search')
.post(search.search_yelp)
app.route('/api/add')
.post(add.add_attendee)
app.route('/auth/twitter')
.get(authenticate.twitter_authentication)
app.route('/auth/twitter/return')
.get(authenticate.twitter_callback)
}
authenticate.js
function authenticate(app) {
var passport = require('passport');
var Strategy = require('passport-twitter').Strategy;
// Configure the Twitter strategy for use by Passport.
passport.use(new Strategy({
consumerKey: REDACTED,
consumerSecret: REDACTED,
callbackURL: 'http://127.0.0.1:2999/auth/twitter/return'
},
function(token, tokenSecret, profile, cb) {
// In this example, the user's Twitter profile is supplied as the user
// record. In a production-quality application, the Twitter profile should
// be associated with a user record in the application's database, which
// allows for account linking and authentication with other identity
// providers.
return cb(null, profile);
}));
// Configure Passport authenticated session persistence.
passport.serializeUser(function(user, cb) {
cb(null, user);
});
passport.deserializeUser(function(obj, cb) {
cb(null, obj);
});
// Use application-level middleware for common functionality, including
// logging, parsing, and session handling.
app.use(require('morgan')('combined'));
app.use(require('cookie-parser')());
app.use(require('body-parser').urlencoded({ extended: true }));
app.use(require('express-session')({ secret: 'keyboard cat', resave: true, saveUninitialized: true }));
// Initialize Passport and restore authentication state, if any, from the
// session.
app.use(passport.initialize());
app.use(passport.session());
this.twitter_authentication = passport.authenticate('twitter')
this.twitter_callback = (
passport.authenticate('twitter', { failureRedirect: 'http://127.0.0.1:3000/signin' }),
function(req, res) {
console.log('REQ.USER OBJECT: ' + req.user)
res.redirect('http://127.0.0.1:3000/search');
}
)
}
module.exports = authenticate
任何帮助都将不胜感激。
问题在于如何指定我的twitter_callback路由。
如果我将回调更改为:
this.twitter_callback = app.get('/auth/twitter/return',
passport.authenticate('twitter', { failureRedirect: 'http://127.0.0.1:3000/signin' }),
function(req, res) {
console.log(req.user)
res.redirect('http://127.0.0.1:3000/search');
})
一切都很好。我认为这与中间件没有按照我最初写的方式正确应用有关。不确定如何重写它以导出它,而不在twitter_callback中使用app.get通过