会话不持久[PASSPORT]

时间:2016-12-04 15:21:53

标签: javascript node.js mean-stack oauth2 passport.js

我正在尝试通过OAuth 2.0实现登录,但是我无法使我的会话保持不变,似乎在用户通过身份验证后他们的会话消失了。此外,应用程序似乎陷入了回调函数重定向中的routes / bnetauth.js。

这些是我使用护照的文件

app.js 

var express = require('express');
var path = require('path');
var favicon = require('serve-favicon');
//TOOLS
var logger = require('morgan');
var cookieParser = require('cookie-parser');
var bodyParser = require('body-parser');
var session = require('express-session'); //Persistant sessions
var passport = require('passport');
//REQUIRE MODELS
require('./models/News');
require('./models/Application');
//REQUIRE ROUTES
var bnetauth = require('./routes/bnetauth')(passport);
var api = require('./routes/api');
var public = require('./routes/public');
var admin = require('./routes/admin');

var mongoose = require('mongoose');
mongoose.connect('mongodb://localhost/karatechop');

require('./config/passport')(passport);

var app = express();

app.use(express.static('views'));
// view engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'ejs');

// uncomment after placing your favicon in /public
//app.use(favicon(path.join(__dirname, 'public', 'favicon.ico')));
app.use(logger('dev'));
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: false }));
app.use(cookieParser());
app.use(express.static(path.join(__dirname, 'public')));

app.use(session({
    secret: 'ilovescotchscotchyscotchscotch', // session secret
    resave: true,
    saveUninitialized: true
}));
app.use(passport.initialize());
app.use(passport.session());

//Use Routes
app.use('/auth', bnetauth)
app.use('/api', api);
app.use('/admin', admin);
app.use('/', public);


// catch 404 and forward to error handler
app.use(function(req, res, next) {
  var err = new Error('Not Found');
  err.status = 404;
  next(err);
});

// error handler
app.use(function(err, req, res, next) {
  // set locals, only providing error in development
  res.locals.message = err.message;
  res.locals.error = req.app.get('env') === 'development' ? err : {};

  // render the error page
  res.status(err.status || 500);
});

module.exports = app;

routes / bnetauth.js(通过battle.net登录,因此是btatauth名称)

var express = require('express');
var router = express.Router();


module.exports = function(passport) {

    router.get('/bnet',
        passport.authenticate('bnet'));

    router.get('/bnet/callback',
        passport.authenticate('bnet', {
            failureRedirect: '/' }),
        function(req, res, next){
            console.log('Authenticated: ' + req.isAuthenticated())
           ####THIS IS WHERE IT GETS STUCK####
            res.redirect('https://localhost:3000/');
        });

配置/ passport.js 

var BnetStrategy = require('passport-bnet').Strategy;


var BNET_ID = 'hidden'
var BNET_SECRET = 'hidden'

var User = require('../models/user')


// expose this function to our app using module.exports
module.exports = function(passport) {
    console.log('Entering passport')
    // =========================================================================
    // passport session setup ==================================================
    // =========================================================================
    // required for persistent login sessions
    // passport needs ability to serialize and unserialize users out of session

    // used to serialize the user for the session
    passport.serializeUser(function(user, done) {
        console.log('Serializing')
        done(null, user.id);
    });

    // used to deserialize the user
    passport.deserializeUser(function(id, done) {
        User.findById(id, function(err, user) {
            console.log('Deserializing')
            done(err, user);
        });
    });

    passport.use(new BnetStrategy({
        clientID: BNET_ID,
        clientSecret: BNET_SECRET,
        region: 'eu',
        callbackURL: "https://localhost:3000/auth/bnet/callback"
    }, function(accessToken, refreshToken, profile, done) {
        console.log(profile)
        console.log(accessToken)
        User.findOne({id: profile.id}, function(err, user){
            console.log("Trying!")
            if(err)
                return done(err);

            if(user) {
                return done(null, user);
            } else {
                var newUser = new User();

                newUser.id = profile.id,
                newUser.token = accessToken,
                newUser.battle_tag = profile.battletag

                newUser.save(function(err) {
                    if (err)
                        throw err;

                    return done(null, newUser);
                });
            }
        });
    }));
};

    return router;
}

1 个答案:

答案 0 :(得分:0)

我找到了解决问题的方法!

问题在于config/passport.js

中的序列化和反序列化函数

在我的用户模型中,我有两种形式的ID。

  1. 由mongo应用的_id
  2. 我从users对象保存的id从battle.net传回给我(这是battle.net上用户的ID)。

    3. 在序列化中,将用户序列化到会话时使用的ID将是battle.net id(因为我正在调用user.id而不是user._id

    然后,在从用户对象提取数据的反序列化中,我使用的是mongo的findById函数,该函数使用._id(与用户对象中的.id完全不同,因此返回'undefined'

    将序列化函数中的.id更改为._id解决了我的问题,会话现在正在运行且持续存在。

相关问题
最新问题