这可能是一些基本错误,但是我正在看教程,尽管我认为提交登录表单后所做的一切都与我完全一样,但我仍被重定向到"failureRedirect"页面.当我查看护照模块中的源代码时,我有所了解.
this is probably some basic mistake but I am watching tutorial and even though I think I done everything exactly like I should after submitting login form I am redirected to the "failureRedirect" page. When I looked at source code in passport module I something.
之后:
Strategy.prototype.authenticate = function(req, options) { options = options || {}; var username = lookup(req.body, this._usernameField) || lookup(req.query, this._usernameField); var password = lookup(req.body, this._passwordField) || lookup(req.query, this._passwordField); //I added: console.log("U-> " + username); console.log("P-> " + password);控制台说
U-> null P-> null然后,不执行其余操作.
Then after this, rest is not executed.
if (!username || !password) { return this.fail({ message: options.badRequestMessage || 'Missing credentials' }, 400); }我不确定应该在此处发布代码的哪些部分.也许可以帮忙
I am not sure which parts of code should I post here. Maybe this can help
passport.use(new LocalStrategy( function(username, password, done){ console.log("passport.use new LocalStrategy"); //never gets executed//永远不会执行
//never gets executed
User.getUserByUsername(username, function(err, user){ if (err) throw err; if(!user) { console.log("Unknown user"); return done(null, false, {message: "Uknkown User"}); } UserparePassword(password, user.password, function(err, isMatch){ if (err) throw err; if (isMatch) { return done(null, user); } else { console.log("invalid Pass"); return done(null, false, {message: "Invalid Password"}); } }); }); })); router.post("/login", passport.authenticate("local", {failureRedirect:"/users/login/err", failureFlash:"invalid username or pass"}), function(req, res){ console.log("Authenticated OK"); req.flash("success", "You are logged in"); res.redirect("/xx"); }); 推荐答案我不确定您正在执行的确切实现.可能您正在使用原型模式覆盖身份验证功能.但是,使用Passportjs进行身份验证很简单.我最近在我的副项目中做了一个.请通过下面的链接,以我自己的经验来实现Passportjs我在我的技术博客上写了一篇有据可查的文章.希望这对您有帮助
I am not sure about the exact implementation that you are doing. Probably you are overriding the authenticate functionality using the prototype pattern. However, Authentication using Passportjs is simple. I have done one recently in my side project. Please go through the below link with my own experience on implementing Passportjs I have a well documented artcile that i wrote on my tech blog. Hope this helps you
// complete code for the exmaple node rest api authentication using passport var express = require('express'); var passport = require('passport'); var passportHttp = require('passport-http'); var basicStrategy = passportHttp.BasicStrategy; // using the basic authentication var app = express(); app.get('/',function(req,res){ res.send("There you go"); }); app.use(passport.initialize()); // initialize and use it in express passport.use(new passportHttp.BasicStrategy(function(username,password,done) { if(username === password){ done(null,username); //null means no error and return is the username } else{ return done(null,'there is no entry for you!'); // null means nothing to say, //no error. 2nd is the custom statement business rule } })); // this function hits first when there is an API call. function ensureAuthenticated(req,res,next){ if(req.isAuthenticated()){ next(); // next redirects the user to the next api function waiting to be executed in the express framework }else{ res.sendStatus(403); //forbidden || unauthorized } }; // this means all the API calls that hit via mydomain/api/ uses this authentication. //session is false, because its a HTTP API call. // setting this helps passport to skip the check if its an API call or a session web call app.use('/api',passport.authenticate('basic',{session:false})); // this is served the user once the authentication is a susccess app.get('/api/data',ensureAuthenticated,function(req,res){ var somevalue = [{name: 'foo'}, {name: 'bar'}, {name: 'baz'}]; res.send(somevalue); }); app.listen(3250); console.log('listening to port on ' + 3250);更多推荐
Passport.authenticate
发布评论