我在MEAN STACK App 中使用了passport-twitter。我有一个端点 twitter-login,当 Angular 应用程序到达这一点时,passport-twitter 模块用于对用户进行身份验证。在获取 oaut_token 时,它会将用户重定向到此 url:https ://api.twitter.com/oauth/authenticate?oauth_token=SOME_TOKEN在重定向时,应用程序在标题中抛出上述错误。使用cors 模块或手动设置标题将无济于事。
这是我的代码:
app.ts
import express from 'express';
import mongoose from 'mongoose';
import bodyParser from 'body-parser';
import { DATABASE_URL, JWTSECRET } from './config/config';
import { Routes } from './routes/routes';
const passport = require('passport');
const cors = require('cors');
const cookieSession = require('cookie-session');
const cookieParser = require('cookie-parser');
const passportSetup = require('./config/passport-config');
class App {
public app : express.Application;
public routePrv: Routes = new Routes();
constructor(){
this.app = express();
this.config();
this.mongoSetup();
this.routePrv.routes(this.app);
}
private config(): void {
this.app.use( cors() );
this.app.use( cookieSession({
name: "VIP_Session",
keys: [JWTSECRET],
maxAge: 24 * 60 * 60 * 100
})
);
this.app.use(cookieParser());
this.app.use(bodyParser.json());
this.app.use(bodyParser.urlencoded({ extended: false }));
this.app.use(passport.initialize());
this.app.use(passport.session());
}
private mongoSetup(): void{
mongoose.connect(DATABASE_URL, {useCreateIndex: true, useNewUrlParser: true});
const connection = mongoose.connection;
connection.once('open', () => {
console.log('MongoDB connection established successfullly.');
});
}
}
export default new App().app;
服务器.ts
import app from './app';
import * as http from 'http';
import { PORT } from './config/config';
http.createServer(app).listen(PORT , () => {
console.log('Express server listening on port '+ PORT);
});
路由.ts
import {Request, Response, NextFunction} from "express";
const passport = require('passport');
export class Routes {
public routes(app: any): void {
app.route('/api/twitter-login').get(passport.authenticate('twitter'));
app.route('/api/twitter-callback').get(
passport.authenticate('twitter',
{ failureRedirect: 'http://localhost:4200/login?isAuthenticated=false',
successRedirect : 'http://localhost:4200/login?isAuthenticated=true'
}));
}
护照配置文件
const TwitterStrategy = require('passport-twitter');
import * as mongoose from 'mongoose';
import passport from 'passport';
import { TWITTER_CONSUMER_KEY, TWITTER_CONSUMER_SECRET } from '../config/config';
import { userSchema } from '../models/';
let User = mongoose.model('User' , userSchema);
passport.serializeUser((user : any, done) => {
done(null, user._id);
});
// deserialize the cookieUserId to user in the database
passport.deserializeUser((id, done) => {
User.findById(id)
.then(user => {
done(null, user);
})
.catch(e => {
done(new Error("Failed to deserialize an user"));
});
});
passport.use('twitter', new TwitterStrategy({
consumerKey: TWITTER_CONSUMER_KEY,
consumerSecret: TWITTER_CONSUMER_SECRET,
includeEmail: true,
callbackURL: '/api/twitter-callback'
},
async (token : any, tokenSecret : any, profile : any, done : any) => {
console.log(profile.emails);
// find current user in UserModel
const currentUser = await User.findOne({
user_name: profile.username
});
// create new user if the database doesn't have this user
if (!currentUser) {
const newUser = await new User({
first_name : profile.displayName.split(' ')[0],
last_name : profile.displayName.split(' ')[1],
user_name : profile.username,
email : profile.emails[0].value ,
avatar : profile.photos[0].value ? profile.photos[0].value : '',
twitterId : profile.id
}).save();
if (newUser) {
done(null, newUser);
}
}
done(null, currentUser);
}
));
在做了一些研究之后,我发现来自Angular7 应用程序的api 调用应该使用以下方法之一。
使用锚标记:
<a class="btn btn-twitter" href='http://SERVER_URL/api/twitter-login'> Sign Up / Login with Twitter</a>
或
window.location.href = 'http://SERVER_URL/api/twitter-login'。
使用这种方法,origin 不会为空,并且passport-twitter 的所有回调都可以正常工作。
本文收集自互联网,转载请注明来源。
如有侵权,请联系 [email protected] 删除。
我来说两句