Sapper

Sapper

关注
发信
关注(28)粉丝(399)

express - 在Sapper路由或Sapper中间件中使用通行证

过去,我曾与ExpressJS一起使用过passportjs,目前我正尝试将其与Sapper应用程序结合使用,但是我无法弄清楚该如何在我的路由中加入passport.authenticate(),因为它是一个精巧的路由,而不是快速的路由。另外,如果我尝试运行server.js文件中的所有内容,则会遇到如何将其与sapper中间件集成的问题。
您如何在Sapper中间件或Sapper路由js文件(这是前端而不是服务器路由)中/与Sapper中间件一起使用passport.authenticate()?

我的server.js是典型的:

const sirv = require('sirv');
import express from 'express';
var cookieParser = require('cookie-parser');
import * as sapper from '@sapper/server';
const session = require('express-session');
var passport = require('passport');
var mongoose = require('mongoose');
mongoose.connect('mongodb://localhost/passport', {
 useNewUrlParser: true });
const MongoStore = require('connect-mongo')(session);
const bodyParser = require('body-parser');

const app = express();
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: false }));
app.use(cookieParser());

app.use(session({
    secret: 'keyboard cat',
    resave: false,
    saveUninitialized: true,
    store: new MongoStore({ url: 'mongodb://localhost/passport' }),
    cookie: { secure: false, maxAge: 1000 * 60 * 60 * 24 * 7 }
}));
app.use(passport.initialize());
app.use(passport.session());

const { PORT, NODE_ENV } = process.env;
const dev = NODE_ENV === 'development';

const assets = sirv('static', {
    maxAge: 31536000, // 1Y
    immutable: true
});

 app.use(assets, sapper.middleware({
    session: req => ({
        user: req.session && req.session.user
    })})).listen(process.env.PORT, err => { if (err) console.log('error', err); });

如您所见,Sapper只是一个中间件,因此,如果我想对用户进行身份验证并将其发送到前台/sapper,则需要弄清楚如何在中间件函数中运行passport.authenticate(),对吗?

如果我想在路线JS文件中使用 Passport ,这是工兵的前路路线:
//How to import passport.js here to make passport.authenticate() middleware available?
import passport from './passport';
import User from './mongoso';

export async function post(req, res, next) {

    res.setHeader('Content-Type', 'application/json');
    /* Retrieve the data */
    var data = req.body;


    req.session.user = data.email;
    console.log("Here's the posted data:", data);
    console.log("information in the session is:", req.session);

    /* Returns the result */
    return res.end(JSON.stringify({ Email: req.session.user }));
    //return res.json({ data: data });

}

有任何想法吗?如果有人可以提供帮助,我们将不胜感激。

最佳答案

您不需要在sapper.middleware中运行passport.authenticate()。您需要先添加本地 Passport 策略,然后执行serializeUser和deserializeUser,然后创建路由以进行passport.authenticate和
之后,在sapper.middleware中捕获req.session.passport对象。我不使用本地 Passport 策略,但是这是我的工作服务器server.js和 Passport -github策略。

//server.js

import sirv from 'sirv';
import express from 'express';
import passport from 'passport';
import { Strategy } from 'passport-github';
import bodyParser from 'body-parser';
import session from 'express-session';
import sessionFileStore from 'session-file-store';
import compression from 'compression';
import * as sapper from '@sapper/server';

const { PORT, NODE_ENV } = process.env;
const dev = NODE_ENV === 'development';

const FileStore = sessionFileStore(session);

passport.use(new Strategy({
    clientID: 'someClientID',
    clientSecret: 'someClientSecret',
    callbackURL: 'http://localhost:3000/auth/callback',
}, (accessToken, refreshToken, profile, cb) => {
    // console.log('success');
    return cb(null, profile);
}));

passport.serializeUser(function (user, cb) {
    cb(null, user);
});

passport.deserializeUser(function (obj, cb) {
    cb(null, obj);
});

const expressServer = express()
    .use(passport.initialize())
    .use(bodyParser.json())
    .use(session({
        secret: 'conduit',
        resave: false,
        saveUninitialized: true,
        cookie: {
            maxAge: 31536000
        },
        store: new FileStore({
            path: `.sessions`
        })
    }))

    .get('/auth/login',
        passport.authenticate('github'))
    .get('/auth/callback',
        passport.authenticate('github', { failureRedirect: '/auth/login' }),
        (req, res) => {
            res.redirect('/');
            //console.log(req.user.username);
        })
    .get('/auth/logout', (req, res) => {
        req.logout();
        req.session.destroy( function (err) {
            res.redirect('/');
        });
    })

    .use(
        compression({ threshold: 0 }),
        sirv('static', { dev }),
        sapper.middleware({
            session: req => {
                const user = req.session.passport ? req.session.passport.user.username : null;
                // console.log(req.session.passport.user.username);
                return { user };
            }
        })
    )
if (dev) {
    expressServer.listen(PORT, err => {
        if (err) console.log('error', err);
    });
}

export { expressServer }

另外,您可以在客户端中捕获该{user}对象
通过商店使用const { session } = stores(); console.log($session)来建立精简版路线组件,或者您可以通过特殊的preload函数获取它,以在呈现页面之前应用它,例如在index.svelte中

<script context="module">
  export function preload(page, { user }) {
    return { user };
  }
</script>

<script>
  import { stores } from "@sapper/app";
  import { onMount } from "svelte";

  const { session } = stores();
  export let user;

  onMount(() => {
    console.log($session);
  });

</script>

<div>
  {#if !user}
    <p>Not logged in</p>
  {:else}
    <p>Logged in!</p>
  {/if}
</div>

在这里,我同时使用两种方法,但是大多数时候就足够了
使用preload,无需直接访问商店中的 session 。
希望这会帮助你。祝你好运!

关于express - 在Sapper路由或Sapper中间件中使用通行证,我们在Stack Overflow上找到一个类似的问题:https://stackoverflow.com/questions/58559650/

10-09 22:18
Powered by LMLPHP ©2024 Sapper 0.034493