forked from oauthjs/express-oauth-server
-
Notifications
You must be signed in to change notification settings - Fork 10
/
Copy pathindex.js
88 lines (71 loc) · 2.27 KB
/
index.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
/**
* Module dependencies.
*/
var bodyParser = require('body-parser');
var express = require('express');
var oauthServer = require('@node-oauth/express-oauth-server');
var render = require('co-views')('views');
var util = require('util');
// Create an Express application.
var app = express();
// Add body parser.
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: false }));
// Add OAuth server.
app.oauth = oauthServer({
model: require('./model')
});
// Post token.
app.post('/oauth/token', app.oauth.token());
// Get authorization.
app.get('/oauth/authorize', function(req, res) {
// Redirect anonymous users to login page.
if (!req.app.locals.user) {
return res.redirect(util.format('/login?redirect=%s&client_id=%s&redirect_uri=%s', req.path, req.query.client_id, req.query.redirect_uri));
}
return render('authorize', {
client_id: req.query.client_id,
redirect_uri: req.query.redirect_uri
});
});
// Post authorization.
app.post('/oauth/authorize', function(req, res) {
// Redirect anonymous users to login page.
if (!req.app.locals.user) {
return res.redirect(util.format('/login?client_id=%s&redirect_uri=%s', req.query.client_id, req.query.redirect_uri));
}
return app.oauth.authorize();
});
// Get login.
app.get('/login', function(req) {
return render('login', {
redirect: req.query.redirect,
client_id: req.query.client_id,
redirect_uri: req.query.redirect_uri
});
});
// Post login.
app.post('/login', function(req, res) {
// @TODO: Insert your own login mechanism.
if (req.body.email !== '[email protected]') {
return render('login', {
redirect: req.body.redirect,
client_id: req.body.client_id,
redirect_uri: req.body.redirect_uri
});
}
// Successful logins should send the user back to /oauth/authorize.
var path = req.body.redirect || '/home';
return res.redirect(util.format('/%s?client_id=%s&redirect_uri=%s', path, req.query.client_id, req.query.redirect_uri));
});
// Get secret.
app.get('/secret', app.oauth.authenticate(), function(req, res) {
// Will require a valid access_token.
res.send('Secret area');
});
app.get('/public', function(req, res) {
// Does not require an access_token.
res.send('Public area');
});
// Start listening for requests.
app.listen(3000);