Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Some oauth examples and implementation.

License

NotificationsYou must be signed in to change notification settings

mohd7469/oauth2orize-examples

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

This example shows a provider which grants tokens in exchange for codes for

  • The client application
  • A user of the client application

Install

git clone https://github.com/gerges-beshay/oauth2orize-examples.gitpushd oauth2orize-examplesnpm install

Usage

Locally

node app.js

Visithttp://localhost:3000/login to see the server running locally.

  1. Download either Vercel Desktop (preferred) or Vercel CLI.
  2. Create a.vercelignore file in the root of the package (where package.json is located) with the following contents:
node_modules.eslintrcLICENSE.mdREADME.md
  1. Create avercel.json file in the root of the package with the following contents:
{"version":2,"builds": [    {"src":"app.js","use":"@now/node-server"    }  ],"routes": [    {"src":"/(.*)","dest":"app.js"    }  ]}
  1. Executevercel in the terminal/console. (If the command is not recognized, you might have to restart your computer.)
  2. Once you see the “Success! Deployment ready” message in the terminal, follow the URL of the deployment provided by the Vercel CLI.

Provider / Consumer Walkthrough

Interacting with this provider directly doesn't showcase it's oauth2 functionality.

  1. Visiting/ takes you to a blank page... not too interesting
  2. /login will ask you for credentials.
  • If you login before an oauth request you are taken directly to permission dialog when that request happens
  • Otherwise you will be redirected here and then to the permission dialog
  1. /account will allow you to see your user details

In order to demo what this is actually accomplishing you'll need to run a consumer.

Seehttps://github.com/coolaj86/example-oauth2orize-consumer

API

Below is a mapping of the API in the context of a passport-strategy

  • /dialog/authorize is theauthorizationURL.
  • /oauth/token is thetokenURL
  • /api/userinfo is a protected resource that requires user permission
  • /api/clientinfo is a protected resource that requires a token generated from the client's id and secret
  • Usage ofscope is not demonstrated in this example.

The standalone usable resources are

  • GET / nothing
  • GET /login lets you login, presented by/dialog/authorize if you haven't logged in
  • POST /login processes the login
  • GET /logout lets you logout
  • GET /account lets your view your user info

And then some internal resources that are of no concern for standalone users or consumers

  • POST /dialog/authorize/decision, processes the allow / deny

About

Some oauth examples and implementation.

Resources

License

Stars

Watchers

Forks

Contributors12

[8]ページ先頭
©2009-2025 Movatter.jp