2

I am using express and passport to build a rest api backend and it seems that my localStrategy is not getting called on request.

The entry point of my application looks like the following:

app.js

var fs = require('fs');
var express = require('express');
var mongoose = require('mongoose');
var passport = require('passport');
var config = require('./config/config');

var morgan       = require('morgan');
var cookieParser = require('cookie-parser');
var bodyParser   = require('body-parser');

var app = express();

app.use(morgan('dev')); // log every request to the console
app.use(cookieParser()); // read cookies (needed for auth)
app.use(bodyParser.urlencoded({extended:true})); 

app.use(passport.initialize());

//connect to mongodb
mongoose.connect(config.db, options);

//load models (shorten forEach)
...
require(__dirname + '/models/' + file)(mongoose);

//load passport config
require('./config/passport')(mongoose, passport);

//load routes
require('./config/routes')(app, passport);

//start server
var server = app.listen(3000, ....

routes.js

...
app.post('/auth', function(req, res){
    console.log("reached auth endpoint");
    console.log(req.body);
    passport.authenticate('local', { session: false}, function(err, user, info){
      console.log("Test:"+user);
      if(err) {
        console.log("Error1");
        return next(err)}
      if(!user){
        console.log("Error2");
        return res.json(401, {error: 'Auth Error!'});
      }
      console.log("Error3");
      var token = jwt.encode({ username: user.email }, "hanswurst");
      res.json({token: token});
    }),
    function(req, res){
      console.log("passport user", req.user);
    };
  });

passport.js

...
passport.use(new LocalStrategy({
    usernameField: 'email',
    passwordField: 'password',
    passReqToCallback: true
  },
  function(email, password, done){
    console.log("TEST");
    User.findOne({'email': email}, function(err, user){
      if(err){
        console.log("Unknown error");
        return done(err);
      }
      if(!user){
        console.log("No User found");
        return done(null, false);
      }
      if(!user.validPassword(password)){
        console.log("Password was incorrect");
        return done(null, false);
      }
      console.log("User was found");
      return done(null, user);
    });
  }
));

The only result i get on form request is

reached auth endpoint
{ email: 'test@mail.com', password: 'secret' }
POST /auth - - ms - -

For me the request body looks fine and it should enter my LocalStrategy. I am bit helpless as i am not getting any other console output from this point.

4

2 回答 2

4

首先,您在 routes.js 中有一些基本的 javascript 语法错误。此处的这部分(为清楚起见删除了许多代码)已损坏:

passport.authenticate(/*...*/), function(req, res) {/*..*/};

可能是您刚刚console.log在错误的位置添加了一些调用。为了消除混淆,passport.authenticate()不立即执行身份验证,它所做的是为您返回一个中间件。例如,您可以像这样使用它:

var middleware = passport.authenticate(...);
app.post('/auth', middleware);

因此,要解决您的问题,请尝试立即调用 authenticate 返回的中间件,如下所示:

app.post('/auth', function(req, res, next) {
    console.log("reached auth endpoint");
    console.log(req.body);
    passport.authenticate('local', {
        session: false
    }, function(err, user, info) {
            console.log("Test:" + user);
            if (err) {
                console.log("Error1");
                return next(err);
            }
            if (!user) {
                console.log("Error2");
                return res.json(401, {
                    error: 'Auth Error!'
                });
            }
            console.log("Error3");
            var token = jwt.encode({
                username: user.email
            }, "hanswurst");
            res.json({
                token: token
            });
        })(req, res, next);
});

另外,我必须告诉你require缓存模块。要config/passport.js了解猫鼬和护照,您不应将它们作为参数提供,如下所示:

require('./config/passport')(mongoose, passport);

只需config/passport.js像这样再次要求它们:

// (in config/passport.js)
// Both of these vars point to the same thing you require'd in app.js
var mongoose = require('mongoose');
var passport = require('passport');
于 2015-05-31T17:33:31.257 回答
4

[编辑]我发现了问题。因为 Express 不再支持 body-parser 等子包,您需要单独设置它们。如果我一开始就这样做了,一切都会好起来的,但我只激活了:

app.use(bodyParser.urlencoded({extended:true}));

你还需要设置

app.use(bodyParser.json());

让它正常工作。愚蠢的疏忽,但仍然让我难倒了 3 天。

我有同样的问题,但似乎没有什么对我有用。

我将按执行顺序从上到下删除代码

玉模板

.navbar-right(ng-controller="mvNavBarLoginCtrl")
  form.navbar-form
    .form-group
      input.form-control(placeholder='Email', ng-model='username')
    .form-group
      input.form-control(type='password', placeholder='password', ng-model='password')
    button.btn.btn-primary(ng-click="signIn(username,password)") Sign In

下一步登录控制器

angular.module('app').controller('mvNavBarLoginCtrl',function($scope, $http){
  $scope.signIn = function (username, password){

    console.log('un = ' + username);   // Prints fine in the console
    console.log('pw = ' + password);   // Prints fine in the console

    $http.post('/login', {username: username, password: password}).then(function(response){
      if(response.data.success){
        console.log('Logged in!!');
      }
      else{
        console.log('Failed to log in!!');
      }

    });
  }
});

下一步路线处理程序

app.post('/login', function(req, res, next){
      console.log(req.username);   // Already empty
      console.log(req.password);   // Already empty
      console.log(req.body);       // Already empty

      // Because of the use of AngularJS we can not call passport directly, 
      // missing req and res will break the code 

      var auth = passport.authenticate('local', function(err, user){

          console.log(user);     // prints undefined

          if(err){return next(err);}

          if(!user){res.send({success:false});}

          req.logIn(user, function(err){

              if(err){return next(err);}

              res.send({success: true, user: user});
          });

      });
      // call the auth function to start authenticate
      auth(req, res, next);
  });

下一步护照认证处理程序

var User = mongoose.model('User');

passport.use(new LocalStrategy({
      username: 'username',
      password: 'password'
    },
    function(username, password, done){

      console.log("called");  // never printed

      // find user based in mongoose schema see 'var User' 
      User.findOne({userName:username}).exec(function (err,user){

        console.log(user)     // never printed
        if(err){return done(err);}

        if(user){
          return done(null, user);
        }
        else{
          return done(null, false);
        }
      });
    }
));


passport.serializeUser(function(user, done){
  if(user) {
    done(null, user._id);
  }
});

passport.deserializeUser(function(id, done){
  user.findOne({_id:id}).exec(function(err, user){
    if(user) {
      done(null, user);
    }
    else{
      done(null, false);
    }
  });
});

控制台中没有错误,也没有节点输出。我很难过,并阅读了大约 5 个类似问题的其他线程,但没有任何效果。

如果有人能给我金针,我将永远感激不尽。

于 2015-10-19T23:46:52.007 回答