ciaranj/connect-auth ciaranj/connect-auth

  • Stars
    star
    813
  • Rank 56,088 (Top 2 %)
  • Language
    JavaScript
  • License
    MIT License
  • Created over 14 years ago
  • Updated 8 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
ciaranj/connect-auth
github

ciaranj

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Authentication middleware for connect.

build status connect-auth

Useful authentication strategies based on warden. Available as a npm package.

Provides out of the box authentication strategies for:

  • HTTP Basic - sole or negotiated
  • HTTP Digest - sole or negotiated
  • Anonymous
  • Never
  • Facebook connect (OAuth 2)
  • Github (OAuth 2)
  • Yahoo (OAuth 1.0A)
  • Twitter (OAuth 1.0)
  • RPXNow / janrain SSO
  • BitBucket ( thanks to http://github.com/fjakobs )
  • Foursquare (thanks to http://github.com/stunti)
  • Custom OAuth Provider Strategy (2-Legged & 3-Legged)(Be your own 1.0A OAuth provider!) (Christian Amor Kvalheim & Evan Prodromou)
  • Sina (Danny Siu)
  • Google (Oauth 1 & OAuth 2 clients)
  • Yammer (Stephen Belanger)
  • Linkedin (Stephen Belanger)
  • Skyrock.com (Nicolas Quiénot)
  • Mozilla Persona

Running with npm

% npm install connect-auth
% cp examples/example_keys_file.js examples/keys_file.js

Edit keys_file.js

Run

% node examples/app.js
% open http://localhost

Changelog

  • 0.6.0
    Google OAuth2 strategy now supports offline access (Oz Katz)
    New Mozilla Persona Strategy (verifier, not IdP)
    BREAKING: Moves dependencies to connect 2.7.x and node >=0.8.0. This should make modern installations easier to keep up to date. (Evan Prodromou )
  • 0.5.4
    Fixes Twitter strategy, they now require the oauth_verifier query parameter to be sent (Michael "Z" Goddard)_
  • 0.5.3
    Fix GitHub strategy to work with v3 of their API (older API versions no longer work!) (Dennis Reimann)
    Added new Skyrock.com provider (Nicolas Quiénot)
  • 0.5.2
    Allow multiple users per application in Oauth Provider (3 legged) (Evan Prodromou)
    Improved the behaviour of the OAuth Provider's Form/POST signing behaviours ( Evan Prodromou )
    Fix broken 3-legged OAuth provider support ( Jason Chu )
  • 0.5.1
    Change Google OAuth2 strategy to only request (and retrieve) the authenticating user's profile information (and optionally their e-mail address.)
  • 0.5.0
    Update to support connect 2.0.0
    New 2-legged OAuth provider support ( Jason Chu )
    Yammer Support added (Stephen Belanger)
    Linkedin Support added (Stephen Belanger)
    Support for configuring Facebook's OAuth dialog mode ( Barada Sahu )
    Stopped some global scope pollution ( Fabian Jakobs )
  • 0.4.1
    Provide support to allow the authentication scope to 'survive' authentication redirects e.g. twitter, facebook etc. Allowing for scope usage with these strategies.
  • 0.4.0
    Introduce new tracing capabilities (provide an option of trace:true/function when constructing the auth middleware)
    Introduce 2 new 'events/callbacks' : firstLoginHandler and logoutHandler to allow fairly standard authentication strategies.
    Restructured the code to help with others reading it :)
    Although I'm bumping the version number this release is still backwards compatible with 0.3.x, it just introduces significant new functionality.
  • 0.3.2
    Fixed Google OAuth Strategy
    Provided new Google OAuth2 Strategy
  • 0.3.1
    Fixing package.json (no real changes)
  • 0.3.0
    Modified 'request.Authenticate(...)' to pass back 'undefined' when an active authentication strategy has required a communication with the browser to fully complete the authentication process. - Possible Breaking change
    Fixed various failure cases for nearly all strategies (utilising the new 'undefined' authentication type)
    Migrated Foursquare strategy to OAuth2 (requires at least v0.9.3 of node-oauth)
    New getglue strategy logout now takes an (optional) callback [this should be the default that is used.]
  • 0.2.3
    Added support for BitBucket (Thanks http://github.com/fjakobs)
    Fixed bug introduced in 0.2.2 when dealing with strategies that 'fail'
  • 0.2.2
    Added index.js ( Pau Ramon Revilla ) to root folder for easier inclusion
    Added support for SSO with http://t.sina.com.cn/ ( Danny Siu )
    Added hd query parameter to allow Google Hosted Domain for google sSO strategy ( Olmo Maldonado )
    Adds prelimenary support for the new HTTP MAC authentication scheme as defined by RFC-to-be: http://tools.ietf.org/html/draft-hammer-oauth-v2-mac-token ( Eran Hammer-Lahav )
    Added support for SSO with google (not using OpenId, but OAuth, so an intermediary approach) (Masahiro Hayashi)
    Twitter strategy now supports OAuth Callback Urls (Ben Marvell)
    Added option 'isAutoRespond' to handle authentication errors by the application with the HTTP Schemes. (Eran Hammer-Lahav)
    Support for 'scoped' users (aka multiple con-current authentications) (Logan Aube)
  • 0.2.1
    Removed dead file that was seemingly breaking nDistro
  • 0.2.0
    Updated HTTP strategies c/o Robbie Clutton no longer require passwords to be stored in the plain. - Breaking change
    Changed the default javascript file from auth.js to index.js. - Breaking change
    Fixed the isAuthenticated mechanism to work with mongodb (Lakin Wecker, Richard Walsh)
    Realm parameter now ignored in the Authorization header for the OAuth Provider strategy (Wade Simmons)
  • 0.1.3
    Strategies can now be written that do not require the session middleware.
  • 0.1.2
    Added in new strategy that allows your authentication strategy to be a custom OAuth provider.
  • 0.1.0
    New simplified configuration (connect idiomatic) of strategies implemented.

License

Released under the MIT license (see LICENSE file)

More Repositories

1

node-oauth

OAuth wrapper for node.js
JavaScript
2,438
star
2

flickrnode

non-blocking api for using Flickr with node.js
JavaScript
69
star
3

express-auth

The beginnings of an authentication framework for expressjs.com Largely a port (at least in terms of intent) of http://github.com/hassox/warden
JavaScript
44
star
4

boardie

Online fully collaborative electronic whiteboard based upon node.js
JavaScript
27
star
5

protovisonrails

Protovis Charting Rails plugin
JavaScript
19
star
6

redmine_laconi.ca

A test plugin for redmine to send status updates to identi.ca/twitter etc.
Ruby
15
star
7

MySqueakQl

ObjectiveC Clean room implementation of a *very* basic MySql Client library
Objective-C
11
star
8

express-session-mongodb

MongoDB backed sessions for the expressjs.com framework
JavaScript
11
star
9

express-session-cookie

A Cookie based session for express
JavaScript
6
star
10

kiwi

node.js package management system -- feature rich, fast, inspired by GIT / RubyGems / Gemcutter / Kiwi Fruits :D
Ruby
5
star
11

EscapeVelocity

Java
3
star
12

OIDCPhoneGapSample

OIDC PhoneGap Implicit Client Sample
JavaScript
3
star
13

my_wireit

Custom wireit example
JavaScript
3
star
14

chartled

pure node.js graphite-a-like
JavaScript
2
star
15

prometheus

Nothing to see.
JavaScript
2
star
16

grunt-elevator

Automatically elevate your grunt script's UAC privileges in windows
JavaScript
1
star
17

help.github.com

GitHub help guides
JavaScript
1
star
18

meh

meh
JavaScript
1
star
19

cardisi.us

waitnsee
JavaScript
1
star
20

moosockets

WebSockets client wrapper for mootools (port of jquery plugin: http://bloga.jp/ws/jq/ )
JavaScript
1
star
21

bc2slidetemplates

Possible template for my barcamp2 slides
1
star
22

luntbuild

Un-Official Mirror of Luntbuild ( luntbuild.javaforge.com ) Also adds support for Git SCM.
Java
1
star