node package manager


Asana API OAuth2 authentication strategy for Passport


Passport Authentication Strategy for Asana's API using OAuth2

$ npm install passport-asana

The Asana authentication strategy authenticates users using an Asana account and OAuth tokens. The strategy requires a verify callback, which accepts these credentials and calls done providing a user, as well as options specifying a client id , client secret, and callback URL.

passport.use(new AsanaStrategy({
    clientID: '1234567890123',
    clientSecret: '5ddf23ae77cbe6bff02430f8f37c4900'
    callbackURL: ''
  function(accessToken, refreshToken, profile, done) {
    User.findOrCreate({ userId: }, function (err, user) {
      return done(err, user);

Use passport.authenticate(), specifying the 'Asana' strategy, to authenticate requests.

For example, as route middleware in an Express application:

  function(req, res){
    // The request will be redirected to for authentication, so this
    // function will not be called.

  passport.authenticate('Asana', { failureRedirect: '/login' }),
  function(req, res) {
    // Successful authentication, redirect home.