passport-symmetric-token
Passport strategy for authenticating with encrypted token based credentials.
This module lets you authenticate in one Node.js application A from another
application B where the user is already authenticated, using a
token based on an encrypted user.field.
Install
$ npm install passport-symmetric-token
Usage
Configure Strategy
The two applications share the same algorithm and secret used for encrypt/decrypt the user information.
Application where user is already logged (B)
var config = {
appWhereYouWantLoginTheUserURL: 'https://example.com',
strategy: {
algorithm: 'aes-256-ctr',
secret: 'YOUR SECRET HERE'
}
}
var Crypto = new require('passport-symmetric-token').Crypto;
var crypto = new Crypto(config.strategy);
var encryptedField = crypto.encrypt(user.field);
app.redirect(config. + '/auth/symmetric-token?token=' + encryptedField)
Application where to you want login the user (A)
Enable the Strategy
The symmetric-token authentication strategy authenticates users using a token
created encrypting user.field. The strategy requires a verify callback,
which accepts these credentials and calls done providing a user.
var strategy = {
algorithm: 'aes-256-ctr',
secret: 'YOUR SECRET HERE'
}
passport.use(new SymmetricTokenStrategy (strategy,
function(decryptedToken, done) {
User.findOne({ field: decryptedToken }, function (err, user) {
if (err) { return done(err); }
if (!user) { return done(null, false); }
return done(null, user);
});
}
));
Authenticate Requests
Use passport.authenticate(), specifying the 'symmetric-token' strategy, to
authenticate requests.
For example, as route middleware in an Express application:
router.get('/auth/symmetric-token',
passport.authenticate('symmetric-token'),
function (req, res) {
res.redirect('/somewhere')
});
Credits
License
Copyright (c) 2015 Jacopo Daeli