Warwick Web sign-on (OAuth) authentication strategies for Passport.


Passport strategies for authenticating with University of Warwick Web sign-on using OAuth 1.0a.

This module lets you authenticate using Warwick SSO in your Node.js applications. By plugging into Passport, Warwick authentication can be easily and unobtrusively integrated into any application or framework that supports Connect-style middleware, including Express.

$ npm install passport-warwick-sso-oauth

The Warwick SSO OAuth 1.0 authentication strategy authenticates users using a University of Warwick account and OAuth tokens. The strategy requires a verify callback, which accepts these credentials and calls done providing a user, as well as options specifying a consumer key, consumer secret, and callback URL.

passport.use(new WarwickSSOStrategy({
    callbackURL: ""
  function(token, tokenSecret, profile, done) {
    User.findOrCreate({ warwickUniversityId: }, function (err, user) {
      return done(err, user);

Use passport.authenticate(), specifying the 'warwick-sso' strategy, to authenticate requests.

For example, as route middleware in an Express application:

  passport.authenticate('warwick-sso', {}));

  passport.authenticate('warwick-sso', { failureRedirect: '/login' }),
  function(req, res) {
    // Successful authentication, redirect home.

Warwick web sign-on currently does not support OAuth 2.0.

For a complete, working example, refer to the OAuth 1.0 example.

$ npm install --dev
$ make test

The MIT License

Copyright (c) 2013 University of Warwick <>