Node.js 4 - Passport custom callback

10 Feb 2015

In my previous post, I wrote about how to use passport authentication with Basic Strategy. One thing that bugged me was I cannot return a result right from passport callback. Below is the code from my previous post.

//server.js
var server = restify.createServer();

server.use(restify.bodyParser());
server.use(passport.initialize());

server.get('/users',
  passport.authenticate('basic',{ session: false}),
  function( req, res ){
      console.log('match');
      res.end('Authorized ja');
  }
);

You can see that after we authenticate user, we proceed to the function(req,res){ block. In this block, we have to query information for user again which is redundant work. We can avoid this by using Passport custom callback as below

//passport custom callback
server.post('/auth',
  function(req, res, next) {
    passport.authenticate('basic', function (err, user, info) {
      if (err) {
        return next(err);
      }
      if (!user) {
        res.send({ status:"error" , message: 'Incorrect username/password'});
        return res.end();
      }
      res.send(user);
      res.end();

    })(req, res, next);
  }
);

passport.use(new BasicStrategy(
  function(username, password, done) {

    userService.login(username,password, function(err, user, info){
      return done(null, user);
    });
  }
));

With this, we can authenticate user and return the result to respond at the same time. However, this might not be your desired behavior for Passport Strategy because it’s against Single responsibility principle.

In the end, it’s up to you to decide which one suits you most. Until next time!

Pongsakorn Semsuwan

Node.js 4 - Passport custom callback

Related Posts

Javascript Structure 1 (โครงสร้าง javascript webapp) 13 Jun 2016

Using slick carousel with Meteor React 20 Mar 2016

Node.js learning progress 3 - Restify and Passport(Basic) 06 Feb 2015