Implementing Passport authentication

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP





.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty margin-bottom:0;







up vote
2
down vote

favorite
1












Here is code implementing Passport authentication with a Google Strategy. It uses Mongoose to store and retrieve user data. Note with Mongoose you can choose to use promises or not to use promises. I chose to use promises.



You might need to be familiar with both of these technologies to review this code if not check out the two links I provided.



I have included both files. I'm trying to find a way to refactor so that I don't handle errors for Mongoose in my Passport file. Currently I'm passing the promise to my Passport file, but I'm not sure if there is a better way to do this.



The code is full of comments below. Please let me know if more clarification or context is needed.



Passport File



const passport = require('passport');
const GoogleStrategy = require('passport-google-oauth').OAuth2Strategy;
const DBM = require('../../database/mongoose');
const helper = require('../../config/helper');

passport.use('google', new GoogleStrategy(helper.getPassport(), getOrCreateProfile));

// called during authorization
// google will give us an id on profile which is guaranteed to be unique
// we will use this to store each user's profile in mongoDB
// call getUser to see if the person has already been stored
function getOrCreateProfile (accessToken, refreshToken, profile, done) 
 let user_props = obtainProps(profile);
 DBM.getUser(profile.id).then((res) => 
 const user = res[0];
 return user ? done(null, user) : createUser(done, user_props);
 ).catch( error => 
 return done(error, null);
 );
;

// the user was not found
// create the user then return user_props
function createUser (done, user_props) 
 DBM.createUser(user_props).then(() => 
 return done(null, user_props);
 ).catch( error => 
 return done(error, null);
 );


// serializeUser required by passport to identify the user uniquely on the client
passport.serializeUser( (profile, done) => 
 done(null, profile.id_google);
);

// deserializeUser required by passport to retrieve data on the server using unique
// identifier created by serializeUser
passport.deserializeUser( (id_google, done) => 
 DBM.getUser(id_google).then((res) => 
 done(null, res[0]);
 ).catch( (error) => 
 console.error('DBM.getUser() Error: ', error);
 );
);

// takes a profile from Google and extracts parameters to save
// Mongoose Schema should match MySQL database
function obtainProps (profile) 
 let props = 
 props.id_google = profile.id;
 props.email = profile.emails[0].value;
 props.name = profile.displayName;
 props.pic_url = profile.photos[0].value;
 props.type = profile._json.objectType;
 return props;


module.exports = passport;


Mongoose File



const mongoose = require('mongoose');
const helper = require('../config/helper');
const Schema = mongoose.Schema;


/* Connect
*/
mongoose.connect(helper.getMongoose()).then(() => 
 console.log('DEBUG: Mongoose Server Connected');
 ).catch((err) => 
 console.log('DEBUG: Mongoose Server Did Not Connect');
);


/* Application Interface
*/
// create a single user
exports.createUser = (user) => 
 return createSchema('User', schema.User, user);
;

// get a single user
exports.getUser = (id_google) => 
 return getSchema('User', schema.User, id_google);
;

// get all domains
exports.getAllDomains = () => 
 // return getSchema('Domains', schema.Domain);



/* Schema Interface
*/
// create a single schema
const createSchema = (name, schema, dataObj) => 
 const Class = mongoose.model(name, schema);
 const Instance = new Class(dataObj);
 return Instance.save(); 
;

// get a single schema
const getSchema = (name, schema, id_google) => 
 const Class = mongoose.model(name, schema);
 return Class.find( id_google: id_google );
;

// get all from a schema
const getAllSchema = (name, schema, id_google) => 
 const Class = mongoose.model(name, schema);
 return Class.find();
;


/* Create schemas
*/
const schema = ;

// for relevant data from google profile
schema.User = new Schema( 
 id_google: type: String, required: true, unique: true ,
 type: type: String, required: true ,
 name: type: String, required: true ,
 email: type: String, required: true ,
 timestamp: type: Date, default: Date.now ,
 pic_url: type: String, required: true 
);

// stub, finish making this
schema.Bookmark = new Schema( 
 url: type: String, required: true ,
 timestamp: type: Date, default: Date.now ,
);



javascript node.js mongoose oauth passport




share|improve this question





















  • Something has to handle those errors, looks to me like given passport is the file that uses it should be the guy. What's the concern? Polluting the passport file with Mongoose error handling? If so you could always wrap the errors with something more store-agnostic.
    – James
    Jun 28 at 0:16
















up vote
2
down vote

favorite
1












Here is code implementing Passport authentication with a Google Strategy. It uses Mongoose to store and retrieve user data. Note with Mongoose you can choose to use promises or not to use promises. I chose to use promises.



You might need to be familiar with both of these technologies to review this code if not check out the two links I provided.



I have included both files. I'm trying to find a way to refactor so that I don't handle errors for Mongoose in my Passport file. Currently I'm passing the promise to my Passport file, but I'm not sure if there is a better way to do this.



The code is full of comments below. Please let me know if more clarification or context is needed.



Passport File



const passport = require('passport');
const GoogleStrategy = require('passport-google-oauth').OAuth2Strategy;
const DBM = require('../../database/mongoose');
const helper = require('../../config/helper');

passport.use('google', new GoogleStrategy(helper.getPassport(), getOrCreateProfile));

// called during authorization
// google will give us an id on profile which is guaranteed to be unique
// we will use this to store each user's profile in mongoDB
// call getUser to see if the person has already been stored
function getOrCreateProfile (accessToken, refreshToken, profile, done) 
 let user_props = obtainProps(profile);
 DBM.getUser(profile.id).then((res) => 
 const user = res[0];
 return user ? done(null, user) : createUser(done, user_props);
 ).catch( error => 
 return done(error, null);
 );
;

// the user was not found
// create the user then return user_props
function createUser (done, user_props) 
 DBM.createUser(user_props).then(() => 
 return done(null, user_props);
 ).catch( error => 
 return done(error, null);
 );


// serializeUser required by passport to identify the user uniquely on the client
passport.serializeUser( (profile, done) => 
 done(null, profile.id_google);
);

// deserializeUser required by passport to retrieve data on the server using unique
// identifier created by serializeUser
passport.deserializeUser( (id_google, done) => 
 DBM.getUser(id_google).then((res) => 
 done(null, res[0]);
 ).catch( (error) => 
 console.error('DBM.getUser() Error: ', error);
 );
);

// takes a profile from Google and extracts parameters to save
// Mongoose Schema should match MySQL database
function obtainProps (profile) 
 let props = 
 props.id_google = profile.id;
 props.email = profile.emails[0].value;
 props.name = profile.displayName;
 props.pic_url = profile.photos[0].value;
 props.type = profile._json.objectType;
 return props;


module.exports = passport;


Mongoose File



const mongoose = require('mongoose');
const helper = require('../config/helper');
const Schema = mongoose.Schema;


/* Connect
*/
mongoose.connect(helper.getMongoose()).then(() => 
 console.log('DEBUG: Mongoose Server Connected');
 ).catch((err) => 
 console.log('DEBUG: Mongoose Server Did Not Connect');
);


/* Application Interface
*/
// create a single user
exports.createUser = (user) => 
 return createSchema('User', schema.User, user);
;

// get a single user
exports.getUser = (id_google) => 
 return getSchema('User', schema.User, id_google);
;

// get all domains
exports.getAllDomains = () => 
 // return getSchema('Domains', schema.Domain);



/* Schema Interface
*/
// create a single schema
const createSchema = (name, schema, dataObj) => 
 const Class = mongoose.model(name, schema);
 const Instance = new Class(dataObj);
 return Instance.save(); 
;

// get a single schema
const getSchema = (name, schema, id_google) => 
 const Class = mongoose.model(name, schema);
 return Class.find( id_google: id_google );
;

// get all from a schema
const getAllSchema = (name, schema, id_google) => 
 const Class = mongoose.model(name, schema);
 return Class.find();
;


/* Create schemas
*/
const schema = ;

// for relevant data from google profile
schema.User = new Schema( 
 id_google: type: String, required: true, unique: true ,
 type: type: String, required: true ,
 name: type: String, required: true ,
 email: type: String, required: true ,
 timestamp: type: Date, default: Date.now ,
 pic_url: type: String, required: true 
);

// stub, finish making this
schema.Bookmark = new Schema( 
 url: type: String, required: true ,
 timestamp: type: Date, default: Date.now ,
);



javascript node.js mongoose oauth passport




share|improve this question





















  • Something has to handle those errors, looks to me like given passport is the file that uses it should be the guy. What's the concern? Polluting the passport file with Mongoose error handling? If so you could always wrap the errors with something more store-agnostic.
    – James
    Jun 28 at 0:16












up vote
2
down vote

favorite
1









up vote
2
down vote

favorite
1






1





Here is code implementing Passport authentication with a Google Strategy. It uses Mongoose to store and retrieve user data. Note with Mongoose you can choose to use promises or not to use promises. I chose to use promises.



You might need to be familiar with both of these technologies to review this code if not check out the two links I provided.



I have included both files. I'm trying to find a way to refactor so that I don't handle errors for Mongoose in my Passport file. Currently I'm passing the promise to my Passport file, but I'm not sure if there is a better way to do this.



The code is full of comments below. Please let me know if more clarification or context is needed.



Passport File



const passport = require('passport');
const GoogleStrategy = require('passport-google-oauth').OAuth2Strategy;
const DBM = require('../../database/mongoose');
const helper = require('../../config/helper');

passport.use('google', new GoogleStrategy(helper.getPassport(), getOrCreateProfile));

// called during authorization
// google will give us an id on profile which is guaranteed to be unique
// we will use this to store each user's profile in mongoDB
// call getUser to see if the person has already been stored
function getOrCreateProfile (accessToken, refreshToken, profile, done) 
 let user_props = obtainProps(profile);
 DBM.getUser(profile.id).then((res) => 
 const user = res[0];
 return user ? done(null, user) : createUser(done, user_props);
 ).catch( error => 
 return done(error, null);
 );
;

// the user was not found
// create the user then return user_props
function createUser (done, user_props) 
 DBM.createUser(user_props).then(() => 
 return done(null, user_props);
 ).catch( error => 
 return done(error, null);
 );


// serializeUser required by passport to identify the user uniquely on the client
passport.serializeUser( (profile, done) => 
 done(null, profile.id_google);
);

// deserializeUser required by passport to retrieve data on the server using unique
// identifier created by serializeUser
passport.deserializeUser( (id_google, done) => 
 DBM.getUser(id_google).then((res) => 
 done(null, res[0]);
 ).catch( (error) => 
 console.error('DBM.getUser() Error: ', error);
 );
);

// takes a profile from Google and extracts parameters to save
// Mongoose Schema should match MySQL database
function obtainProps (profile) 
 let props = 
 props.id_google = profile.id;
 props.email = profile.emails[0].value;
 props.name = profile.displayName;
 props.pic_url = profile.photos[0].value;
 props.type = profile._json.objectType;
 return props;


module.exports = passport;


Mongoose File



const mongoose = require('mongoose');
const helper = require('../config/helper');
const Schema = mongoose.Schema;


/* Connect
*/
mongoose.connect(helper.getMongoose()).then(() => 
 console.log('DEBUG: Mongoose Server Connected');
 ).catch((err) => 
 console.log('DEBUG: Mongoose Server Did Not Connect');
);


/* Application Interface
*/
// create a single user
exports.createUser = (user) => 
 return createSchema('User', schema.User, user);
;

// get a single user
exports.getUser = (id_google) => 
 return getSchema('User', schema.User, id_google);
;

// get all domains
exports.getAllDomains = () => 
 // return getSchema('Domains', schema.Domain);



/* Schema Interface
*/
// create a single schema
const createSchema = (name, schema, dataObj) => 
 const Class = mongoose.model(name, schema);
 const Instance = new Class(dataObj);
 return Instance.save(); 
;

// get a single schema
const getSchema = (name, schema, id_google) => 
 const Class = mongoose.model(name, schema);
 return Class.find( id_google: id_google );
;

// get all from a schema
const getAllSchema = (name, schema, id_google) => 
 const Class = mongoose.model(name, schema);
 return Class.find();
;


/* Create schemas
*/
const schema = ;

// for relevant data from google profile
schema.User = new Schema( 
 id_google: type: String, required: true, unique: true ,
 type: type: String, required: true ,
 name: type: String, required: true ,
 email: type: String, required: true ,
 timestamp: type: Date, default: Date.now ,
 pic_url: type: String, required: true 
);

// stub, finish making this
schema.Bookmark = new Schema( 
 url: type: String, required: true ,
 timestamp: type: Date, default: Date.now ,
);



javascript node.js mongoose oauth passport




share|improve this question













Here is code implementing Passport authentication with a Google Strategy. It uses Mongoose to store and retrieve user data. Note with Mongoose you can choose to use promises or not to use promises. I chose to use promises.



You might need to be familiar with both of these technologies to review this code if not check out the two links I provided.



I have included both files. I'm trying to find a way to refactor so that I don't handle errors for Mongoose in my Passport file. Currently I'm passing the promise to my Passport file, but I'm not sure if there is a better way to do this.



The code is full of comments below. Please let me know if more clarification or context is needed.



Passport File



const passport = require('passport');
const GoogleStrategy = require('passport-google-oauth').OAuth2Strategy;
const DBM = require('../../database/mongoose');
const helper = require('../../config/helper');

passport.use('google', new GoogleStrategy(helper.getPassport(), getOrCreateProfile));

// called during authorization
// google will give us an id on profile which is guaranteed to be unique
// we will use this to store each user's profile in mongoDB
// call getUser to see if the person has already been stored
function getOrCreateProfile (accessToken, refreshToken, profile, done) 
 let user_props = obtainProps(profile);
 DBM.getUser(profile.id).then((res) => 
 const user = res[0];
 return user ? done(null, user) : createUser(done, user_props);
 ).catch( error => 
 return done(error, null);
 );
;

// the user was not found
// create the user then return user_props
function createUser (done, user_props) 
 DBM.createUser(user_props).then(() => 
 return done(null, user_props);
 ).catch( error => 
 return done(error, null);
 );


// serializeUser required by passport to identify the user uniquely on the client
passport.serializeUser( (profile, done) => 
 done(null, profile.id_google);
);

// deserializeUser required by passport to retrieve data on the server using unique
// identifier created by serializeUser
passport.deserializeUser( (id_google, done) => 
 DBM.getUser(id_google).then((res) => 
 done(null, res[0]);
 ).catch( (error) => 
 console.error('DBM.getUser() Error: ', error);
 );
);

// takes a profile from Google and extracts parameters to save
// Mongoose Schema should match MySQL database
function obtainProps (profile) 
 let props = 
 props.id_google = profile.id;
 props.email = profile.emails[0].value;
 props.name = profile.displayName;
 props.pic_url = profile.photos[0].value;
 props.type = profile._json.objectType;
 return props;


module.exports = passport;


Mongoose File



const mongoose = require('mongoose');
const helper = require('../config/helper');
const Schema = mongoose.Schema;


/* Connect
*/
mongoose.connect(helper.getMongoose()).then(() => 
 console.log('DEBUG: Mongoose Server Connected');
 ).catch((err) => 
 console.log('DEBUG: Mongoose Server Did Not Connect');
);


/* Application Interface
*/
// create a single user
exports.createUser = (user) => 
 return createSchema('User', schema.User, user);
;

// get a single user
exports.getUser = (id_google) => 
 return getSchema('User', schema.User, id_google);
;

// get all domains
exports.getAllDomains = () => 
 // return getSchema('Domains', schema.Domain);



/* Schema Interface
*/
// create a single schema
const createSchema = (name, schema, dataObj) => 
 const Class = mongoose.model(name, schema);
 const Instance = new Class(dataObj);
 return Instance.save(); 
;

// get a single schema
const getSchema = (name, schema, id_google) => 
 const Class = mongoose.model(name, schema);
 return Class.find( id_google: id_google );
;

// get all from a schema
const getAllSchema = (name, schema, id_google) => 
 const Class = mongoose.model(name, schema);
 return Class.find();
;


/* Create schemas
*/
const schema = ;

// for relevant data from google profile
schema.User = new Schema( 
 id_google: type: String, required: true, unique: true ,
 type: type: String, required: true ,
 name: type: String, required: true ,
 email: type: String, required: true ,
 timestamp: type: Date, default: Date.now ,
 pic_url: type: String, required: true 
);

// stub, finish making this
schema.Bookmark = new Schema( 
 url: type: String, required: true ,
 timestamp: type: Date, default: Date.now ,
);




javascript node.js mongoose oauth passport





share|improve this question












share|improve this question




share|improve this question








edited May 20 at 19:59









Jamal♦

30.1k11114225




30.1k11114225









asked May 20 at 19:41









john morsey

113




113











  • Something has to handle those errors, looks to me like given passport is the file that uses it should be the guy. What's the concern? Polluting the passport file with Mongoose error handling? If so you could always wrap the errors with something more store-agnostic.
    – James
    Jun 28 at 0:16
















  • Something has to handle those errors, looks to me like given passport is the file that uses it should be the guy. What's the concern? Polluting the passport file with Mongoose error handling? If so you could always wrap the errors with something more store-agnostic.
    – James
    Jun 28 at 0:16















Something has to handle those errors, looks to me like given passport is the file that uses it should be the guy. What's the concern? Polluting the passport file with Mongoose error handling? If so you could always wrap the errors with something more store-agnostic.
– James
Jun 28 at 0:16




Something has to handle those errors, looks to me like given passport is the file that uses it should be the guy. What's the concern? Polluting the passport file with Mongoose error handling? If so you could always wrap the errors with something more store-agnostic.
– James
Jun 28 at 0:16















active

oldest

votes











Your Answer




StackExchange.ifUsing("editor", function ()
return StackExchange.using("mathjaxEditing", function ()
StackExchange.MarkdownEditor.creationCallbacks.add(function (editor, postfix)
StackExchange.mathjaxEditing.prepareWmdForMathJax(editor, postfix, [["\$", "\$"]]);
);
);
, "mathjax-editing");

StackExchange.ifUsing("editor", function ()
StackExchange.using("externalEditor", function ()
StackExchange.using("snippets", function ()
StackExchange.snippets.init();
);
);
, "code-snippets");

StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "196"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
convertImagesToLinks: false,
noModals: false,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);








 

draft saved


draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fcodereview.stackexchange.com%2fquestions%2f194824%2fimplementing-passport-authentication%23new-answer', 'question_page');

);

Post as a guest






















active

oldest

votes













active

oldest

votes









active

oldest

votes






active

oldest

votes










 

draft saved


draft discarded


























 


draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fcodereview.stackexchange.com%2fquestions%2f194824%2fimplementing-passport-authentication%23new-answer', 'question_page');

);

Post as a guest
































































-

Popular posts from this blog

Greedy Best First Search implementation in Rust

Image
Clash Royale CLAN TAG #URR8PPP .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty margin-bottom:0; up vote 1 down vote favorite I have implemented a Greedy Best First Search algorithm in Rust, since I couldn't find an already implemented one in the existing crates. I have a small pet project I do in Rust, and the Greedy BFS is at the core of it. The algorithm is designed to be as flexible as possible. Theoretically, this algorithm could be used as a greedy depth-first search or as a greedy a*. I want to design a good algorithm that I could later use in any other project needing it, not only this one. I am quite new to Rust and this is the second project I do in this language. Also, I am new to writing optimized algorithms. Since this search will be called often, my main concern is performance. What are some tips and tricks to make the algorithm perform better? Of course any other critique and comment is welcome. Bellow is the code: //! Here is
Read more

Function to Return a JSON Like Objects Using VBA Collections and Arrays

Image
Clash Royale CLAN TAG #URR8PPP .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty margin-bottom:0; up vote 1 down vote favorite My goal is to create a compact function that can create a JSON Like object from JSON string. I want a function with a small footprint that I or anyone who wants to use it, can simply paste into a module and use. At 61 lines of code, I am happy with its size and portability. Here is an image of JSON Object created from string data using a ScriptControl . Although the Locals Window displays the properties and values correctly, the object itself is extremely difficult to work with. This image shows an object created using getJSONCollection . Because it is made of VBA Collections and Arrays, it is very easy to work with. Option Explicit Private Function getJSONCollection(ByVal Value As Variant, Optional ScriptEngine As Object) As Variant Const DELIMITER As String = "||" Dim col As Collection, JSON As Object, KeyNam
Read more

C++11 CLH Lock Implementation

Image
Clash Royale CLAN TAG #URR8PPP .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty margin-bottom:0; up vote 1 down vote favorite 1 As a hobbyist programmer I have been reading "The Art of Multiprocessor Programming" (Herlihy, Maurice; Shavit, Nir) and converting the Java spin locks into C++ - I have enjoyed this and learned a lot. I have implemented the CLH spin queue lock (due to Travis Craig, Erik Hagersten, and Anders Landin) but I feel unhappy about the way that I have the raw pointers interacting with smart pointers and would be grateful for code review advice. As I understand it I must use a smart pointer, in this case std::unique_ptr , for my thread local node pointer or the lock will not deallocate properly and the clh_lock will leak. But... I also have no choice but to use a raw atomic tail queue pointer in order access the atomic exchange member function. Therefore, I have to come up with some combination of either, raw or smart
Read more