This package lets you use passport to authenticate requests in Exegesis.
import passport from "passport";
import * as exegesisExpress from "exegesis-express";
import exegesisPassport from "exegesis-passport";
import { BasicStrategy } from "passport-http";
passport.use(
"basic",
new BasicStrategy((username, password, done) => {
if (password === "secret") {
done(null, { user: username });
} else {
done(null, false);
}
})
);
async function createServer() {
const app = express();
app.use(passport.initialize());
app.use(
await exegesisExpress.middleware(
path.resolve(__dirname, "./openapi.yaml"),
{
// Other options go here...
authenticators: {
// Authenticate the "basicAuth" security scheme using passport's 'basic' strategy.
basicAuth: exegesisPassport("basic"),
// Uses Passport's build-in 'session' strategy.
sessionToken: exegesisPassport("session", {
isPresent: (context) => !!context.req.session,
}),
},
}
)
);
const server = http.createServer(app);
server.listen(3000);
}
Returns an Exegesis authenticator that will authenticate against the given strategyName. This will not set the user in the session.
options.converter
is a function(user, pluginContext)
which takes in the user
authenticated by passport and returns a {user, roles, scopes}
object for
Exegesis.
options.isPresent
is a function(pluginContext, authInfo)
which returns true
if the given security credentials are present, and false otherwise. Passport does
not distinguish between an authentication attempt which did provide credentials
and an authentication attempt which provided incorrect credentials, but
Exegesis does. If this option is missing, then exgesis-passport will attempt
to work out of the field is present, but in most cases this will end up with
exegesis-passport treating missing credentials the same as bad credentials.
If options.passportOptions
if provided, this will be passed to the passport
strategy when it is run.
You can pass a Passport strategy directly to Exegesis to use the strategy without even having Passport installed:
const basicStrategy = new BasicStrategy((username, password, done) => {
if (password === "secret") {
done(null, { user: username });
} else {
done(null, false);
}
});
exegesisOptions.authenticators = {
basicAuth: exegesisPassport(basicStrategy),
};
options
are the same as for exegesisPassport(passport, strategyName[, options])
.
Want to learn more about passport? API docs here.