Javascript PassportJS会话不存在';无法使用自定义回调
下面的passport.js自定义回调似乎不起作用,无论我做什么Javascript PassportJS会话不存在';无法使用自定义回调,javascript,node.js,express,passport.js,Javascript,Node.js,Express,Passport.js,下面的passport.js自定义回调似乎不起作用,无论我做什么 app.post('/login', function(req, res, next) { passport.authenticate('local', function(err, users, info) { console.log(users); if (user === false) { console.log('Failed!'); } else { res.redire
app.post('/login', function(req, res, next) {
passport.authenticate('local', function(err, users, info) {
console.log(users);
if (user === false) {
console.log('Failed!');
} else {
res.redirect('/');
}
})(req, res, next);
});
同样的,如果我把它改成下面的样子,所有的工作都如预期的那样
app.post("/login"
,passport.authenticate('local',{
successRedirect : "/",
failureRedirect : "/login",
})
);
我还注意到,在使用自定义回调时,即使是passport.serializeUser
和passport.deserializeUser
也不会被passport.js调用
这是一种错误还是我做错了什么
我的本地策略:
passport.use('local-sigin',new LocalStrategy({
// by default, local strategy uses username and password, we will override with email
usernameField : 'email',
passwordField : 'password',
passReqToCallback : true // allows us to pass back the entire request to the callback
},
function(req, email, password, done) { // callback with email and password from our form
console.log('Passport Strategy Sign in:');
// find a user whose email is the same as the forms email
// we are checking to see if the user trying to login already exists
User.findOne({ 'email' : email }, function(err, user) {
// if there are any errors, return the error before anything else
if (err)
return done({status:'ERROR',message:'Something went wrong!'});
// if no user is found, return the message
if (!user)
return done({status:'ERROR',message:'No user found.'}, false);
// if the user is found but the password is wrong
if (!user.validPassword(password))
return done({status:'ERROR',message:'Oops! Wrong password.'}, false);
// all is well, return successful user
return done({status:'OK',message:'Login success.'}, user);
});
}));
我猜“不工作”是指用户从未登录 首先,您的本地策略名为“local sigin”,但在“/login”的帖子中,您调用的是“local”策略,该策略可能不存在:
passport.use('local', new LocalStrategy({
更改策略名称以保持一致(反之亦然!):
其次,“本地”身份验证回调有一个参数users
(复数),但您正试图在其主体内访问user
(单数),这意味着user
未定义,user===false
在严格相等条件下为false:
app.post('/login', function(req, res, next) {
passport.authenticate('local', function(err, user, info) {
// ^^^^
console.log(user);
if (!user) {
console.log('Failed!');
} else {
res.redirect('/');
}
})(req, res, next);
});
最后,当身份验证成功时,您永远不会让用户登录。为用户创建会话不是自动的,您必须调用:
Passport在req
上公开了一个login()
函数(别名为login()
),可用于建立登录会话
让我们将其添加到身份验证回调中:
app.post('/login', function(req, res, next) {
passport.authenticate('local', function(err, user, info) {
console.log(user);
if (!user) {
console.log('Failed!');
} else {
req.login(user, function (err) {
if(err) {
console.log(err);
return;
}
res.redirect('/');
});
}
})(req, res, next);
});
请看,他们非常详细地解释了这些流程如何工作以及如何实施。非常感谢您提供的解决方案;)
app.post('/login', function(req, res, next) {
passport.authenticate('local', function(err, user, info) {
console.log(user);
if (!user) {
console.log('Failed!');
} else {
req.login(user, function (err) {
if(err) {
console.log(err);
return;
}
res.redirect('/');
});
}
})(req, res, next);
});