Tell me more ×
Stack Overflow is a question and answer site for professional and enthusiast programmers. It's 100% free, no registration required.
up vote 0 down vote favorite

I'm working on a project in Node.js , we need safe authorization for clients, As far as Facebook and Twitter go, we have to validate the token with their API

i Google it and found many examples but all are using third party API i-e Facebook, Twitter etc

but the problem is we have to issue our own token that the device will use when talking to our API. is there any module implemented for Node.js that authenticate and generate token ?

share|improve this question

This question has an open bounty worth +50 reputation from FLF ending in 2 days.

This question has not received enough attention.

3 Answers

up vote 0 down vote

I'm not clear on what you mean by wanting to find a node module (all of which are essentially 3rd party API's) that provides OAuth2 client capability that will work against facebook and twitter without an extra server call.

However that being said, you might look at these:

And since Node.js is javascript, you can wrap up regular javascript written for client-side browsers provided you simulate the necessary browser environment elements expected by the client-side javascript.

Your question made me think it might be useful to encapsulate the OAuth library provided here: https://github.com/andreassolberg/jso, and roll it up into a Node module such that you could have a client that behaves like a browser against an OAuth2 provider but from within Node.

So here are the beginnings of that project:

Here it is on github (https://github.com/hoonto/node-jso) or

npm instal node-jso

It won't likely work yet as I need to patch up the way it is doing local storage and xhr, but that's pretty trivial I think to fix.

I am providing some callback functions, so you can use it like so:

var jso = require("node-jso")('http://www.google.com');

jso.onlocation = function(location){
    //Handle location changes  
};
jso.onhash = function(hash){
    //Handle hash changes 
};
jso.onhref = function(href){
    //Handle href changes
};

jso.jso_configure({ 
    "facebook": {        
        client_id: "xxxxxxxxxx", 
        redirect_uri: "http://localhost/~andreas/jso/",   
        authorization: "https://www.facebook.com/dialog/oauth",  
        presenttoken: "qs"    
    }     
});

If you'd like to help out feel free to submit pull requests!

share|improve this answer
thanks for your answer. but in your answer see the jso_configure required facebook client id, this depends on the client id provide by the facebook. i need to manually give a client id to the user and on give access token, but i really appreciate your answer , it has some very nice examples – FLF 2 days ago
up vote 0 down vote

The client id you see in hoonto's post is a client id you have to generate throw the Facebook website. This is the client id of your application and not the client id of the user. So you need to fill it only once and no oAuth module will work without.

You need to create an application for each social media ( FB, TW and GP ).

For ex, for Facebook, you can use the app page to get this client id: https://developers.facebook.com/apps

For Google Plus you can generate the client id in the console page : https://code.google.com/apis/console/

share|improve this answer
up vote 0 down vote

This authenticates token https://github.com/jaredhanson/passport-http-bearer and there are lots of ways you can generate token ( md5 of email+password+salt)

share|improve this answer

Your Answer

 
discard

By posting your answer, you agree to the privacy policy and terms of service.

Not the answer you're looking for? Browse other questions tagged or ask your own question.