Closed Overdrivr closed 8 years ago
PassportJS places authentication data inside a session. This means the accessToken obtained through OAuth is contained inside this session.
To make authenticated requests on our app, this accessToken should be copied from req.session.passport to Authorization header of the request.
req.session.passport
Authorization
Writing a simple middleware is perfect for the job.
Once this is done, it will be possible to enjoy the full ACL system of loopback and make authenticated requests from a OAuth authenticated user.
PassportJS places authentication data inside a session. This means the accessToken obtained through OAuth is contained inside this session.
To make authenticated requests on our app, this accessToken should be copied from
req.session.passporttoAuthorizationheader of the request.Writing a simple middleware is perfect for the job.
Once this is done, it will be possible to enjoy the full ACL system of loopback and make authenticated requests from a OAuth authenticated user.