oauth2orize: oauth2 provider example

This example shows a provider which grants tokens in exchange for codes for

Install

git clone https://github.com/gerges-beshay/oauth2orize-examples.git
pushd oauth2orize-examples
npm install

node app.js

Visit http://localhost:3000/login to see the server running locally.

Create a vercel.json file in the root of the package with the following contents:

{
"version": 2,
"builds": [
{
  "src": "app.js",
  "use": "@now/node-server"
}
],
"routes": [
{
  "src": "/(.*)",
  "dest": "app.js"
}
]
}

Execute vercel in the terminal/console. (If the command is not recognized, you might have to restart your computer.)
Once you see the “Success! Deployment ready” message in the terminal, follow the URL of the deployment provided by the Vercel CLI.

Interacting with this provider directly doesn't showcase it's oauth2 functionality.

Visiting / takes you to a blank page... not too interesting
/login will ask you for credentials.
- If you login before an oauth request you are taken directly to permission dialog when that request happens
- Otherwise you will be redirected here and then to the permission dialog
/account will allow you to see your user details

In order to demo what this is actually accomplishing you'll need to run a consumer.

Below is a mapping of the API in the context of a passport-strategy

/dialog/authorize is the authorizationURL.
/oauth/token is the tokenURL
/api/userinfo is a protected resource that requires user permission
/api/clientinfo is a protected resource that requires a token generated from the client's id and secret
Usage of scope is not demonstrated in this example.

The standalone usable resources are

GET / nothing
GET /login lets you login, presented by /dialog/authorize if you haven't logged in
POST /login processes the login
GET /logout lets you logout
GET /account lets your view your user info

And then some internal resources that are of no concern for standalone users or consumers