rkusa
commented
7 years ago Hm, I do not see an error, yet. Is passport.serializeUser being called?
Closed cheneyweb closed 5 years ago
rkusa
commented
7 years ago Hm, I do not see an error, yet. Is passport.serializeUser being called?
rkusa
commented
7 years ago I've updated a koa-passport-example branch to be more closely to what you are doing and it is working fine. Would you mind checking whether https://github.com/rkusa/koa-passport-example/tree/issue_100 does work for you?
ghost
commented
7 years ago Temporarily use
export async function authenticatedUser(ctx: Router.IRouterContext, next: () => Promise<any>) {
if (ctx.session.passport.user && ctx.session.passport.user.user) {
ctx.state.user = ctx.session.passport.user.user;
await next();
} else {
ctx.throw(401, 'authenticate please');
}
}Are there any updates on this issue? @gyeongmin-ji thanks for the workaround. Do you have a similar issue, which requires this workaround?
jenkynolasco11
commented
6 years ago I'm having the same issue, but my situation is a bit weird. This is my code:
import Router from 'koa-router'
import passport from 'koa-passport'
import { setUserData } from '../../utils'
import { User, Bus } from '../../../models'
const auth = new Router({ prefix : 'auth' })
const isAuthenticated = async (ctx, next) => {
try {
if(ctx.isAuthenticated()) {
const { user } = ctx.state
const data = await setUserData(user)
return ctx.body = { ok : true, data : { userInfo : data }, message : '' }
}
} catch (e) {
console.log(e)
}
return next()
}
auth.post('/login', isAuthenticated, ctx =>
passport.authenticate('local', async (err, user, msg) => {
const { driverToken } = ctx.request.body
if(user) {
await User.findByIdAndUpdate(user, { lastSession : Date.now() })
await ctx.login(user)
const data = await setUserData(user)
return ctx.body = { ok : true, data : { userInfo : data }, message : '' }
}
ctx.status = 401 // unauthorized
return ctx.body = { ok : false, data : null, message : msg }
})(ctx)
)
auth.get('/check-auth', async ctx => {
console.log(`User is ${ ctx.isAuthenticated() ? '' : 'not' } authenticated`)
if(ctx.isAuthenticated()) {
console.log('Inside, boys!')
const data = await setUserData(ctx.state.user)
return ctx.body = { ok : true, data : { userInfo : data }, message : '' }
}
return ctx.body = { ok : false, data : null, message : 'There is no saved session available' }
})My situation is the following:
/check-auth is made, and ctx.isAuthenticated() returns false (as expected)/check-auth returns false.Not sure if this is a bug, or if this is supposed to work like this.
My setup: "koa": "next", "koa-passport": "^4.0.1" "koa-router": "^7.0.1" "koa-session": "^5.5.1"
Any idea why is this happening? Or something I could work around? I tried the solution up there and it didn't work (passport returning undefined in /check-auth, on ctx.session.passport)
Bonus: If I set to request /check-auth after being logging out, it also returns false (including returning undefined when checking on ctx.session.passport, but if I log back in, the object exists.
Also, when I try to log in in another browser (different user, different cookies), the object appears with only one user, not storing the one already logged in, but instead overwriting it.
peakman
commented
6 years ago I’m pretty sure that in the end I resolved it by changing the order in which packages were initialised.
This is the order that worked for me. At one time I had something different that worked with earlier versions but not the latest.
app.use(session(sessionOptions, app)); app.use(passport.initialize()) app.use(passport.session())
Hope it might help.
Steve
On 16 Jan 2018, at 22:49, Jenky W. Nolasco notifications@github.com wrote:
I'm having the same issue, but my situation is a bit weird. This is my code:
import Router from 'koa-router' import passport from 'koa-passport' import { setUserData } from '../../utils' import { User, Bus } from '../../../models'
const isAuthenticated = async (ctx, next) => { try { if(ctx.isAuthenticated()) { const { user } = ctx.state
const data = await setUserData(user) return ctx.body = { ok : true, data : { userInfo : data }, message : '' } }} catch (e) { console.log(e) }
return next() }
auth.post('/login', isAuthenticated, ctx => passport.authenticate('local', async (err, user, msg) => { const { driverToken } = ctx.request.body
if(user) { await User.findByIdAndUpdate(user, { lastSession : Date.now() }) await ctx.login(user) const data = await setUserData(user) return ctx.body = { ok : true, data : { userInfo : data }, message : '' } } ctx.status = 401 // unauthorized return ctx.body = { ok : false, data : null, message : msg }})(ctx) )
auth.get('/check-auth', async ctx => { console.log(
User is ${ ctx.isAuthenticated() ? '' : 'not' } authenticated)if(ctx.isAuthenticated()) { console.log('Inside, boys!')
const data = await setUserData(ctx.state.user) return ctx.body = { ok : true, data : { userInfo : data }, message : '' }}
return ctx.body = { ok : false, data : null, message : 'There is no saved session available' } }) My situation is the following:
I refresh the page, a request to /check-auth is made, and ctx.isAuthenticated() returns false (as expected) I log in, the session is stored and user logged. Nothing different. I log out, ctx.logout() is called. If I refresh the page, step 1 is made. Great, that's how's supposed to work, because I logged out. But if I reload while being logged in, /check-auth returns false. If I try to log in after logging out, ctx.isAuthenticated() returns true. Not sure if this is a bug, or if this is supposed to work like this.
My setup: "koa": "next", "koa-passport": "^4.0.1" "koa-router": "^7.0.1" "koa-session": "^5.5.1"
Any idea why is this happening? Or something I could work around? I tried the solution up there and it didn't work (passport returning undefined in /check-auth, on ctx.session.passport)
Bonus: If I set to request /check-auth after being logging out, it also returns false (including returning undefined when checking on ctx.session.passport, but if I log back in, the object exists.
Also, when I try to log in in another browser (different user, different cookies), the object appears with only one user, not storing the one already logged in, but instead overwriting it.
— You are receiving this because you commented. Reply to this email directly, view it on GitHub https://github.com/rkusa/koa-passport/issues/100#issuecomment-358134134, or mute the thread https://github.com/notifications/unsubscribe-auth/AB0yhUFvYAbF-wFv8Os-I6YweXfCMHy5ks5tLSd7gaJpZM4NTgWo.
SkeLLLa
commented
6 years ago Got the same problem, however latest solution doesn't work for me, I already have such order, but it still doesn't call deserialize method. However ctx.session is populated with correct session.
It seems this module is absolutely incompatible with koa-session when external session storage is used.
rkusa
commented
5 years ago It seems this module is absolutely incompatible with koa-session when external session storage is used.
Looks like it, as also mentioned in other issues. If someone is going to provide a bare minimum app with this failing setup, I am willing to investigate. Other than that, there are other session middlewares out there that seem to work fine with an external session store.
The following is my key package "koa": "^2.2.0", "koa-passport": "^3.0.0", "koa-router": "^7.0.1", "koa-session": "^5.0.0"
My problem is when I use "ctx.isAuthenticated()" to check if user login before, ctx.isAuthenticated() always equal false even user has login by passport.authenticate
3.The following is my code:
I try http://localhost/login,it work But I try http://localhost/test,it doesn't work,it is always false,and passport.deserializeUser has never been called
I am very looking forward to your help,and sorry for my pool english