freeCodeCamp/config/passport.js

var _ = require('underscore');
var passport = require('passport');
var LocalStrategy = require('passport-local').Strategy;
var FacebookStrategy = require('passport-facebook').Strategy;
var TwitterStrategy = require('passport-twitter').Strategy;
var GitHubStrategy = require('passport-github').Strategy;
var GoogleStrategy = require('passport-google-oauth').OAuth2Strategy;
var OAuthStrategy = require('passport-oauth').OAuthStrategy; // Tumblr
var OAuth2Strategy = require('passport-oauth').OAuth2Strategy; // Venmo, Foursquare
var User = require('../models/User');
var secrets = require('./secrets');

passport.serializeUser(function(user, done) {
  done(null, user.id);
});

passport.deserializeUser(function(id, done) {
  User.findById(id, function (err, user) {
    done(err, user);
  });
});

/**
 * Sign in using Email and Password.
 */

passport.use(new LocalStrategy({ usernameField: 'email' }, function(email, password, done) {
  User.findOne({ email: email }, function(err, user) {
    if (!user) return done(null, false, { message: 'Email ' + email + ' not found'});
    user.comparePassword(password, function(err, isMatch) {
      if (isMatch) {
        return done(null, user);
      } else {
        return done(null, false, { message: 'Invalid email or password.' });
      }
    });
  });
}));

/**
 * Sign in with Facebook.
 */

passport.use(new FacebookStrategy(secrets.facebook, function(req, accessToken, refreshToken, profile, done) {
  if (req.user) {
    User.findOne({ $or: [{ facebook: profile.id }, { email: profile.email }] }, function(err, existingUser) {
      if (existingUser) {
        req.flash('errors', { msg: 'There is already a Facebook account that belongs to you. Sign in with that account or delete it, then link it with your current account.' });
        done(err);
      } else {
        User.findById(req.user.id, function(err, user) {
          user.facebook = profile.id;
          user.tokens.push({ kind: 'facebook', accessToken: accessToken });
          user.profile.name = user.profile.name || profile.displayName;
          user.profile.gender = user.profile.gender || profile._json.gender;
          user.profile.picture = user.profile.picture || 'https://graph.facebook.com/' + profile.id + '/picture?type=large';
          user.save(function(err) {
            req.flash('info', { msg: 'Facebook account has been linked.' });
            done(err, user);
          });
        });
      }
    });
  } else {
    User.findOne({ facebook: profile.id }, function(err, existingUser) {
      console.log(profile)
      if (existingUser) return done(null, existingUser);
      var user = new User();
      user.email = profile._json.email;
      user.facebook = profile.id;
      user.tokens.push({ kind: 'facebook', accessToken: accessToken });
      user.profile.name = profile.displayName;
      user.profile.gender = profile._json.gender;
      user.profile.picture = 'https://graph.facebook.com/' + profile.id + '/picture?type=large';
      user.profile.location = (profile._json.location) ? profile._json.location.name : '';
      user.save(function(err) {
        done(err, user);
      });
    });
  }
}));

/**
 * Sign in with GitHub.
 */

passport.use(new GitHubStrategy(secrets.github, function(req, accessToken, refreshToken, profile, done) {
  if (req.user) {
    User.findOne({ $or: [{ github: profile.id }, { email: profile.email }] }, function(err, existingUser) {
      if (existingUser) {
        req.flash('errors', { msg: 'There is already a GitHub account that belongs to you. Sign in with that account or delete it, then link it with your current account.' });
        done(err);
      } else {
        User.findById(req.user.id, function(err, user) {
          user.github = profile.id;
          user.tokens.push({ kind: 'github', accessToken: accessToken });
          user.profile.name = user.profile.name || profile.displayName;
          user.profile.picture = user.profile.picture || profile._json.avatar_url;
          user.profile.location = user.profile.location || profile._json.location;
          user.profile.website = user.profile.website || profile._json.blog;
          user.save(function(err) {
            req.flash('info', { msg: 'GitHub account has been linked.' });
            done(err, user);
          });
        });
      }
    });
  } else {
    User.findOne({ github: profile.id }, function(err, existingUser) {
      if (existingUser) return done(null, existingUser);
      User.findOne({ email: profile._json.email }, function(err, existingEmailUser) {
        if (existingEmailUser) {
          req.flash('errors', { msg: 'There is already an account using this email address. Sign in to that account and link it with GitHub manually from Account Settings.' });
          done(err);
        } else {
          var user = new User();
          user.email = profile._json.email;
          user.github = profile.id;
          user.tokens.push({ kind: 'github', accessToken: accessToken });
          user.profile.name = profile.displayName;
          user.profile.picture = profile._json.avatar_url;
          user.profile.location = profile._json.location;
          user.profile.website = profile._json.blog;
          user.save(function(err) {
            done(err, user);
          });
        }
      });
    });
  }
}));

/**
 * Sign in with Twitter.
 */

passport.use(new TwitterStrategy(secrets.twitter, function(req, accessToken, tokenSecret, profile, done) {
  if (req.user) {
    User.findOne({ twitter: profile.id }, function(err, existingUser) {
      if (existingUser) {
        req.flash('errors', { msg: 'There is already a Twitter account that belongs to you. Sign in with that account or delete it, then link it with your current account.' });
        done(err);
      } else {
        User.findById(req.user.id, function(err, user) {
          user.twitter = profile.id;
          user.tokens.push({ kind: 'twitter', accessToken: accessToken, tokenSecret: tokenSecret });
          user.profile.name = user.profile.name || profile.displayName;
          user.profile.location = user.profile.location || profile._json.location;
          user.profile.picture = user.profile.picture || profile._json.profile_image_url;
          user.save(function(err) {
            req.flash('info', { msg: 'Twitter account has been linked.' });
            done(err, user);
          });
        });
      }
    });

  } else {
    User.findOne({ twitter: profile.id }, function(err, existingUser) {
      if (existingUser) return done(null, existingUser);
      var user = new User();
      // Twitter will not provide an email address.  Period.
      // But a person’s twitter username is guaranteed to be unique
      // so we can "fake" a twitter email address as follows:
      user.email = profile.username + "@twitter.com";
      user.twitter = profile.id;
      user.tokens.push({ kind: 'twitter', accessToken: accessToken, tokenSecret: tokenSecret });
      user.profile.name = profile.displayName;
      user.profile.location = profile._json.location;
      user.profile.picture = profile._json.profile_image_url;
      user.save(function(err) {
        done(err, user);
      });
    });
  }
}));

/**
 * Sign in with Google.
 */

passport.use(new GoogleStrategy(secrets.google, function(req, accessToken, refreshToken, profile, done) {
  if (req.user) {
    User.findOne({ $or: [{ google: profile.id }, { email: profile.email }] }, function(err, existingUser) {
      if (existingUser) {
        req.flash('errors', { msg: 'There is already a Google account that belongs to you. Sign in with that account or delete it, then link it with your current account.' });
        done(err);
      } else {
        User.findById(req.user.id, function(err, user) {
          user.google = profile.id;
          user.tokens.push({ kind: 'google', accessToken: accessToken });
          user.profile.name = user.profile.name || profile.displayName;
          user.profile.gender = user.profile.gender || profile._json.gender;
          user.profile.picture = user.profile.picture || profile._json.picture;
          user.save(function(err) {
            req.flash('info', { msg: 'Google account has been linked.' });
            done(err, user);
          });
        });
      }
    });
  } else {
    User.findOne({ google: profile.id }, function(err, existingUser) {
      if (existingUser) return done(null, existingUser);
      User.findOne({ email: profile._json.email }, function(err2, existingEmailUser) {   
        if(existingEmailUser) {
          req.flash('errors', { msg: 'There is already an account using this Google account\'s email address. Sign in with that account or delete it, then link it with your current account.' });
          done(err2);
        } else {
          var user = new User();
          user.email = profile._json.email;
          user.google = profile.id;
          user.tokens.push({ kind: 'google', accessToken: accessToken });
          user.profile.name = profile.displayName;
          user.profile.gender = profile._json.gender;
          user.profile.picture = profile._json.picture;
          user.save(function(err) {
            done(err, user);
          });
        }
      });
    });
  }
}));

/**
 * Tumblr API
 * Uses OAuth 1.0a Strategy.
 */

passport.use('tumblr', new OAuthStrategy({
    requestTokenURL: 'http://www.tumblr.com/oauth/request_token',
    accessTokenURL: 'http://www.tumblr.com/oauth/access_token',
    userAuthorizationURL: 'http://www.tumblr.com/oauth/authorize',
    consumerKey: secrets.tumblr.consumerKey,
    consumerSecret: secrets.tumblr.consumerSecret,
    callbackURL: secrets.tumblr.callbackURL,
    passReqToCallback: true
  },
  function (req, token, tokenSecret, profile, done) {
    User.findById(req.user._id, function(err, user) {
      user.tokens.push({ kind: 'tumblr', accessToken: token, tokenSecret: tokenSecret });
      user.save(function(err) {
        done(err, user);
      });
    });
  }
));

/**
 * Foursquare API
 * Uses OAuth 2.0 Strategy.
 */

passport.use('foursquare', new OAuth2Strategy({
    authorizationURL: 'https://foursquare.com/oauth2/authorize',
    tokenURL: 'https://foursquare.com/oauth2/access_token',
    clientID: secrets.foursquare.clientId,
    clientSecret: secrets.foursquare.clientSecret,
    callbackURL: secrets.foursquare.redirectUrl,
    passReqToCallback: true
  },
  function (req, accessToken, refreshToken, profile, done) {
    User.findById(req.user._id, function(err, user) {
      user.tokens.push({ kind: 'foursquare', accessToken: accessToken });
      user.save(function(err) {
        done(err, user);
      });
    });
  }
));

/**
 * Venmo API
 * Uses OAuth 2.0 Strategy.
 */

passport.use('venmo', new OAuth2Strategy({
    authorizationURL: 'https://api.venmo.com/v1/oauth/authorize',
    tokenURL: 'https://api.venmo.com/v1/oauth/access_token',
    clientID: secrets.venmo.clientId,
    clientSecret: secrets.venmo.clientSecret,
    callbackURL: secrets.venmo.redirectUrl,
    passReqToCallback: true
  },
  function (req, accessToken, refreshToken, profile, done) {
    User.findById(req.user._id, function(err, user) {
      user.tokens.push({ kind: 'venmo', accessToken: accessToken });
      user.save(function(err) {
        done(err, user);
      });
    });
  }
));

/**
 * Login Required middleware.
 */

exports.isAuthenticated = function(req, res, next) {
  if (req.isAuthenticated()) return next();
  res.redirect('/login');
};

/**
 * Authorization Required middleware.
 */

exports.isAuthorized = function(req, res, next) {
  var provider = req.path.split('/').slice(-1)[0];
  if (_.findWhere(req.user.tokens, { kind: provider })) next();
  else res.redirect('/auth/' + provider);
};
-												Added comments explaining what each authentication strategy is used for.

											
										
										
											2014-02-14 16:29:28 +00:00
+								var _ = require('underscore');
-												Multiple vars instead of 1 var per multiple libs

											
										
										
											2013-12-07 03:21:46 +00:00
+								var passport = require('passport');
 								var LocalStrategy = require('passport-local').Strategy;
 								var FacebookStrategy = require('passport-facebook').Strategy;
 								var TwitterStrategy = require('passport-twitter').Strategy;
 								var GitHubStrategy = require('passport-github').Strategy;
 								var GoogleStrategy = require('passport-google-oauth').OAuth2Strategy;
-												Added comments explaining what each authentication strategy is used for.

											
										
										
											2014-02-14 16:29:28 +00:00
+								var OAuthStrategy = require('passport-oauth').OAuthStrategy; // Tumblr
 								var OAuth2Strategy = require('passport-oauth').OAuth2Strategy; // Venmo, Foursquare
-												Multiple vars instead of 1 var per multiple libs

											
										
										
											2013-12-07 03:21:46 +00:00
+								var User = require('../models/User');
-												Renamed config.js to secrets.js to better match the intents of the file

											
										
										
											2013-12-20 06:31:16 +00:00
+								var secrets = require('./secrets');
-												facebook auth strategy

											
										
										
											2013-11-19 00:43:45 +00:00
-												Finally got angular to work with express partial routes

											
										
										
											2013-11-14 07:29:55 +00:00
+								passport.serializeUser(function(user, done) {
 								  done(null, user.id);
 								});
-												converted all auth functions to use mongoose

											
										
										
											2013-11-14 03:19:37 +00:00
-												Finally got angular to work with express partial routes

											
										
										
											2013-11-14 07:29:55 +00:00
+								passport.deserializeUser(function(id, done) {
 								  User.findById(id, function (err, user) {
 								    done(err, user);
-												converted all auth functions to use mongoose

											
										
										
											2013-11-14 03:19:37 +00:00
+								  });
-												Finally got angular to work with express partial routes

											
										
										
											2013-11-14 07:29:55 +00:00
+								});
-												converted all auth functions to use mongoose

											
										
										
											2013-11-14 03:19:37 +00:00
-												Added comments explaining what each authentication strategy is used for.

											
										
										
											2014-02-14 16:29:28 +00:00
+								/**
 								 * Sign in using Email and Password.
 								 */
-												Local strategy now uses email as username field

											
										
										
											2014-01-07 20:48:21 +00:00
+								passport.use(new LocalStrategy({ usernameField: 'email' }, function(email, password, done) {
 								  User.findOne({ email: email }, function(err, user) {
-												Add Login route express validations

											
										
										
											2014-01-24 03:47:21 +00:00
+								    if (!user) return done(null, false, { message: 'Email ' + email + ' not found'});
-												Finally got angular to work with express partial routes

											
										
										
											2013-11-14 07:29:55 +00:00
+								    user.comparePassword(password, function(err, isMatch) {
-												Add Login route express validations

											
										
										
											2014-01-24 03:47:21 +00:00
+								      if (isMatch) {
-												converted all auth functions to use mongoose

											
										
										
											2013-11-14 03:19:37 +00:00
+								        return done(null, user);
 								      } else {
-												Updated error messages

											
										
										
											2014-01-12 20:31:17 +00:00
+								        return done(null, false, { message: 'Invalid email or password.' });
-												converted all auth functions to use mongoose

											
										
										
											2013-11-14 03:19:37 +00:00
+								      }
 								    });
-												Finally got angular to work with express partial routes

											
										
										
											2013-11-14 07:29:55 +00:00
+								  });
 								}));
-												Add Merge strategy for Facebook so far

											
										
										
											2014-01-31 21:28:12 +00:00
+								/**
-												Instead of merging display flash messages notifying the user that account with another OAuth provider already exists.

											
										
										
											2014-02-01 04:56:50 +00:00
+								 * Sign in with Facebook.
 								 */
-												Add Merge strategy for Facebook so far

											
										
										
											2014-01-31 21:28:12 +00:00
-												Adds Steam auth and API

											
										
										
											2014-02-05 16:37:48 +00:00
+								passport.use(new FacebookStrategy(secrets.facebook, function(req, accessToken, refreshToken, profile, done) {
-												Facebook oauth2 checks if user is already logged in (for linking with existing account)

											
										
										
											2013-12-14 06:32:33 +00:00
+								  if (req.user) {
-												Update profile picture in Facebook strategy

											
										
										
											2014-02-01 03:23:19 +00:00
+								    User.findOne({ $or: [{ facebook: profile.id }, { email: profile.email }] }, function(err, existingUser) {
-												Add Merge strategy for Facebook so far

											
										
										
											2014-01-31 21:28:12 +00:00
+								      if (existingUser) {
-												Flash notifications for Facebook, Github, Twitter auth link

											
										
										
											2014-02-01 04:58:59 +00:00
+								        req.flash('errors', { msg: 'There is already a Facebook account that belongs to you. Sign in with that account or delete it, then link it with your current account.' });
 								        done(err);
-												Add Merge strategy for Facebook so far

											
										
										
											2014-01-31 21:28:12 +00:00
+								      } else {
 								        User.findById(req.user.id, function(err, user) {
 								          user.facebook = profile.id;
 								          user.tokens.push({ kind: 'facebook', accessToken: accessToken });
 								          user.profile.name = user.profile.name || profile.displayName;
 								          user.profile.gender = user.profile.gender || profile._json.gender;
-												Update profile picture in Facebook strategy

											
										
										
											2014-02-01 03:23:19 +00:00
+								          user.profile.picture = user.profile.picture || 'https://graph.facebook.com/' + profile.id + '/picture?type=large';
-												Add Merge strategy for Facebook so far

											
										
										
											2014-01-31 21:28:12 +00:00
+								          user.save(function(err) {
-												Flash notifications for Facebook, Github, Twitter auth link

											
										
										
											2014-02-01 04:58:59 +00:00
+								            req.flash('info', { msg: 'Facebook account has been linked.' });
-												Add Merge strategy for Facebook so far

											
										
										
											2014-01-31 21:28:12 +00:00
+								            done(err, user);
 								          });
 								        });
 								      }
-												Twitter Login authentication

											
										
										
											2013-12-03 00:16:27 +00:00
+								    });
-												Facebook oauth2 checks if user is already logged in (for linking with existing account)

											
										
										
											2013-12-14 06:32:33 +00:00
+								  } else {
 								    User.findOne({ facebook: profile.id }, function(err, existingUser) {
-												Update profile picture in Facebook strategy

											
										
										
											2014-02-01 03:23:19 +00:00
+								      console.log(profile)
-												Facebook oauth2 checks if user is already logged in (for linking with existing account)

											
										
										
											2013-12-14 06:32:33 +00:00
+								      if (existingUser) return done(null, existingUser);
 								      var user = new User();
-												All 4 strategies will now create an email field (for local login) if the user is not logged in and it's the first time.

											
										
										
											2014-01-07 21:04:28 +00:00
+								      user.email = profile._json.email;
-												Facebook oauth2 checks if user is already logged in (for linking with existing account)

											
										
										
											2013-12-14 06:32:33 +00:00
+								      user.facebook = profile.id;
-												Code refactoring, renamed token to accessToken in user schema, comment strings for routes,

											
										
										
											2013-12-20 18:48:33 +00:00
+								      user.tokens.push({ kind: 'facebook', accessToken: accessToken });
-												Facebook oauth2 checks if user is already logged in (for linking with existing account)

											
										
										
											2013-12-14 06:32:33 +00:00
+								      user.profile.name = profile.displayName;
 								      user.profile.gender = profile._json.gender;
-												Update profile picture in Facebook strategy

											
										
										
											2014-02-01 03:23:19 +00:00
+								      user.profile.picture = 'https://graph.facebook.com/' + profile.id + '/picture?type=large';
-												Safe reference Facebook profile location

											
										
										
											2014-02-04 18:28:27 +00:00
+								      user.profile.location = (profile._json.location) ? profile._json.location.name : '';
-												Facebook oauth2 checks if user is already logged in (for linking with existing account)

											
										
										
											2013-12-14 06:32:33 +00:00
+								      user.save(function(err) {
 								        done(err, user);
 								      });
 								    });
 								  }
-												Cleaned up and refactored passport configuration file

											
										
										
											2013-12-07 01:16:39 +00:00
+								}));
-												Refactored github strategy

											
										
										
											2013-12-06 06:44:45 +00:00
-												Add Google and Github merge strategies

											
										
										
											2014-02-01 03:39:13 +00:00
+								/**
 								 * Sign in with GitHub.
 								 */
-												Renamed config.js to secrets.js to better match the intents of the file

											
										
										
											2013-12-20 06:31:16 +00:00
+								passport.use(new GitHubStrategy(secrets.github, function(req, accessToken, refreshToken, profile, done) {
-												Github oauth2 has a check for authenticated user now as well

											
										
										
											2013-12-14 06:29:49 +00:00
+								  if (req.user) {
-												Add Google and Github merge strategies

											
										
										
											2014-02-01 03:39:13 +00:00
+								    User.findOne({ $or: [{ github: profile.id }, { email: profile.email }] }, function(err, existingUser) {
 								      if (existingUser) {
-												Flash notifications for Facebook, Github, Twitter auth link

											
										
										
											2014-02-01 04:58:59 +00:00
+								        req.flash('errors', { msg: 'There is already a GitHub account that belongs to you. Sign in with that account or delete it, then link it with your current account.' });
 								        done(err);
-												Add Google and Github merge strategies

											
										
										
											2014-02-01 03:39:13 +00:00
+								      } else {
 								        User.findById(req.user.id, function(err, user) {
 								          user.github = profile.id;
 								          user.tokens.push({ kind: 'github', accessToken: accessToken });
 								          user.profile.name = user.profile.name || profile.displayName;
 								          user.profile.picture = user.profile.picture || profile._json.avatar_url;
 								          user.profile.location = user.profile.location || profile._json.location;
 								          user.profile.website = user.profile.website || profile._json.blog;
 								          user.save(function(err) {
-												Flash notifications for Facebook, Github, Twitter auth link

											
										
										
											2014-02-01 04:58:59 +00:00
+								            req.flash('info', { msg: 'GitHub account has been linked.' });
-												Add Google and Github merge strategies

											
										
										
											2014-02-01 03:39:13 +00:00
+								            done(err, user);
 								          });
 								        });
 								      }
-												Added github login strategy

											
										
										
											2013-12-03 22:38:14 +00:00
+								    });
-												Github oauth2 has a check for authenticated user now as well

											
										
										
											2013-12-14 06:29:49 +00:00
+								  } else {
 								    User.findOne({ github: profile.id }, function(err, existingUser) {
 								      if (existingUser) return done(null, existingUser);
-												Check if there is an account with a given email address when linking GitHub strategy.

											
										
										
											2014-02-14 17:23:50 +00:00
+								      User.findOne({ email: profile._json.email }, function(err, existingEmailUser) {
 								        if (existingEmailUser) {
 								          req.flash('errors', { msg: 'There is already an account using this email address. Sign in to that account and link it with GitHub manually from Account Settings.' });
 								          done(err);
 								        } else {
 								          var user = new User();
 								          user.email = profile._json.email;
 								          user.github = profile.id;
 								          user.tokens.push({ kind: 'github', accessToken: accessToken });
 								          user.profile.name = profile.displayName;
 								          user.profile.picture = profile._json.avatar_url;
 								          user.profile.location = profile._json.location;
 								          user.profile.website = profile._json.blog;
 								          user.save(function(err) {
 								            done(err, user);
 								          });
 								        }
-												Github oauth2 has a check for authenticated user now as well

											
										
										
											2013-12-14 06:29:49 +00:00
+								      });
 								    });
 								  }
-												Cleaned up and refactored passport configuration file

											
										
										
											2013-12-07 01:16:39 +00:00
+								}));
-												Refactored twitter strategy

											
										
										
											2013-12-06 06:24:12 +00:00
-												Add Twitter merging strategy

											
										
										
											2014-02-01 04:17:58 +00:00
+								/**
 								 * Sign in with Twitter.
 								 */
-												Renamed config.js to secrets.js to better match the intents of the file

											
										
										
											2013-12-20 06:31:16 +00:00
+								passport.use(new TwitterStrategy(secrets.twitter, function(req, accessToken, tokenSecret, profile, done) {
-												Detect if user is logged in on twitter oauth2 strategy

											
										
										
											2013-12-14 06:27:10 +00:00
+								  if (req.user) {
-												Instead of merging display flash messages notifying the user that account with another OAuth provider already exists.

											
										
										
											2014-02-01 04:56:50 +00:00
+								    User.findOne({ twitter: profile.id }, function(err, existingUser) {
-												Add Twitter merging strategy

											
										
										
											2014-02-01 04:17:58 +00:00
+								      if (existingUser) {
-												Flash notifications for Facebook, Github, Twitter auth link

											
										
										
											2014-02-01 04:58:59 +00:00
+								        req.flash('errors', { msg: 'There is already a Twitter account that belongs to you. Sign in with that account or delete it, then link it with your current account.' });
 								        done(err);
-												Add Twitter merging strategy

											
										
										
											2014-02-01 04:17:58 +00:00
+								      } else {
 								        User.findById(req.user.id, function(err, user) {
 								          user.twitter = profile.id;
 								          user.tokens.push({ kind: 'twitter', accessToken: accessToken, tokenSecret: tokenSecret });
 								          user.profile.name = user.profile.name || profile.displayName;
 								          user.profile.location = user.profile.location || profile._json.location;
 								          user.profile.picture = user.profile.picture || profile._json.profile_image_url;
 								          user.save(function(err) {
-												Flash notifications for Facebook, Github, Twitter auth link

											
										
										
											2014-02-01 04:58:59 +00:00
+								            req.flash('info', { msg: 'Twitter account has been linked.' });
-												Add Twitter merging strategy

											
										
										
											2014-02-01 04:17:58 +00:00
+								            done(err, user);
 								          });
 								        });
 								      }
-												facebook passport strategy implementation

											
										
										
											2013-11-19 06:03:11 +00:00
+								    });
-												Add Twitter merging strategy

											
										
										
											2014-02-01 04:17:58 +00:00
-												Detect if user is logged in on twitter oauth2 strategy

											
										
										
											2013-12-14 06:27:10 +00:00
+								  } else {
 								    User.findOne({ twitter: profile.id }, function(err, existingUser) {
 								      if (existingUser) return done(null, existingUser);
 								      var user = new User();
-												Better approach to Twitter email and Facebook location

											
										
										
											2014-02-04 16:23:52 +00:00
+								      // Twitter will not provide an email address.  Period.
 								      // But a person’s twitter username is guaranteed to be unique
-												Safe reference Facebook profile location

											
										
										
											2014-02-04 18:28:27 +00:00
+								      // so we can "fake" a twitter email address as follows:
-												Better approach to Twitter email and Facebook location

											
										
										
											2014-02-04 16:23:52 +00:00
+								      user.email = profile.username + "@twitter.com";
-												Detect if user is logged in on twitter oauth2 strategy

											
										
										
											2013-12-14 06:27:10 +00:00
+								      user.twitter = profile.id;
-												Code refactoring, renamed token to accessToken in user schema, comment strings for routes,

											
										
										
											2013-12-20 18:48:33 +00:00
+								      user.tokens.push({ kind: 'twitter', accessToken: accessToken, tokenSecret: tokenSecret });
-												Detect if user is logged in on twitter oauth2 strategy

											
										
										
											2013-12-14 06:27:10 +00:00
+								      user.profile.name = profile.displayName;
 								      user.profile.location = profile._json.location;
 								      user.profile.picture = profile._json.profile_image_url;
 								      user.save(function(err) {
 								        done(err, user);
 								      });
 								    });
 								  }
-												Cleaned up and refactored passport configuration file

											
										
										
											2013-12-07 01:16:39 +00:00
+								}));
-												facebook passport strategy implementation

											
										
										
											2013-11-19 06:03:11 +00:00
-												Add Google and Github merge strategies

											
										
										
											2014-02-01 03:39:13 +00:00
+								/**
 								 * Sign in with Google.
 								 */
-												Renamed config.js to secrets.js to better match the intents of the file

											
										
										
											2013-12-20 06:31:16 +00:00
+								passport.use(new GoogleStrategy(secrets.google, function(req, accessToken, refreshToken, profile, done) {
-												If user is already logged in, link google oauth with that existing account

											
										
										
											2013-12-13 05:28:29 +00:00
+								  if (req.user) {
-												Add Google and Github merge strategies

											
										
										
											2014-02-01 03:39:13 +00:00
+								    User.findOne({ $or: [{ google: profile.id }, { email: profile.email }] }, function(err, existingUser) {
 								      if (existingUser) {
-												Instead of merging display flash messages notifying the user that account with another OAuth provider already exists.

											
										
										
											2014-02-01 04:56:50 +00:00
+								        req.flash('errors', { msg: 'There is already a Google account that belongs to you. Sign in with that account or delete it, then link it with your current account.' });
 								        done(err);
-												Add Google and Github merge strategies

											
										
										
											2014-02-01 03:39:13 +00:00
+								      } else {
 								        User.findById(req.user.id, function(err, user) {
 								          user.google = profile.id;
 								          user.tokens.push({ kind: 'google', accessToken: accessToken });
 								          user.profile.name = user.profile.name || profile.displayName;
 								          user.profile.gender = user.profile.gender || profile._json.gender;
 								          user.profile.picture = user.profile.picture || profile._json.picture;
 								          user.save(function(err) {
-												Instead of merging display flash messages notifying the user that account with another OAuth provider already exists.

											
										
										
											2014-02-01 04:56:50 +00:00
+								            req.flash('info', { msg: 'Google account has been linked.' });
-												Add Google and Github merge strategies

											
										
										
											2014-02-01 03:39:13 +00:00
+								            done(err, user);
 								          });
 								        });
 								      }
-												Google oauth2 login

											
										
										
											2013-11-21 19:20:38 +00:00
+								    });
-												If user is already logged in, link google oauth with that existing account

											
										
										
											2013-12-13 05:28:29 +00:00
+								  } else {
 								    User.findOne({ google: profile.id }, function(err, existingUser) {
 								      if (existingUser) return done(null, existingUser);
-												Check if there is already an account that isn't linked to a google account but uses the google accounts email address

											
										
										
											2014-02-14 02:54:09 +00:00
+								      User.findOne({ email: profile._json.email }, function(err2, existingEmailUser) {
 								        if(existingEmailUser) {
-												Updated flash message in Google Strategy

											
										
										
											2014-02-14 17:02:07 +00:00
+								          req.flash('errors', { msg: 'There is already an account using this Google account\'s email address. Sign in with that account or delete it, then link it with your current account.' });
-												Check if there is already an account that isn't linked to a google account but uses the google accounts email address

											
										
										
											2014-02-14 02:54:09 +00:00
+								          done(err2);
 								        } else {
 								          var user = new User();
 								          user.email = profile._json.email;
 								          user.google = profile.id;
 								          user.tokens.push({ kind: 'google', accessToken: accessToken });
 								          user.profile.name = profile.displayName;
 								          user.profile.gender = profile._json.gender;
 								          user.profile.picture = profile._json.picture;
 								          user.save(function(err) {
 								            done(err, user);
 								          });
 								        }
-												If user is already logged in, link google oauth with that existing account

											
										
										
											2013-12-13 05:28:29 +00:00
+								      });
 								    });
 								  }
-												Cleaned up and refactored passport configuration file

											
										
										
											2013-12-07 01:16:39 +00:00
+								}));
-												facebook auth strategy

											
										
										
											2013-11-19 00:43:45 +00:00
-												Added comments explaining what each authentication strategy is used for.

											
										
										
											2014-02-14 16:29:28 +00:00
+								/**
 								 * Tumblr API
 								 * Uses OAuth 1.0a Strategy.
 								 */
-												Tumblr OAuth strategy

											
										
										
											2013-12-07 03:49:40 +00:00
+								passport.use('tumblr', new OAuthStrategy({
 								    requestTokenURL: 'http://www.tumblr.com/oauth/request_token',
 								    accessTokenURL: 'http://www.tumblr.com/oauth/access_token',
 								    userAuthorizationURL: 'http://www.tumblr.com/oauth/authorize',
-												Renamed config.js to secrets.js to better match the intents of the file

											
										
										
											2013-12-20 06:31:16 +00:00
+								    consumerKey: secrets.tumblr.consumerKey,
 								    consumerSecret: secrets.tumblr.consumerSecret,
 								    callbackURL: secrets.tumblr.callbackURL,
-												Added passReqToCallback to tumblr oauth strategy to get currently logged in user

											
										
										
											2013-12-07 05:29:32 +00:00
+								    passReqToCallback: true
-												Tumblr OAuth strategy

											
										
										
											2013-12-07 03:49:40 +00:00
+								  },
-												Added passReqToCallback to tumblr oauth strategy to get currently logged in user

											
										
										
											2013-12-07 05:29:32 +00:00
+								  function (req, token, tokenSecret, profile, done) {
 								    User.findById(req.user._id, function(err, user) {
-												Code refactoring, renamed token to accessToken in user schema, comment strings for routes,

											
										
										
											2013-12-20 18:48:33 +00:00
+								      user.tokens.push({ kind: 'tumblr', accessToken: token, tokenSecret: tokenSecret });
-												Added passReqToCallback to tumblr oauth strategy to get currently logged in user

											
										
										
											2013-12-07 05:29:32 +00:00
+								      user.save(function(err) {
-												Send user instead of req.user

											
										
										
											2013-12-07 07:18:26 +00:00
+								        done(err, user);
-												Added passReqToCallback to tumblr oauth strategy to get currently logged in user

											
										
										
											2013-12-07 05:29:32 +00:00
+								      });
-												Tumblr OAuth strategy

											
										
										
											2013-12-07 03:49:40 +00:00
+								    });
-												Redirect back to previous page when visiting login and sign up pages after user is already logged in

											
										
										
											2013-12-04 12:44:07 +00:00
+								  }
-												Tumblr OAuth strategy

											
										
										
											2013-12-07 03:49:40 +00:00
+								));
-												Added comments explaining what each authentication strategy is used for.

											
										
										
											2014-02-14 16:29:28 +00:00
+								/**
 								 * Foursquare API
 								 * Uses OAuth 2.0 Strategy.
 								 */
-												Added oauth2 foursquare passport strategy

											
										
										
											2013-12-07 17:30:54 +00:00
+								passport.use('foursquare', new OAuth2Strategy({
 								    authorizationURL: 'https://foursquare.com/oauth2/authorize',
 								    tokenURL: 'https://foursquare.com/oauth2/access_token',
-												Renamed config.js to secrets.js to better match the intents of the file

											
										
										
											2013-12-20 06:31:16 +00:00
+								    clientID: secrets.foursquare.clientId,
 								    clientSecret: secrets.foursquare.clientSecret,
 								    callbackURL: secrets.foursquare.redirectUrl,
-												Added oauth2 foursquare passport strategy

											
										
										
											2013-12-07 17:30:54 +00:00
+								    passReqToCallback: true
 								  },
 								  function (req, accessToken, refreshToken, profile, done) {
 								    User.findById(req.user._id, function(err, user) {
-												Code refactoring, renamed token to accessToken in user schema, comment strings for routes,

											
										
										
											2013-12-20 18:48:33 +00:00
+								      user.tokens.push({ kind: 'foursquare', accessToken: accessToken });
-												Added oauth2 foursquare passport strategy

											
										
										
											2013-12-07 17:30:54 +00:00
+								      user.save(function(err) {
 								        done(err, user);
 								      });
 								    });
 								  }
 								));
-												Added comments explaining what each authentication strategy is used for.

											
										
										
											2014-02-14 16:29:28 +00:00
+								/**
 								 * Venmo API
 								 * Uses OAuth 2.0 Strategy.
 								 */
-												Add Venmo oauth2 strategy

											
										
										
											2014-02-11 00:20:45 +00:00
+								passport.use('venmo', new OAuth2Strategy({
 								    authorizationURL: 'https://api.venmo.com/v1/oauth/authorize',
 								    tokenURL: 'https://api.venmo.com/v1/oauth/access_token',
 								    clientID: secrets.venmo.clientId,
 								    clientSecret: secrets.venmo.clientSecret,
 								    callbackURL: secrets.venmo.redirectUrl,
 								    passReqToCallback: true
 								  },
 								  function (req, accessToken, refreshToken, profile, done) {
 								    User.findById(req.user._id, function(err, user) {
 								      user.tokens.push({ kind: 'venmo', accessToken: accessToken });
 								      user.save(function(err) {
 								        done(err, user);
 								      });
 								    });
 								  }
 								));
-												Added comments explaining what each authentication strategy is used for.

											
										
										
											2014-02-14 16:29:28 +00:00
+								/**
 								 * Login Required middleware.
 								 */
-												Added isAuthorized middleware to tumblr and foursquare routes

											
										
										
											2013-12-08 07:23:59 +00:00
+								exports.isAuthenticated = function(req, res, next) {
-												Tumblr OAuth strategy

											
										
										
											2013-12-07 03:49:40 +00:00
+								  if (req.isAuthenticated()) return next();
-												Finally got angular to work with express partial routes

											
										
										
											2013-11-14 07:29:55 +00:00
+								  res.redirect('/login');
-												Created isAuthorized middleware

											
										
										
											2013-12-08 07:10:49 +00:00
+								};
-												passport isAuthorized middleware. Fixed headers already sent errors.

											
										
										
											2013-12-08 09:30:43 +00:00
-												Added comments explaining what each authentication strategy is used for.

											
										
										
											2014-02-14 16:29:28 +00:00
+								/**
 								 * Authorization Required middleware.
 								 */
-												passport isAuthorized middleware. Fixed headers already sent errors.

											
										
										
											2013-12-08 09:30:43 +00:00
+								exports.isAuthorized = function(req, res, next) {
 								  var provider = req.path.split('/').slice(-1)[0];
 								  if (_.findWhere(req.user.tokens, { kind: provider })) next();
 								  else res.redirect('/auth/' + provider);
-												Renamed config.js to secrets.js to better match the intents of the file

											
										
										
											2013-12-20 06:31:16 +00:00
+								};