Remote route end point in auth that are not called
parent
b4be1f859f
commit
a5df9697e9
62
app.js
62
app.js
|
@ -118,12 +118,35 @@ debug(trusted);
|
||||||
app.use(helmet.contentSecurityPolicy({
|
app.use(helmet.contentSecurityPolicy({
|
||||||
defaultSrc: trusted,
|
defaultSrc: trusted,
|
||||||
scriptSrc: ['*.optimizely.com'].concat(trusted),
|
scriptSrc: ['*.optimizely.com'].concat(trusted),
|
||||||
'connect-src': ['ws://*.rafflecopter.com', 'wss://*.rafflecopter.com','https://*.rafflecopter.com', 'ws://www.freecodecamp.com', 'ws://localhost:3001/', 'http://localhost:3001', 'http://www.freecodecamp.com'],
|
'connect-src': [
|
||||||
|
'ws://*.rafflecopter.com',
|
||||||
|
'wss://*.rafflecopter.com',
|
||||||
|
'https://*.rafflecopter.com',
|
||||||
|
'ws://www.freecodecamp.com',
|
||||||
|
'ws://localhost:3001/',
|
||||||
|
'http://localhost:3001',
|
||||||
|
'http://www.freecodecamp.com'
|
||||||
|
],
|
||||||
styleSrc: trusted,
|
styleSrc: trusted,
|
||||||
imgSrc: ['*.evernote.com', '*.amazonaws.com', "data:", '*.licdn.com', '*.gravatar.com', '*.youtube.com'].concat(trusted),
|
imgSrc: [
|
||||||
fontSrc: ["'self", '*.googleapis.com'].concat(trusted),
|
'*.evernote.com',
|
||||||
mediaSrc: ['*.amazonaws.com', '*.twitter.com'],
|
'*.amazonaws.com',
|
||||||
frameSrc: ['*.gitter.im', '*.vimeo.com', '*.twitter.com', '*.rafflecopter.com'],
|
'data:',
|
||||||
|
'*.licdn.com',
|
||||||
|
'*.gravatar.com',
|
||||||
|
'*.youtube.com'
|
||||||
|
].concat(trusted),
|
||||||
|
fontSrc: ['*.googleapis.com'].concat(trusted),
|
||||||
|
mediaSrc: [
|
||||||
|
'*.amazonaws.com',
|
||||||
|
'*.twitter.com'
|
||||||
|
],
|
||||||
|
frameSrc: [
|
||||||
|
'*.gitter.im',
|
||||||
|
'*.vimeo.com',
|
||||||
|
'*.twitter.com',
|
||||||
|
'*.rafflecopter.com'
|
||||||
|
],
|
||||||
reportOnly: false, // set to true if you only want to report errors
|
reportOnly: false, // set to true if you only want to report errors
|
||||||
setAllHeaders: false, // set to true if you want to set all headers
|
setAllHeaders: false, // set to true if you want to set all headers
|
||||||
safari5: false // set to true if you want to force buggy CSP in Safari 5
|
safari5: false // set to true if you want to force buggy CSP in Safari 5
|
||||||
|
@ -231,40 +254,41 @@ app.post('/completed_challenge', function(req, res) {
|
||||||
/**
|
/**
|
||||||
* OAuth sign-in routes.
|
* OAuth sign-in routes.
|
||||||
*/
|
*/
|
||||||
|
|
||||||
|
var passportOptions = {
|
||||||
|
successRedirect: '/',
|
||||||
|
failureRedirect: '/login'
|
||||||
|
};
|
||||||
|
|
||||||
app.get('/auth/twitter', passport.authenticate('twitter'));
|
app.get('/auth/twitter', passport.authenticate('twitter'));
|
||||||
app.get(
|
app.get(
|
||||||
'/auth/twitter/callback',
|
'/auth/twitter/callback',
|
||||||
passport.authenticate('twitter', {
|
passport.authenticate('twitter', {
|
||||||
successRedirect: '/',
|
successRedirect: '/',
|
||||||
failureRedirect: '/login'
|
failureRedirect: '/auth/twitter/middle'
|
||||||
}), function(req, res) {
|
})
|
||||||
res.redirect(req.session.returnTo || '/');
|
);
|
||||||
|
|
||||||
|
app.get('/auth/twitter/middle', function(req, res, next) {
|
||||||
});
|
});
|
||||||
|
|
||||||
app.get(
|
app.get(
|
||||||
'/auth/linkedin',
|
'/auth/linkedin',
|
||||||
passport.authenticate('linkedin', {
|
passport.authenticate('linkedin', {
|
||||||
state: 'SOME STATE'
|
state: 'SOME STATE'
|
||||||
}));
|
})
|
||||||
|
);
|
||||||
|
|
||||||
app.get(
|
app.get(
|
||||||
'/auth/linkedin/callback',
|
'/auth/linkedin/callback',
|
||||||
passport.authenticate('linkedin', {
|
passport.authenticate('linkedin', passportOptions)
|
||||||
successRedirect: '/',
|
);
|
||||||
failureRedirect: '/login'
|
|
||||||
}), function(req, res) {
|
|
||||||
res.redirect(req.session.returnTo || '/');
|
|
||||||
});
|
|
||||||
|
|
||||||
app.get(
|
app.get(
|
||||||
'/auth/facebook',
|
'/auth/facebook',
|
||||||
passport.authenticate('facebook', { scope: ['email', 'user_location'] })
|
passport.authenticate('facebook', { scope: ['email', 'user_location'] })
|
||||||
);
|
);
|
||||||
|
|
||||||
var passportOptions = {
|
|
||||||
successRedirect: '/',
|
|
||||||
failureRedirect: '/login'
|
|
||||||
};
|
|
||||||
app.get(
|
app.get(
|
||||||
'/auth/facebook/callback',
|
'/auth/facebook/callback',
|
||||||
passport.authenticate('facebook', passportOptions), function(req, res) {
|
passport.authenticate('facebook', passportOptions), function(req, res) {
|
||||||
|
|
Loading…
Reference in New Issue