OAuth 2 Provider for Connect & Express
This is a node.js module for implementing OAuth2 servers (providers) that support server-side (code) and client-side (token) OAuth flows.
It's very customizable, so you can (and currently, must) take care of OAuth token storage and client lists. In the future, a Mongo or Redis backed abstraction will be provided so you don't need to care about any kind of storage at all.
Install via npm:
npm install oauth2-provider
You can add it to your Connect or Express application as another middleware.
Be sure to enable the
The OAuth2Provider instance providers two middleware:
oauth(): OAuth flow entry and access token generation
login(): Access control for protected resources
The most importand event emitted by OAuth2Provider is
lets you set up the request as if it were authenticated. For example, to
support both cookie-authenticated and OAuth access to protected URLs, you
req.session.user so that individual URLs don't need to
care about which type of authentication was used.
See examples/simple.js for how to use it.