Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Feathers 'Twitter API' style #385

Closed
khwerhahn opened this Issue Dec 26, 2016 · 1 comment

Comments

Projects
None yet
2 participants
@khwerhahn
Copy link

khwerhahn commented Dec 26, 2016

Hi,

I would like to offer a public api in the style twitter does .

{
    "consumerKey": "xxxx",
    "consumerSecret": "xxx",
    "accessToken": "xxx",
    "accessTokenSecret": "xxx"
}

Is there a "out of the box" way to do it with feathers and passport? I'm not too good on the security part and don't want to leave any unnecessary holes.

Thanks for the help!

@ekryski

This comment has been minimized.

Copy link
Member

ekryski commented Dec 30, 2016

@khwerhahn nope. Nothing "out of the box". If you are looking to setup your Feathers app as your own OAuth provider you can use the https://github.com/jaredhanson/oauth2orize since Feathers really is just Express.

With all that said you likely might not need to do that because you can simply allow someone to log in with a clientId and clientSecret (set those values as the usernameField and passwordField for your local strategy) and you can return a JWT access token as an API key. Hope that helps!

Going to close this as we don't have an official need to provide OAuth right now but feel free to leave a note and we might revisit. Thanks for the question! 😄

@ekryski ekryski closed this Dec 30, 2016

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.