Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Blog] How to register authentication strategies #2725

Closed
1 task
dhmlau opened this issue Apr 11, 2019 · 2 comments
Closed
1 task

[Blog] How to register authentication strategies #2725

dhmlau opened this issue Apr 11, 2019 · 2 comments
Assignees
@emonddr
Labels
Authentication

Comments

@dhmlau
Copy link
Member

dhmlau commented Apr 11, 2019
edited by emonddr

Description

The authentication package is being updated with

The shopping cart example will also be given an overhaul to utilize the new capabilities of the authentication package in loopbackio/loopback4-example-shopping#79 and will contain an example of a jwt authentication strategy being registered as an extension of the authentication strategy extension point.

Also #2312 will have light documentation on how to properly register authentication strategies.

So this blog would mention :

  • that our authentication package has been updated with these new capabilities
  • that we welcome community members to contribute new authentications strategies to the authenticate package
  • that our passport strategy adapter is still available and works in the updated design
  • links to documentation for understanding how strategies are registered
  • link to the shopping cart example
  • how the users/login endpoint in the shopping cart example wasn't decorated with a strategy, and the logic for validating user credentials occurred in the controller method, and a token service was used to create a JWT token
  • show how the JWTAuthenticationStrategy in the shopping cart example was registered as an authentication strategy extension , and how the users/me endpoint was decorated with @authenticate('jwt') and how the JWTAuthenticationStrategy.authenticate() method will determine if the user is authorized to access this endpoint or not.

Acceptance Criteria

  • Blog conforms to LoopBack team's blogging standards
@dhmlau dhmlau mentioned this issue Apr 11, 2019
Closed
@dhmlau
Copy link
Member Author

dhmlau commented Apr 12, 2019

@jannyHou @emonddr , please add the acceptance criteria. thanks.

@jannyHou jannyHou mentioned this issue May 8, 2019
Closed
@dhmlau dhmlau mentioned this issue May 14, 2019
Closed
6 tasks
@dhmlau dhmlau mentioned this issue Jun 3, 2019
Closed
37 tasks
@dhmlau dhmlau added 2019Q3 and removed 2019Q2 labels Jun 19, 2019
@dhmlau
Copy link
Member Author

dhmlau commented Jul 9, 2019

closing as done.

@dhmlau dhmlau closed this as completed Jul 9, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@emonddr emonddr

Labels
Authentication
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@emonddr @dhmlau