Allow Google Single Sign On using Passport

package.json: Add [passport-google-oauth](https://www.npmjs.com/package/passport-google-oauth) api/models/User.js: Allow create user via a google (with GoogleID) or local (with Password) config/passport.js: Configure GoogleStrategy config/route.js: Shortcut to access googleLogin via '/loginGoogle' api/controllers/AuthController.js: Create 'loginGoogle' to handle passport google authentication views/static/login.ejs: Add button
makah · Apr 15, 2016 · 49545f8 · 49545f8
1 parent 6adbdf7
commit 49545f8
Show file tree

Hide file tree

Showing 8 changed files with 96 additions and 8 deletions.
diff --git a/api/controllers/AuthController.js b/api/controllers/AuthController.js
@@ -33,6 +33,27 @@ module.exports = {
 
         })(req, res);
     },
+
+    loginGoogle: function(req, res) {
+        sails.log.info('AuthController.loginGoogle: ', 'Params', req.params.all());
+        var permissions = ['profile','email'];
+
+        passport.authenticate('google', {failureRedirect: '/loginGoogle', scope: permissions}, function(err, user, info) {
+            if ((err) || (!user)) {
+                return res.send({
+                    err: err,
+                    info: info,
+                    user: user
+                });
+            }
+            req.logIn(user, function(err) {
+                if (err)
+                    return res.send(err);
+
+                return res.redirect('/private');
+            });
+        })(req, res);
+    },
 
     logout: function(req, res) {
         req.logout();
@@ -79,7 +100,7 @@ module.exports = {
                     recipientName: user.name,
                     senderMail: user.email,
                     siteName: sails.config.siteName,
-                    siteAddrs: sails.config.appUrl,
+                    siteAddrs: process.env.APP_URL || 'https://www.myFirst-rateSite.com',
                     token: token
                 };
 
@@ -155,7 +176,7 @@ module.exports = {
                     resetPasswordExpires: {'>': Date.now()}
                 };
 
-                sails.log.silly(findParam);
+                sails.log.silly('AuthController.updatePassword',findParam);
 
                 User.findOne(findParam, function(err, user) {
                     if (!user) {
@@ -166,8 +187,8 @@ module.exports = {
                     }
 
                     user.password = params.password;
-                    user.resetPasswordToken = undefined;
-                    user.resetPasswordExpires = undefined;
+                    user.resetPasswordToken = null;
+                    user.resetPasswordExpires = null;
 
                     user.save(function(err) {
                         req.logIn(user, function(err) {

diff --git a/api/models/User.js b/api/models/User.js
@@ -23,6 +23,12 @@ module.exports = {
             minLength: 6,
         },
 
+        //Google Signin ID
+        googleId: 'string',
+
+        //Access token from the Google Authorization Server
+        googleAccessToken: 'string',
+
         resetPasswordToken: String,
         resetPasswordExpires: Date,
 

diff --git a/config/passport.js b/config/passport.js
@@ -1,5 +1,6 @@
 var passport = require('passport'),
 LocalStrategy = require('passport-local').Strategy,
+GoogleStrategy = require('passport-google-oauth').OAuth2Strategy,
 bcrypt = require('bcrypt');
 
 /////////////////////////
@@ -13,6 +14,11 @@ if(typeof locals === 'undefined'){
   return;
 }
 
+if(!locals.googleApiConfig){
+  console.log('[ERROR]', "MISSING: 'sails.config.googleApiConfig'");
+  return;
+}
+
 /////////////////////////
 /// CORE
 /////////////////////////
@@ -60,3 +66,51 @@ passport.use(new LocalStrategy(localOptions, function(email, password, done) {
     });
   }
 ));
+
+/////////////////////////
+/// Google
+/////////////////////////
+var googleOptions = {
+  clientID: locals.googleApiConfig.clientID,
+  clientSecret: locals.googleApiConfig.clientSecret,
+  callbackURL: locals.googleApiConfig.callbackURL.replace('{URL}', appUrl),
+};
+
+passport.use(new GoogleStrategy(googleOptions, function(accessToken, refreshToken, profile, done) {
+    sails.log.silly("Passport.Google: Found profile", {profile: profile});
+
+    if(!profile.emails || profile.length == 0){
+      var err = 'Passport.Google: Email Missing';
+      sails.log.error(err);
+      return done(err);
+    }
+
+    var findParam = {
+      googleId: profile.id
+    };
+
+    var createParam = {
+      name: profile.displayName,
+      email: profile.emails[0].value,
+      googleId: profile.id,
+    };
+
+    User.findOrCreate(findParam, createParam, function(err, user) {
+      if (err) {
+        sails.log.error('Passport.Google', err);
+        return done(err);
+      }
+
+      user.googleAccessToken = refreshToken ? refreshToken : accessToken;
+      user.save(function(err, usr) {
+        if(err){
+          sails.log.error('Passport.Google: Saving User Model', err);
+          return done(err);
+        }
+
+        sails.log.verbose('Passport.Google: Updating UserID', usr);
+        return done(null, user, { message: '(Google) Logged In Successfully' });
+      });
+    });
+  }
+));
diff --git a/config/routes.js b/config/routes.js
@@ -40,7 +40,8 @@ module.exports.routes = {
 
   'get /login': { view: 'static/login' },
   'post /login': 'AuthController.login',
-
+  '/loginGoogle': 'AuthController.loginGoogle',
+
   '/logout': 'AuthController.logout',
 
   '/forgotPassword': { view: 'static/forgotPassword' },

diff --git a/package.json b/package.json
@@ -26,6 +26,7 @@
     "bcrypt": "~0.8.0",
     "passport": "~0.2.1",
     "passport-local": "~1.0.0",
+    "passport-google-oauth": "^0.1.5",
     "sails-hook-email": "^0.12.1"
   },
   "scripts": {
@@ -39,4 +40,4 @@
   },
   "author": "ubuntu",
   "license": ""
-}
+}
diff --git a/views/emailTemplates/forgotPassword/html.ejs b/views/emailTemplates/forgotPassword/html.ejs
@@ -2,5 +2,5 @@
 <br/>
 <p>You have requested a new password for your account registered with <%=siteName%> Email.</p>
 <p>Click the following button to change your password</p></p>
-<a style="display:block;color:#ffffff;background-color:#357df4;margin:48px 0 40px 0;min-height:48px;line-height:48px;padding:0 1em;font-weight:bold;" href="<%=siteAddrs%>/password_resets/<%=token%>" target="_blank">Change Password</a>
+<a style="display:block;color:#ffffff;background-color:#357df4;margin:48px 0 40px 0;min-height:48px;line-height:48px;padding:0 1em;font-weight:bold;" href="<%=siteAddrs%>/resetPassword/<%=token%>" target="_blank">Change Password</a>
 <p>Thanks for using us!</p>
diff --git a/views/static/login.ejs b/views/static/login.ejs
@@ -1,6 +1,10 @@
 <h1>Login</h1>
-  <form method="POST" action="/login">
+<form method="POST" action="/login">
   <input type="email" name="email">
   <input type="password" name="password">
   <input type="submit" value="submit">
 </form>
+
+<form method="POST" action="/loginGoogle">
+  <input type="submit" value="Google Login">
+</form>
diff --git a/views/static/signup.ejs b/views/static/signup.ejs
@@ -1,5 +1,6 @@
 <h1>Signup</h1>
 <form method="POST" action="/user">
+  <input type="text" name="name">
   <input type="email" name="email">
   <input type="password" name="password">
   <input type="submit" value="submit">