通过 websockets 的 Sails.js + Passport.js 身份验证 [英] Sails.js + Passport.js authentication through websockets

问题描述

当我将 Sails.js 与 Passport.js 一起使用时，当通过 websocket 请求时，req 对象上不存在 isAuthenticated 方法.

When I use Sails.js with Passport.js, the isAuthenticated method does not exist on the req object when requested through websocket.

谁能告诉我为什么会这样?

Could anyone tell me why this happens?

推荐答案

或者，您可以劫持 'router:request' 事件来为套接字请求插入通行证.我在 'config/bootstrap.js' 中这样做:

Alternatively, you can hijack the 'router:request' event to plug in passport for socket requests. I do this in 'config/bootstrap.js':

module.exports.bootstrap = function (cb) {

  var passport = require('passport'),
    initialize = passport.initialize(),
    session = passport.session(),
    http = require('http'),
    methods = ['login', 'logIn', 'logout', 'logOut', 'isAuthenticated', 'isUnauthenticated'];

  sails.removeAllListeners('router:request');
  sails.on('router:request', function(req, res) {
    initialize(req, res, function () {
      session(req, res, function (err) {
        if (err) {
          return sails.config[500](500, req, res);
        }
        for (var i = 0; i < methods.length; i++) {
          req[methods[i]] = http.IncomingMessage.prototype[methods[i]].bind(req);
        }
        sails.router.route(req, res);
      });
    });
  });
  cb();
};

使用这种方法，您不需要特殊处理来检查策略中的套接字请求身份验证.您仍然需要通过快速中间件的方式为非套接字请求连接通行证.

With this approach you don't need special handling for checking socket request authentication in policies. You do still need to hook up passport for non socket requests by way of express middleware.

这篇关于通过 websockets 的 Sails.js + Passport.js 身份验证的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！