堆栈内存溢出
  简体   繁体   English

护照-Google-Auth + AWS Cognito + Node.js

[英]passport-google-auth + aws cognito + nodejs

 原文  2018-02-27 07:36:43       node.js/ passport.js/ aws-cognito

问题描述

I am using passport-google-auth to authenticate google users, and it returns me access_token that I am using to get aws Cognito credentials, but it throws an error: 我正在使用passport-google-auth对Google用户进行身份验证,它返回我用来获取aws Cognito凭据的access_token,但它抛出错误:

NotAuthorizedException: Invalid login token. NotAuthorizedException:无效的登录令牌。 Not a valid OpenId Connect identity token. 不是有效的OpenId Connect身份令牌。

my code snippet: 我的代码段: 

passport.use(new GoogleStrategy(googleDeveloperDetails, getUserDetails));

app.get("/auth/google", passport.authenticate("google", { scope: ['email'] }));

var authGoogle = passport.authenticate("google", {
failureRedirect: "/auth/google"
});

  app.get("auth/google/callback", authGoogle, controller.successRedirect);

 getUserDetails = function(accessToken, refreshToken, params, profile, done) {        
    profile.token = accessToken;      
    done(null, profile);
}

googleDeveloperDetails = {
    clientID: "google cleint ID",
    clientSecret: "google client secret",
    callbackURL: "https://localhost:3000/auth/google/callback",
    profileFields: ["emails", "profile"]
}

1 个解决方案

解决方案1
 0 已采纳  2018-02-27 08:39:51

Solved 解决了

Solved by using params.id_token which is received from Google. 通过使用从Google收到的params.id_token解决。 Google passport returns accessToken, refreshToken and params.id_token, after searching and reading open-id-connect providers I got the solution. 在搜索并读取开放ID连接提供程序后,Google护照返回了accessToken,refreshToken和params.id_token,我得到了解决方案。

Here's the solution: 解决方法如下: 

passport.use(new GoogleStrategy(googleDeveloperDetails, getUserDetails));

app.get("/auth/google", passport.authenticate("google", { scope: ['email'] }));

var authGoogle = passport.authenticate("google", {
    failureRedirect: "/auth/google"
});

app.get("auth/google/callback", authGoogle, controller.successRedirect);

getUserDetails = function(accessToken, refreshToken, params, profile, done) {
  if(profile.provider == "google") {
        // params.id_token to be used to get cognito credentials
        profile.token = params.id_token;   
  } else {
        profile.token = accessToken;
  }
  done(null, profile);
}

googleDeveloperDetails = {
   clientID: "google cleint ID",
   clientSecret: "google client secret",
   callbackURL: "https://localhost:3000/auth/google/callback",
   profileFields: ["emails", "profile"]
}

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 NodeJs + Async + Google auth + passport + aws-ssm - NodeJs + Async + Google auth + passport + aws-ssm NodeJs护照验证 - NodeJs Passport Auth 如何使用 AWS Cognito 与 Nodejs UI 应用程序和 Oauth 2.0 流使用护照 js? - How to use AWS Cognito with Nodejs UI app and Oauth 2.0 flow using passport js? Passport不会破坏Google的身份验证会话 - Passport not destroying auth session for Google NodeJS + Redis + Express + Passport Facebook身份验证失败 - NodeJS + Redis + Express + Passport Facebook auth fails 如何使用 facebook 令牌或 google accesstoken 使用 nodejs 或 lambda 函数注册 AWS cognito? - How can I signup with AWS cognito using facebook token or google accesstoken using nodejs or lambda functions? AWS - 使用nodejs的Cognito Identity - 如何处理令牌 - AWS - Cognito Identity with nodejs - What to do with tokens 如何在NodeJS上验证AWS Cognito访问令牌 - How to verify AWS Cognito Access Token on NodeJS Aws cognito 通过管理员 nodejs 创建用户 - Aws cognito create user by admin nodejs Node.js-护照和Google身份验证 - Node.js - Passport & Google Auth
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM