stackoom
  简体   繁体   中英

Is there a server-side session in meteor

 原文  2014-06-05 18:14:14       javascript/ authentication/ login/ meteor

Question

I have a meteor site in which the login process is done via github. Github has aa very easy API and I can easily do this. However, when this authentication process is done, I have no idea how to validate requests made by the client. I think I need to use the collection's allow and deny methods, but how do I know which user made the request. I haven't seen any cookie information. Any help would be appreciated ?

2 answers

solution1
 1  2014-06-05 19:11:27

allow and deny pass the userId along with the object trying to be updated...

We do it like this: 

Fundraiser.allow({
  insert: function (userId, fundraiser) {
    return userId;
  },

  update: function (userId, fundraiser, fields) {
    return fundraiser.userId === userId;
  },

  remove: function (userId, fundraiser) {
    return fundraiser.userId === userId;
  }
});

solution2
 0  2015-12-04 14:22:28

Kind of, and its default expiration time is 90 days :

console.log("sessions:", Meteor.user().services.resume.loginTokens)

Unfortunately services.resume.loginTokens is not valid for storage according to Mongo, so use UserSession .

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Server-side debugging not working [Meteor 1.2] Server-side triggered toast in Meteor Meteor Server-Side HTTP Request Meteor Iron Router server-side hooks Server-side data submit in Meteor Server-side setInterval/clearInterval with Meteor Meteor: Call server-side method by client Server-side data validation in Meteor Server-side logout of current session meteor.js - temporary server-side app state
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM