stackoom
  简体   繁体   中英

How to use Google oAuth with Node.js backend and Angular frontend?

 原文  2018-11-05 16:50:00       node.js/ angular/ google-oauth

Question

I am using Node.js on backend and creates a token for a user each time logins. angularx-social-login package makes it very easy to integrate Google OAuth with Angular but how to use it with API? After successful login the Google returns user information with token. I was thinking to send this information to backend and login the user but for that I need to create a route which accepts email address and logins user. And this will return JWT token which is not secure. By secure I mean, anyone can access the route without Google Authentication and generate token.

I am looking for ideas how developers achieved this.

1 answers

solution1
 0 ACCPTED  2018-11-06 13:23:18

I found google-auth-library client package for Node.js managed by Google.

Here is the follow:

  1. Login user with Angular
  2. Send the idToken to backend
  3. Validate token and response to Angular

Node.js: 

exports.googleLogin = function(req, res, next) {
  //verify the token using google client
  return googleClient
    .verifyIdToken({
      idToken: req.body.token,
      audience: config.google.clientID
    })
    .then(login => {
      //if verification is ok, google returns a jwt
      var payload = login.getPayload();
      var userid = payload['sub'];

      //check if the jwt is issued for our client
      var audience = payload.aud;
      if (audience !== config.google.clientID) {
        throw new Error(
          'error while authenticating google user: audience mismatch: wanted [' +
            config.google.clientID +
            '] but was [' +
            audience +
            ']'
        );
      }
      //promise the creation of a user
      return {
        name: payload['name'], //profile name
        pic: payload['picture'], //profile pic
        id: payload['sub'], //google id
        email_verified: payload['email_verified'],
        email: payload['email']
      };
    })
    .then(user => {
      return res.status(200).json(user);
    })
    .catch(err => {
      //throw an error if something gos wrong
      throw new Error(
        'error while authenticating google user: ' + JSON.stringify(err)
      );
    });
};

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to test Passport JS Google OAuth on Node.js Express backend server without a frontend using Postman Is it possible to use an Angular 2 Dart frontend with a Node.js backend? how to use usestate with node.js backend and react frontend Production of Backend Node.js & Express and Frontend with Angular Call data to Angular FrontEnd from Node.js BackEnd Angular 2 + Node JS for backend and frontend how to implement social logins using jwt in node.js backEnd and angular 2 frontEnd How can I verify admin in frontend from backend? (Node.js, Angular, Mongodb) How get data with angular from the backend and send it with node.js for the frontend? how to use async await on javascript frontend to receive data from async await node.js backend
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM