b80b90229f
refs: https://github.com/TryGhost/Toolbox/issues/188 - some of our older packages used a pattern for linting which missed using test config for linting tests - we need this to be consistent so that we can add more eslint rules for testing - two packages also didn't use the lib pattern, which made the lint pattern error - so this was fixed as well |
||
|---|---|---|
| .. | ||
| lib | ||
| test | ||
| .eslintignore | ||
| .eslintrc.js | ||
| index.js | ||
| package.json | ||
| README.md | ||
Session From Token Middleware
Middleware to handle generating sessions from tokens, for example like with magic links, or SSO flows similar to SAML.
Usage
const sessionFromTokenMiddleware = require('@tryghost/mw-session-from-token')({
callNextWithError: true,
async createSession(req, res, user) {
req.session.user_id = user.id;
},
async getTokenFromRequest(res) {
return req.headers['some-cool-header'];
},
async getLookupFromToken(token) {
await someTokenService.validate(token);
const data = await someTokenService.getData(token);
return data.email;
},
async findUserByLookup(lookup) {
return await someUserModel.findOne({email: lookup});
}
});
someExpressApp.get('/some/sso/url', someSessionMiddleware, sessionFromTokenMiddleware, (req, res, next) => {
res.redirect('/loggedin');
}, (err, res, res, next) => {
res.redirect('/error');
});