Hashnode/mern-starter

Passport Facebook Auth

Open

#324 opened on Aug 11, 2017

View on GitHub
 (0 comments) (0 reactions) (0 assignees)JavaScript (5,143 stars) (1,222 forks)batch import
help wantedquestion

Description

I created a login system for the site with Facebook via Passport. I keep the token on req.user and transfer it to the store through redux, and I keep it in local storage.

I'm stuck in the testing phase whether or not the user is logged in while loading the app for the first time. If it comes from the server, the local storage. is not defined.

Another option is to save the token in req.user or req.session, but I can not do dispatch to action what routes.js file.

routes.js:

`/* eslint-disable global-require */
import React from 'react';
import { Route, IndexRoute } from 'react-router';
import App from './modules/App/App';
import * as Actions from './modules/Auth/AuthActions';
import store, {dispatch} from './store.js';

  const requireLoggedIn = (nextState, replace, cb) => {
    let token = null;

    if (req && req.session.token) {
        token = req.session.token;
    }

    const requireLogin = (nextState, replace, cb) => {
        function checkAuth() {
            const { auth: { isAuthenticated }} = store.getState();
            if (!isAuthenticated) {
                replace('/login');
            }
            cb();
        }

        const { auth: { loaded }} = store.getState();
        if (!loaded) {
            store.dispatch(Actions.checkToken(token)).then(checkAuth);
        } else {
            checkAuth();
        }
    };
  };

export default (
  <Route path="/" component={App}>
    <IndexRoute
      getComponent={(nextState, cb) => {
        require.ensure([], require => {
          cb(null, require('./modules/Post/pages/PostListPage/PostListPage').default);
        });
      }}
    />
    <Route
      path="/login"
      getComponent={(nextState, cb) => {
        require.ensure([], require => {
          cb(null, require('./modules/Auth/components/LoginForm').default);
        });
      }}
    />
    <Route
      path="/test"
      getComponent={(nextState, cb) => {
        require.ensure([], require => {
          cb(null, require('./modules/Auth/components/LoginForm').default);
        });
      }}
    />
    <Route
      path="/posts/:slug-:cuid"
      onEnter={requireLoggedIn}
      getComponent={(nextState, cb) => {
        require.ensure([], require => {
          cb(null, require('./modules/Post/pages/PostDetailPage/PostDetailPage').default);
        });
      }}
    />
  </Route>
);
`

Actions.js:

`export function checkAuth () {
  return (dispatch) => {
    dispatch(requestCheckAuth());
    return fetch(`${baseURL}/auth/checkAuth`, {
      method: 'GET',
      credentials: 'same-origin',
      headers: new Headers({
        'Content-Type': 'application/json',
      }),
    })
    .then((response) => response.json())
    .then((response) => {
      console.log(response)
      const { user, message } = response;
      if (!user.ok) {
        dispatch(loginFailure(message));
        return Promise.reject(message);
      }

      localStorage.setItem('token', user.token);
      dispatch(loginSuccess(user));
    })
    .catch((err) => {
      console.log(err);
    });
  };
}`

server, checkAuth:

`export function checkAuth (req, res, next) { if (req.user) { return res.json({ message: '', user: { ok: true, token: generateToken(req.user), user: req.user} }); } else { return res.status(400).send({ msg: 'not authorization' }); }

}`

Contributor guide

Tech stack
javascriptreactnodejsexpressmongodb
Domain
full stackauthentication
Issue type
bug
DifficultyEstimated implementation difficulty for a new contributor, from 1 for very small changes to 5 for expert-level work.
3
Estimated timeA rough time range for an experienced contributor to investigate, implement, test, and prepare a pull request.
1-3 hours
Activity statusHow available the issue appears right now: fresh, active, stale, blocked, or waiting on maintainer input.
stale
ClarityHow clearly the issue explains the expected change, acceptance criteria, and next step.
mostly clear
Prerequisites
ReactReduxExpress/Node.jsPassport.js
Newbie friendlinessA 1-100 score estimating how approachable this issue is for first-time contributors.
20
Research direction
Investigate the existing authentication flow in the repository. The issue involves storing a token from Facebook OAuth via Passport and making it available on the client during initial load. Currently, the token is stored in req.user (server) and saved to localStorage (client), but localStorage is undefined during server side rendering. Potential solutions include using sessions (req.session) instead of localStorage for the initial check or implementing a middleware to set the token in Redux store before rendering. Review the routes.js and AuthActions.js files for the current implementation. Since the repository is deprecated, consider whether a fix is still relevant or if users should migrate to a newer boilerplate.