Configuring Postman to test APIs using passport authorization

Question

Configuring Postman to test APIs using passport authorization

I'm a bit confused trying to get Postman to work when testing my application's API. Namely, I use Passport authentication; however, I do not know what type it defaults to or uses in my code. How can I understand this and what type to choose in Postman?

Here is the appropriate passport code:

var login = require('./login');
var signup = require('./signup');
var User = require('../models/user');

module.exports = function(passport, path, nodemailer, sesTransport, EmailTemplate, templateDir, template){

    // Passport needs to be able to serialize and deserialize users to support persistent login sessions
    passport.serializeUser(function(user, done) {
        //console.log('serializing user: ');console.log(user);
        done(null, user._id);
    });

    passport.deserializeUser(function(id, done) {
        User.findById(id, function(err, user) {
            //console.log('deserializing user:',user);
            done(err, user);
        });
    });

    // Setting up Passport Strategies for Login and SignUp/Registration
    login(passport);
    signup(passport, path, nodemailer, sesTransport, EmailTemplate, templateDir, template);

}

Finally, almost all of my API points only work when the user is logged in. How can I emulate the same behavior in Postman while retaining authorization credentials?

Edit:

Perhaps this code is relevant as well:


module.exports = function(passport){

    passport.use('login', new LocalStrategy({
            passReqToCallback : true,
            usernameField: 'email',
            passwordField: 'password'
        },
        function(req, username, password, done) { 
            // check in mongo if a user with username exists or not
            User.findOne({ 'email' :  username }, 
                function(err, user) {
                    // In case of any error, return using the done method
                    if (err)
                        return done(err);
                    // Username does not exist, log the error and redirect back
                    if (!user){
                        console.log('User Not Found with username '+username);
                        return done(null, false, req.flash('message', 'User Not found.'));                 
                    }
                    // User exists but wrong password, log the error 
                    if (!isValidPassword(user, password)){
                        console.log('Invalid Password');
                        return done(null, false, req.flash('message', 'Invalid Password')); // redirect back to login page
                    }
                    // User and password both match, return user from done method
                    // which will be treated like success
                    return done(null, user);
                }
            );

        })
    );


    var isValidPassword = function(user, password){
        return bCrypt.compareSync(password, user.password);
    }  
}

+4

rest node.js restful-authentication passport.js postman

Madphysicist Aug 05 '16 at 2:01

source share

1 answer

Samuel Toh · Answer 1 · 2016-08-05T04:50:14+0000

, , , .

; auth/local.

POST
" "
body → x-www-form-urlencoded
password

. :

access_token.

access_token, HTTP- HEADER , "Bearer

. :

Configuring Postman to test APIs using passport authorization

More articles: