没有使用NestJS和PassportJS的刷新标记
没有使用NestJS和PassportJS的刷新标记
提问于 2019-05-20 00:35:03
我使用两种不同的策略在我的NestJS应用程序中实现了谷歌和Dropbox身份验证。
问题是我从来没有和access_token一起得到过refresh_token。我已经尝试从我的Google/Dropbox账户中删除已经授权的应用程序,但没有成功。
import { Injectable } from '@nestjs/common';
import { PassportStrategy } from '@nestjs/passport';
import { Strategy } from 'passport-google-oauth2';
import { AuthService } from './auth.service';
import { OauthUser } from './oauth-user.entity';
import { UserService } from '../user/user.service';
import { ConfigService } from '../config/config.service';
import { CloudProvider } from '../shared/enums/cloud-service.enum';
@Injectable()
export class GoogleStrategy extends PassportStrategy(Strategy, 'google') {
constructor(private readonly authService: AuthService,
private readonly userService: UserService,
private readonly configService: ConfigService) {
super({
clientID: configService.get('OAUTH_GOOGLE_ID'),
clientSecret: configService.get('OAUTH_GOOGLE_SECRET'),
callbackURL: configService.get('OAUTH_GOOGLE_CALLBACK'),
passReqToCallback: true,
scope: ['email', 'profile', 'https://www.googleapis.com/auth/drive.file'],
accessType: 'offline',
prompt: 'consent',
session: false,
});
}
async validate(request: any, accessToken: string, refreshToken: string, oauthUser: OauthUser) {
console.log('accessToken', accessToken) // <- this one is good
console.log('refreshtoken', refreshToken) // <- always undefined
oauthUser.provider = CloudProvider.GOOGLE;
return this.userService.getOrCreate(oauthUser, accessToken).then(() => {
return this.authService.getJwtForUser(oauthUser).then(jwt => {
return { jwt };
});
});
}
}回答 1
Stack Overflow用户
发布于 2020-10-06 06:52:20
import { Injectable } from '@nestjs/common';
import { PassportStrategy } from '@nestjs/passport';
import { Strategy, VerifyCallback } from 'passport-google-oauth20';
import { IUserProfile } from './interfaces/user.interface';
@Injectable()
export class GoogleStrategy extends PassportStrategy(Strategy) {
constructor() {
super({
clientID: process.env.GOOGLE_CLIENT_ID,
clientSecret: process.env.GOOGLE_CLIENT_SECRET,
callbackURL: process.env.GOOGLE_CB_URL,
scope: ['email', 'profile'],
});
}
authorizationParams(): { [key: string]: string; } {
return ({
access_type: 'offline'
});
};
async validate(
accessToken: string,
refreshToken: string,
profile: IUserProfile,
done: VerifyCallback,
): Promise<void> {
const { emails } = profile;
console.log(accessToken, refreshToken);
done(null, {email: emails[0].value, accessToken});
}
}页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/56209863
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号