how to handle authenticated && !req.isAuthenticated()? #120
Comments
|
i'll take a look, incidentally inside your authentication provider implementation 'this.trace' should be available to you rather than console.log which should provide clearer diagnostics to you. |
|
In the version of your code that I'm looking at, verifyAuthSuccess appears to always call 'self.success' is that intended? |
|
Yes and no. As I'm building this out I'm adding more features. Another bug I'm experiencing is that no matter whether I choose 'allow' or 'deny', I'm always getting a failure (which is ironic because I'm always returning success). But since I have a failure, I figured why not handle the failure case and then I'll look into why the success case isn't working. |
|
And when you choose allow/deny that information is being passed back in the On Thu, Mar 21, 2013 at 4:59 PM, AJ ONeal notifications@github.com wrote:
|
|
I'm not sure. I need to go back to the original example and see if the allow/deny fields are hard-coded or if I messed something up as I was editing it. I don't recall ever changing it. Would you care to chat over skype sometime today? I'm coolaj86, I've added you. |
|
I'm afraid I'm a bit tied up / busy atm. Is the code you've committed On Thu, Mar 21, 2013 at 5:10 PM, AJ ONeal notifications@github.com wrote:
|
|
Yes, I've been testing in Chrome. There may be a bug that affects firefox. I'll make another video in about an hour and show from git clone to up-and-running what I've done. |
|
Did you rerun |
|
ok, thank you that would allow me to rather more quickly diagnose where it On Thu, Mar 21, 2013 at 5:23 PM, AJ ONeal notifications@github.com wrote:
|
|
nope, never ran that at all! On Thu, Mar 21, 2013 at 5:23 PM, AJ ONeal notifications@github.com wrote:
|
|
I updated the README with the grunt build steps |
|
You may also want to include some of the steps in here: On Thu, Mar 21, 2013 at 5:25 PM, AJ ONeal notifications@github.com wrote:
|
|
if you git pull the README should have that in there |
|
I also needed to cd server/lib ln -s ../../blogthing-consumer/server.js consumer.js ln -s ../../bookface-provider/server.js provider.js before 'node bin/demo' would work for me. ;) (sorry) On Thu, Mar 21, 2013 at 5:35 PM, AJ ONeal notifications@github.com wrote:
|
|
Try deleting and re-cloning the project. Something is out of sync with what you have and what I have. |
|
Cloning has improved things (still got no web forms, but the sym links were logAuthentication); That will be having weird affects with the currently packaged version of Try req.authenticate(['foo'], logAuthentication); isntead?
On Thu, Mar 21, 2013 at 5:40 PM, AJ ONeal notifications@github.com wrote:
|
|
You were exactly right about that scope option. Now When I click deny and then go back to click login again (from the consumer) it pops open the dialog, but skips the oauth process. However, clicking on the login (consumer side) a few more times it will eventually get there. I think it's a cache bug where the browser assumes the previous redirect will be the current redirect. Perhaps there's a way to expire the redirect immediately so that this doesn't happen. |
|
Possibly, you should be able to confirm that with wireshark (see if the On Thu, Mar 21, 2013 at 7:48 PM, AJ ONeal notifications@github.com wrote:
|
Let's say I try to auth against my provider and instead of "Allow", I click "Deny".
I would expect that
authenticatedwould befalseandreq.isAuthenticated()would also be false.However, in my example I get back
trueandfalseand I'm not redirected back to the provider's dialog when I make a second attempt. Instead I'm immediately taken to my oauth callback, unable to ever allow.Am I doing something wrong?
The text was updated successfully, but these errors were encountered: