passport-discord.js
v0.0.6
Published
Passport strategies for authenticating with Discord using OAuth 2.0.
Downloads
79
Maintainers
Readme
passport-discord.js
Discord is a trademark or registered trademark of Hammer & Chisel, Inc. in the U.S. and/or other countries. "passport-discord.js" is not operated by, sponsored by, or affiliated with Hammer & Chisel Inc. in any way.
Passport strategies for authenticating with Discord using OAuth 2.0 API.
This module lets you authenticate using Discord in your Node.js applications. By plugging into Passport, Discord authentication can be easily and unobtrusively integrated into any application or framework that supports Connect-style middleware, including Express.
Install
$ npm install passport-discord.js
Usage of OAuth 2.0
Configure Strategy
The Discord OAuth 2.0 authentication strategy authenticates users using a Discord
account and OAuth 2.0 tokens. The strategy requires a verify
callback, which
accepts these credentials and calls done
providing a user, as well as
options
specifying a client ID, client secret, and callback URL.
var passport = require("passport");
var discordStrategy = require("passport-discord.js").Strategy;
passport.use(new discordStrategy({
clientID: DISCORD_CLIENT_ID,
clientSecret: DISCORD_CLIENT_SECRET,
callbackURL: "http://127.0.0.1:3000/auth/discord/callback",
scope: ["guilds", "connections", "email"]
},
function(accessToken, refreshToken, profile, done) {
//Handle Database Query Addition Here.
}
));
Authenticate Requests
Use passport.authenticate()
, specifying the "discord.js"
strategy, to
authenticate requests.
For example, as route middleware in an Express application:
app.get("/auth/discord", passport.authenticate("discord.js"));
app.get("/auth/discord/callback", passport.authenticate("discord.js", { failureRedirect: "/" }), function(req, res) {
// Successful authentication, redirect home.
res.redirect("/");
});
The request to this route should include a GET or POST data with the keys access_token
from Discord.
GET /auth/discord?access_token=<TOKEN>
Issues
If you receive a 401 Unauthorized
error, it is most likely because you have wrong access token or not yet specified any application permissions.
Once you refresh access token with new permissions, try to send this access token again.
Example
#!/bin/env node
require('dotenv').config();
var express = require('express');
var session = require('express-session');
var helmet = require('helmet');
var bodyParser = require('body-parser');
var passport = require('passport');
var refresh = require('passport-oauth2-refresh');
var _strategy = require('passport-discord.js').Strategy;
var app = express();
app.use(session({
key: process.env.SESSION_KEY,
secret: process.env.SESSION_SECRET,
resave: true,
saveUninitialized: true,
cookie: {
secure: true
}
}));
app.use(helmet());
app.use(bodyParser.urlencoded({ extended: true }));
app.use(bodyParser.json());
passport.serializeUser(function(u, d) {
d(null, u);
});
passport.deserializeUser(function(u, d) {
d(null, u);
});
var DiscordStrategy = new _strategy({
clientID: process.env.DISCORD_ID,
clientSecret: process.env.DISCORD_SECRET,
callbackURL: "http://127.0.0.1:3000/auth/discord/callback",
scope: ["guilds", "connections", "email"]
}, function(accesstoken, refreshToken, profile, done) {
console.log(profile);
return done(null, profile);
});
passport.use(DiscordStrategy);
refresh.use(DiscordStrategy);
app.get('/', function(req, res) {
if (!req.session.user) {
res.redirect('/login');
} else {
res.send(`Hello ${req.session.user.username}`);
}
});
app.get('/login', passport.authenticate('discord.js'}));
app.get('/auth/discord/callback', passport.authenticate('discord.js', { failureRedirect: '/' }), function(req, res) {
req.session.user = req.user;
console.log(req.user);
console.log(req.query);
res.redirect('/');
});
app.listen(process.env.SITE_PORT, process.env.SITE_HOST, function() {
console.log(`Express Started`);
});
Projected Maintained by: Randolph Aarseth(Bioblaze Payne)