feat: update strategy to new linkedin implementation

auth0 · Sep 19, 2023 · b9a3780 · b9a3780
1 parent eb9890c
commit b9a3780
Show file tree

Hide file tree

Showing 7 changed files with 147 additions and 487 deletions.
diff --git a/example/server.js b/example/server.js
@@ -1,13 +1,13 @@
-var express = require('express')
-  , passport = require('passport')
-  , LinkedinStrategy = require('../lib').Strategy;
+var express = require("express"),
+  passport = require("passport"),
+  LinkedinStrategy = require("../lib").Strategy;
 
 // API Access link for creating client ID and secret:
 // https://www.linkedin.com/secure/developer
 var LINKEDIN_CLIENT_ID = process.env.LINKEDIN_CLIENT_ID;
 var LINKEDIN_CLIENT_SECRET = process.env.LINKEDIN_CLIENT_SECRET;
-var CALLBACK_URL = process.env.CALLBACK_URL || 'http://localhost:3000/auth/linkedin/callback';
-
+var CALLBACK_URL =
+  process.env.CALLBACK_URL || "http://localhost:3000/auth/linkedin/callback";
 
 // Passport session setup.
 //   To support persistent login sessions, Passport needs to be able to
@@ -16,107 +16,110 @@ var CALLBACK_URL = process.env.CALLBACK_URL || 'http://localhost:3000/auth/linke
 //   the user by ID when deserializing.  However, since this example does not
 //   have a database of user records, the complete Linkedin profile is
 //   serialized and deserialized.
-passport.serializeUser(function(user, done) {
+passport.serializeUser(function (user, done) {
   done(null, user);
 });
 
-passport.deserializeUser(function(obj, done) {
+passport.deserializeUser(function (obj, done) {
   done(null, obj);
 });
 
-
 // Use the LinkedinStrategy within Passport.
 //   Strategies in Passport require a `verify` function, which accept
 //   credentials (in this case, an accessToken, refreshToken, and Linkedin
 //   profile), and invoke a callback with a user object.
-passport.use(new LinkedinStrategy({
-    clientID:     LINKEDIN_CLIENT_ID,
-    clientSecret: LINKEDIN_CLIENT_SECRET,
-    callbackURL:  CALLBACK_URL,
-    scope:        ['r_liteprofile', 'r_emailaddress'],
-    passReqToCallback: true
-  },
-  function(req, accessToken, refreshToken, profile, done) {
-    // asynchronous verification, for effect...
-    req.session.accessToken = accessToken;
-    process.nextTick(function () {
-      // To keep the example simple, the user's Linkedin profile is returned to
-      // represent the logged-in user.  In a typical application, you would want
-      // to associate the Linkedin account with a user record in your database,
-      // and return that user instead.
-      return done(null, profile);
-    });
-  }
-));
-
-
-
+passport.use(
+  new LinkedinStrategy(
+    {
+      clientID: LINKEDIN_CLIENT_ID,
+      clientSecret: LINKEDIN_CLIENT_SECRET,
+      callbackURL: CALLBACK_URL,
+      scope: ["profile", "email", "openid"],
+      passReqToCallback: true,
+    },
+    function (req, accessToken, refreshToken, profile, done) {
+      // asynchronous verification, for effect...
+      req.session.accessToken = accessToken;
+      process.nextTick(function () {
+        // To keep the example simple, the user's Linkedin profile is returned to
+        // represent the logged-in user.  In a typical application, you would want
+        // to associate the Linkedin account with a user record in your database,
+        // and return that user instead.
+        return done(null, profile);
+      });
+    }
+  )
+);
 
 var app = express();
 
 // configure Express
-app.set('views', __dirname + '/views');
-app.set('view engine', 'ejs');
+app.set("views", __dirname + "/views");
+app.set("view engine", "ejs");
 app.use(express.logger());
 app.use(express.cookieParser());
 app.use(express.urlencoded());
 app.use(express.json());
-app.use(express.session({ secret: 'keyboard cat' }));
+app.use(express.session({ secret: "keyboard cat" }));
 // Initialize Passport!  Also use passport.session() middleware, to support
 // persistent login sessions (recommended).
 app.use(passport.initialize());
 app.use(passport.session());
 app.use(app.router);
-app.use(express.static(__dirname + '/public'));
+app.use(express.static(__dirname + "/public"));
 
-
-app.get('/', function(req, res){
-  res.render('index', { user: req.user });
+app.get("/", function (req, res) {
+  res.render("index", { user: req.user });
 });
 
-app.get('/account', ensureAuthenticated, function(req, res){
-  res.render('account', { user: req.user });
+app.get("/account", ensureAuthenticated, function (req, res) {
+  res.render("account", { user: req.user });
 });
 
 // GET /auth/linkedin
 //   Use passport.authenticate() as route middleware to authenticate the
 //   request.  The first step in Linkedin authentication will involve
 //   redirecting the user to linkedin.com.  After authorization, Linkedin
 //   will redirect the user back to this application at /auth/linkedin/callback
-app.get('/auth/linkedin',
-  passport.authenticate('linkedin', { state: 'SOME STATE' }),
-  function(req, res){
+app.get(
+  "/auth/linkedin",
+  passport.authenticate("linkedin", { state: "SOME STATE" }),
+  function (req, res) {
     // The request will be redirected to Linkedin for authentication, so this
     // function will not be called.
-  });
+  }
+);
 
 // GET /auth/linkedin/callback
 //   Use passport.authenticate() as route middleware to authenticate the
 //   request.  If authentication fails, the user will be redirected back to the
 //   login page.  Otherwise, the primary route function function will be called,
 //   which, in this example, will redirect the user to the home page.
-app.get('/auth/linkedin/callback',
-  passport.authenticate('linkedin', { failureRedirect: '/login' }),
-  function(req, res) {
-    res.redirect('/');
-  });
+app.get(
+  "/auth/linkedin/callback",
+  passport.authenticate("linkedin", { failureRedirect: "/login" }),
+  function (req, res) {
+    res.redirect("/");
+  }
+);
 
-app.get('/logout', function(req, res){
+app.get("/logout", function (req, res) {
   req.logout();
-  res.redirect('/');
+  res.redirect("/");
 });
 
-var http = require('http');
+var http = require("http");
 
 http.createServer(app).listen(3000);
 
-
 // Simple route middleware to ensure user is authenticated.
 //   Use this route middleware on any resource that needs to be protected.  If
 //   the request is authenticated (typically via a persistent login session),
 //   the request will proceed.  Otherwise, the user will be redirected to the
 //   login page.
 function ensureAuthenticated(req, res, next) {
-  if (req.isAuthenticated()) { return next(); }
-  res.redirect('/login');
+  if (req.isAuthenticated()) {
+    return next();
+  }
+  res.redirect("/login");
 }