Giters

jpceia / express-auth0-boilerplate

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Express OpenID Connect Webapp Sample

This sample demonstrates authentication for an Express Node.js app. The sample quickly shows how to log in, log out, and view profile information of the logged-in user.

See a detailed walk-through of this sample app on the Express Quickstart.

Running This Sample Locally

1. Install the dependencies with npm:

npm install

2. Rename .env.example to .env and replace or check the following values.

⚠️ Note: If you downloaded this sample app directly from Auth0 Manage Dashboard, or from Auth0 Docs and you chose the Auth0 application you're creating this sample for, then you can check these are configured already:

  • CLIENT_ID - your Auth0 application client id
  • ISSUER_BASE_URL - absolute URL to your Auth0 application domain (ie: https://accountName.auth0.com)
  • SECRET - a randomly rengerated string. You can generate one on the command line with the following openssl rand -hex 32
mv .env.example .env

3. To run the sample follow these steps:

  • Set the Allowed Callback URLs in the Application Settings to:
http://localhost:3000/callback
  • Set the Allowed Logout URLs in the Application Settings to:
http://localhost:3000
  • Make sure Node.JS LTS is installed and execute the following commands in the sample's directory:
npm install
npm start
  • You can also run it from a Docker image with the following commands:
# In Linux / macOS
sh exec.sh
# In Windows' Powershell
./exec.ps1

4. Run the sample app:

npm start

The sample app will be served at localhost:3000.

Support + Feedback

Please use the Issues queue in this repo for questions and feedback.

Vulnerability Reporting

Please do not report security vulnerabilities on the public GitHub issue tracker. The Responsible Disclosure Program details the procedure for disclosing security issues.

What is Auth0?

Auth0 helps you to easily:

  • implement authentication with multiple identity providers, including social (e.g., Google, Facebook, Microsoft, LinkedIn, GitHub, Twitter, etc), or enterprise (e.g., Windows Azure AD, Google Apps, Active Directory, ADFS, SAML, etc.)
  • log in users with username/password databases, passwordless, or multi-factor authentication
  • link multiple user accounts together
  • generate signed JSON Web Tokens to authorize your API calls and flow the user identity securely
  • access demographics and analytics detailing how, when, and where users are logging in
  • enrich user profiles from other data sources using customizable JavaScript rules

Why Auth0?

License

This project is licensed under the MIT license. See the LICENSE file for more info.

About

Languages

Language:EJS 66.9%Language:JavaScript 33.1%