Skip to content

Instantly share code, notes, and snippets.

@saltukalakus

saltukalakus/ws-fed-auth0.js

Forked from nzpcmad/ws-fed-auth0.js
Created November 22, 2018 15:23
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save saltukalakus/23ac39a3a72f247cfcb7d9d0b98eb4b4 to your computer and use it in GitHub Desktop.
Save saltukalakus/23ac39a3a72f247cfcb7d9d0b98eb4b4 to your computer and use it in GitHub Desktop.
Download ZIP
Node.js with Express SSL, WS-Fed and ADFS
Raw
ws-fed-auth0.js
// http://collectivegarbage.azurewebsites.net/use-thinktecture-identity-server-v2-to-authenticate-your-node-application/
var express = require('express'),
app = express(),
bodyParser = require('body-parser'),
cookieParser = require('cookie-parser'),
session = require('express-session'),
passport = require('passport'),
wsfedsaml2 = require('passport-wsfed-saml2').Strategy;
var fs = require('fs'),
https = require('https');
var options = {
key : fs.readFileSync('server.key'),
cert : fs.readFileSync('server.crt')
};
passport.use('wsfed-saml2', new wsfedsaml2({
realm: 'urn:node:wsfedapp',
identityProviderUrl: 'https://my-adfs.local/adfs/ls',
thumbprint: '5D...D27E'
},
function(profile, done) {
console.log(profile);
return done(null, new User(profile));
}));
passport.serializeUser(function(user, done) {
console.log('In Serializer');
done(null, user);
});
passport.deserializeUser(function(user, done) {
console.log('In DeSerializer');
done(null, user);
});
//Add middlewares
app.use(cookieParser());
//parse application/x-www-form-urlencoded
app.use(bodyParser.urlencoded({
extended: true
}));
app.use(session({
secret: 'keyboard cat',
resave: false,
saveUninitialized: true
}));
app.use(passport.initialize());
app.use(passport.session());
app.get('/', function(req, res) {
res.send('hello world');
});
app.get('/secure', ensureAuthenticated, function(req, res) {
res.send('you have access to secured resources');
});
app.get('/login', passport.authenticate('wsfed-saml2'));
app.post('/login/callback', passport.authenticate('wsfed-saml2'),
function(req, res) {
res.redirect('/secure');
}
);
//app.listen(3000, function() {
// console.log('Server started at port 3000');
//});
https.createServer(options, app).listen(3000, function () {
console.log('Server started at port 3000');
});
function ensureAuthenticated(req, res, next) {
if (req.isAuthenticated()) {
return next();
}
res.redirect('/login');
}
var User = function(user) {
this.id = user['http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name'];
this.email = user.email;
};
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment