How to use the loopback4-authentication.authenticateClient function in loopback4-authentication
To help you get started, we’ve selected a few loopback4-authentication examples, based on popular ways it is used in public projects.
Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.
sourcefuse / loopback4-starter / src / modules / auth / login.controller.ts View on Github 
@inject(AuthorizationBindings.USER_PERMISSIONS)
private readonly getUserPermissions: UserPermissionsFn,
@repository(AuthClientRepository)
public authClientRepository: AuthClientRepository,
@repository(UserRepository)
public userRepo: UserRepository,
@repository(UserTenantRepository)
public userTenantRepo: UserTenantRepository,
@repository(UserTenantPermissionRepository)
public utPermsRepo: UserTenantPermissionRepository,
@repository(RefreshTokenRepository)
public refreshTokenRepo: RefreshTokenRepository,
) {}
// sonarignore_end
@authenticateClient(STRATEGY.CLIENT_PASSWORD)
@authenticate(STRATEGY.LOCAL)
@authorize(['*'])
@post('/auth/login', {
responses: {
[STATUS_CODE.OK]: {
description: 'Auth Code',
content: {
[CONTENT_TYPE.JSON]: Object,
},
},
},
})
async login(
@requestBody()
req: LoginRequest,
): Promise<{}
const authClient = await this.authClientRepository.findOne({
where: {
clientId: refreshPayload.clientId,
},
});
if (!authClient) {
throw new HttpErrors.Unauthorized(AuthErrorKeys.ClientInvalid);
}
return this.createJWT(
{clientId: refreshPayload.clientId, userId: refreshPayload.userId},
authClient,
);
}
@authenticateClient(STRATEGY.CLIENT_PASSWORD)
@authenticate(
STRATEGY.GOOGLE_OAUTH2,
{
accessType: 'offline',
scope: ['profile', 'email'],
authorizationURL: process.env.GOOGLE_AUTH_URL,
callbackURL: process.env.GOOGLE_AUTH_CALLBACK_URL,
clientID: process.env.GOOGLE_AUTH_CLIENT_ID,
clientSecret: process.env.GOOGLE_AUTH_CLIENT_SECRET,
tokenURL: process.env.GOOGLE_AUTH_TOKEN_URL,
},
(req: Request) => {
return {
accessType: 'offline',
state: Object.keys(req.query)
.map(key => key + '=' + req.query[key])loopback4-authentication
A loopback-next extension for authentication feature. Oauth strategies supported.
Package Health Score
87 / 100Popular loopback4-authentication functions
- loopback4-authentication.authenticate
- loopback4-authentication.authenticateClient
- loopback4-authentication.AuthenticationBindings.CLIENT_AUTH_ACTION
- loopback4-authentication.AuthenticationBindings.CURRENT_CLIENT
- loopback4-authentication.AuthenticationBindings.CURRENT_USER
- loopback4-authentication.AuthenticationBindings.USER_AUTH_ACTION
- loopback4-authentication.AuthErrorKeys.ClientInvalid
- loopback4-authentication.AuthErrorKeys.ClientSecretMissing
- loopback4-authentication.AuthErrorKeys.ClientUserMissing
- loopback4-authentication.AuthErrorKeys.CodeExpired
- loopback4-authentication.AuthErrorKeys.InvalidCredentials
- loopback4-authentication.AuthErrorKeys.TokenExpired
- loopback4-authentication.AuthErrorKeys.UnknownError
- loopback4-authentication.AuthErrorKeys.WrongPassword
- loopback4-authentication.Strategies.Passport
- loopback4-authentication.STRATEGY.BEARER
- loopback4-authentication.STRATEGY.CLIENT_PASSWORD
- loopback4-authentication.STRATEGY.GOOGLE_OAUTH2
- loopback4-authentication.STRATEGY.LOCAL
- loopback4-authentication.STRATEGY.OAUTH2_RESOURCE_OWNER_GRANT