Tweaked Module for implementing an OAuth2 server in Node.js.
npm install oauth2-express
- Supports
authorization_code
,client_credentials
,refresh_token
andpassword
grant, as well as extension grants, with scopes. - Can be used with promises, Node-style callbacks, ES6 generators and async/await (using Babel).
- Fully RFC 6749 and RFC 6750 compliant.
- Implicitly supports any form of storage, e.g. PostgreSQL, MySQL, MongoDB, Redis, etc.
- Along with all OAuth functionalities, we have tweaked this package to detect client based on the user's username and redirect the user to the client-specific portal. This helped us to have a single login screen and client-specific portals. User can enable this mode using
authWithoutClientCredentials
flag. - When this flag is set to true, then the user will not be needed to specify client id and client secrete with limitation is that an email id can be used only once for all clients in system.
- By-default this flag is set to false and default oauth implementation will work as per standard.