javascript - Passport Local strategy session using express in Node.js -


i'm newbie in node.js , used passport-local strategy login session. set things in web app, i'm having big problem session.

i tried multiple users can login web app @ same time, there problem. 1 of users(ex. username paul) log in first, , user(chris) log in after, paul's view of web app changed chris' view.

i'm not sure guys understand mean here 1 of code in node.js

app.get('/location', isloggedin, function(req, res){   var user_temp = {user: ''};   user_temp.user = global_username;   res.render('location/index1', user_temp); });

and below code passport local-strategy

var localstrategy = require('passport-local').strategy; passport.use('local-login',   new localstrategy({       usernamefield : 'email',       passwordfield : 'password',       passreqtocallback : true     },     function(req, email, password, done) {       user.findone({ 'email' :  email }, function(err, user) {         if (err) return done(err);         if (!user){             req.flash("email", req.body.email);             return done(null, false, req.flash('loginerror', 'no user found.'));         }         if (!user.authenticate(password)){             req.flash("email", req.body.email);             return done(null, false, req.flash('loginerror', 'password not match.'));         }         var email_address = req.body.email;         username_tmp = email_address;         var username = email_address.substring(0, email_address.lastindexof("@"));         global_username = username;         pass = req.body.password;         return done(null, user);       });     }   ) );

i think problem because of global_username, paul can see chris' view of location. however, don't know how user variable , put ejs each users.

can me out here....?

thanks in advance!

p.s. if asked confused, can edit question again , explain more...

you can't use globals, overwritten each request result in issue you're describing.

instead, if have set passport , express-session correctly, passport provide user data each (authenticated) request through req.user:

app.get('/location', isloggedin, function(req, res) {   res.render('location/index1', { user : req.user }); });

you can take @ the passport-local example application idea on how connected.


Comments

Post a Comment

Popular posts from this blog

commonjs - How to write a typescript definition file for a node module that exports a function? -

consider, toml node module can use: // toml.d.ts declare module toml { export function parse(value:string):any; } declare module "toml" { export = toml; } then: /// <reference path="../../../../../defs/toml/toml.d.ts"/> import toml = require('toml'); toml.parse(...); however, node module export single function, such 'glob' ( https://github.com/isaacs/node-glob ). the node usage of module be: var glob = require("glob") glob("*.js", {}, callback(err, files) { ... }); you'd naively expect this: // glob.d.ts declare function globs(paths:string, options:any, callback:{(err:any, files:string[]):void; ...but because typescripts 'import' semantics bit strange, seems can use 'import .. = require()' statement alias modules . trying call: /// <reference path="../../../../../defs/glob/glob.d.ts"/> import blog = require('glob'); results in: error ts2072: mod
Read more

openid - Okta: Failed to get authorization code through API call -

i'm integrating okta own idp server using okta's api. i'm implementing authorization code flow following steps below: in own server, use /api/v1/authn endpoint sessiontoken. use sessiontoken obtain authorization calling endpoint: /oauth2/v1/authorize?client_id=" + clientid + "&sessiontoken=" + sessiontoken + "&response_type=code&response_mode=query&scope=openid&redirect_uri=" + redirecturl + "&state=evanyang&nonce=" it's supposed return response status code 302 , location header containing redirect url code value. however, keep getting response status code 200 , without location header, html body saying "you using unsupported browser." , "javascript disabled on browser." according api documentation: http://developer.okta.com/docs/api/resources/oidc.html#authentication-request , sessiontoken parameter sufficient this: an okta one-time sessiontoken. allows api-based
Read more

thorough guide for profiling racket code -

did googling ("racket profiling", "racket measure performance"), didn't find , there no examples in docs. did google "profile" search on htdp - no luck. (profile (f ...)) output isn't obvious other small snippets. ideally want python's python -m cprofile usage examples. when search "python profiling", both duckduckgo , google give top result: 26.4. python profilers . (although scanned quickly, seems more of reference "thorough usage guide" examples. if had else in mind, perhaps please link that?) the equivalent racket documentation be: profile: statistical profiler . a usage example: #lang racket (require profile) (profile-thunk (thunk (function-to-profile arg0 arg1) )) here (thunk e) convenience (lambda () e) . bigger example: #lang racket (module mod racket (provide f) (define (f) (for/list ([i 10000]) i))) (require (prefix-in mod: 'mod)) (define (f) (for ([i 10000
Read more