Skip to Content
RESTful Web API Design with Node.js 10 - Third Edition
book

RESTful Web API Design with Node.js 10 - Third Edition

by Valentin Bojinov
April 2018
Intermediate to advanced content levelIntermediate to advanced
178 pages
3h 51m
English
Packt Publishing
Content preview from RESTful Web API Design with Node.js 10 - Third Edition

Authorization

So far, the catalog data service uses basic authentication to protect its routes from unknown users; however, a catalog application should allow only few white-listed users to modify the items inside the catalog. To restrict access to the catalog, we will introduce the concept of authorization, that is, a subset of authenticated users, with appropriate permission allowed.

When Passport's done() function is invoked to authenticate a successful login, it takes as an argument a user instance of the user that has been granted authentication. The done() function adds that user model instance to the request object, and, in this way, provides access to it via the request.user property, after successful authentication. We will make ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

RESTful Web API Design with Node.js - Second Edition

RESTful Web API Design with Node.js - Second Edition

Valentin Bojinov
Hands-On RESTful API Design Patterns and Best Practices

Hands-On RESTful API Design Patterns and Best Practices

Harihara Subramanian J, Anupama Murali, Pethuru Raj

Publisher Resources

ISBN: 9781788623322Supplemental Content