Falcor API+ Generic OAuth2 Provider

Setup your application's code

npm install express-jwt express-jwt-authz falcor-express falcor-router falcor-http-datasource --save

Add the following lines to your base code

// server.js

const checkScopes = jwtAuthz([ 'read:messages' ]);

app.use('/api/private-scoped/model.json', checkJwt, checkScopes, falcorExpress.dataSourceRoute(function(req, res) {
  return new Router([
    {
      route: 'private_scoped.message',
      get: function(pathSet) {
        return { path:['private_scoped', 'message'], value: 'Hello from a private endpoint! You need to be authenticated and have a scope of read:messages to see this.' };
      }
    }
  ]);
}));

// api.js

app.get('/api/private-scoped', checkJwt, async function(req, res) {
  const token = req.headers.authorization.split(' ')[1];
  const model = new falcor.Model(
    {
      source: new HttpDataSource(
        'http://localhost:3000/api/private-scoped/model.json',
        {
          headers: { 'Authorization': 'Bearer ' + token }
        })
    });

  try {
    const message = await model.getValue(['private_scoped', 'message']);

    res.json({ message: message });
  } catch(err) {
    res.status(403).json(err[0].value);
  }
});

Create an Application in Auth0 dashboard 

Create an Application in Auth0 dashboard

Create a Social Generic OAuth2 Provider Connection under Connections / Social section

Create a Social Connection for authentication
GET STARTED IN MINUTES
Authentication Security and Availability

Authentication Built for Security & High Availability

Auth0 is the easiest way for developers to integrate enterprise-grade authentication and identity management to any app.

Industry Standard Compliance
Authentication Certifications and Compliance

SOC 2, HIPAA/BAA, EU/US Privacy Shield Framework, Open ID Certified.

Learn More
Built by Security Experts
uthentication Experts

Continuously reviewed and tested by external security experts. Strong password encryption and hashing algorithms, at rest and in transit.

Learn More
What Our Customers Say
Authentication Case Studies

Continuously reviewed and tested by external security experts. Strong password encryption and hashing algorithms, at rest and in transit.

Learn More
Availability & trust
Authentication Availability

Uptime time in 3 different regions.

Learn More
Host Anywhere
Auth0 Appliance

Deploy On-Premises or on Cloud on your data center or Auth0’s one.

Learn More
Auth0 Active Users

Get Auth0 free for 7,000 active users per month with unlimited logins

  • Single Sign On
  • Passwordless Login
  • Up to 2 Social Identity Providers
  • Multifactor Authentication
  • User Management
  • Extensibility (Run custom code on Auth)

Some of the companies that trust us every day

Atlassian - Authentication CustomerPBS - Authentication CustomerNVIDIA - Authentication CustomerMozilla - Authentication CustomerBluetooth - Authentication CustomerFinancial Times - Authentication CustomerJet - Authentication CustomerHMH - Authentication CustomerOptimizely - Authentication CustomerPolaris - Authentication CustomerHarper - Authentication CustomerNews Corp - Authentication Customer

You might also be interested