ERR_TOO_MANY_REDIRECTS 为索引使用 connect-ensure-login 时
ERR_TOO_MANY_REDIRECTS when using connect-ensure-login for index
我正在使用 passport.js 和本地策略,我可以使用 connect-ensure-login
的 ensureLoggedIn()
方法限制我的路线。
app.use('/login', login);
app.use('/connect', Auth.ensureLoggedIn('/login'), connect);
但是,如果我尝试保护主页,我会收到 ERR_TOO_MANY_REDIRECTS
错误,并且我会被重定向到登录页面:
app.use('/', Auth.ensureLoggedIn('/login'), index);
我试图调试这是为什么,但问题似乎只在保护索引时出现。如果我从索引路由中删除支票,它就可以正常工作。
任何人都可以发现我出错的地方或建议连接-确保登录的替代方法吗?
我的app.js
var express = require('express');
var path = require('path');
var favicon = require('serve-favicon');
var logger = require('morgan');
var cookieParser = require('cookie-parser');
var bodyParser = require('body-parser');
var passport = require('passport');
var LocalStrategy = require('passport-local').Strategy;
var Auth = require('connect-ensure-login');
var oauth1 = require('passport-oauth1');
var session = require('express-session');
var mongoose = require('mongoose');
var dbconf = require('./config/database');
var dbUser = require('./models/user');
var index = require('./routes/index');
var login = require('./routes/login');
var logout = require('./routes/logout');
var connect = require('./routes/connect');
var disconnect = require('./routes/disconnect');
var app = express();
// Database connection
mongoose.connect(dbconf.uri);
mongoose.Promise = global.Promise;
var db = mongoose.connection;
db.on('error',console.error.bind(console,'MongoDB connection error:'));
// view engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'jade');
// uncomment after placing your favicon in /public
//app.use(favicon(path.join(__dirname, 'public', 'favicon.ico')));
app.use(logger('dev'));
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: false }));
app.use(cookieParser());
app.use(express.static(path.join(__dirname, 'public')));
// Setup passport
app.use(session({secret: "Koiasoidpoaksdpoao98as", resave: true, saveUninitialized: false}));
app.use(passport.initialize());
app.use(passport.session());
passport.use(new LocalStrategy({
usernameField: 'email',
passwordField: 'password'
}, (email, password, done) => {
dbUser.findOne({email: email}, (err, user) => {
if (err) { return done(err)}
if (!user) { return done(null, false); }
if (!user.comparePassword(password)) { return done(null, false); }
return done(null, user);
});
})
);
passport.serializeUser(function(user, done) {
done(null, user.id);
});
passport.deserializeUser(function(user, done) {
dbUser.findById(user, (err, founduser) => {
if (err) { return done(err);}
done(null, founduser);
});
});
// set user variables for user detail in global layout
app.use(function(req,res,next){
let account = ((req.session || {}).etsy || {}).account;
let etsyval = false;
if (account) {
etsyval = true;
}
if (res.locals.connected) {
res.locals.connected.etsy = etsyval;
} else {
res.locals.connected = {etsy: etsyval};
}
next();
})
app.use('/', Auth.ensureLoggedIn('/login'), index);
app.use('/logout', logout);
app.use('/login', login);
app.use('/connect', Auth.ensureLoggedIn('/login'), connect);
app.use('/disconnect', Auth.ensureLoggedIn('/login'), disconnect);
// catch 404 and forward to error handler
app.use(function(req, res, next) {
var err = new Error('Not Found');
err.status = 404;
next(err);
});
// error handler
app.use(function(err, req, res, next) {
// set locals, only providing error in development
res.locals.message = err.message;
res.locals.error = req.app.get('env') === 'development' ? err : {};
// render the error page
res.status(err.status || 500);
res.render('error');
});
module.exports = app;
我的login.js(路线)
var express = require('express');
var router = express.Router();
var passport = require('passport');
router.get('/',(req, res, next) => {
res.render('login', {title:'Login to use Overseer'});
});
router.post('/', passport.authenticate('local', {successReturnToOrRedirect: '/', failureRedirect: '/login'}), (req,res,next) => {
if (req.body.remember) {
req.session.cookie.maxAge = 30 * 24 * 60 * 60 * 1000; // Cookie expires after 30 days
}
else {
req.session.cookie.expires = false; // Cookie expires at end of session
}
res.redirect('/');
});
module.exports = router;
当你做的时候
app.use('/somepath', Auth.ensureLoggedIn('/login'));
中间件不仅适用于/somepath
,还适用于/somepath/any
、/somepath/any/another
等
因此,安装在 /
的中间件会触发 every request. 在您的情况下,当请求重定向到 /login
时,中间件会触发并重定向到 /login
再次导致无限循环。
可能的解决方案是在 routes/index.js
:
中特别保护 GET /
router.get('/', Auth.ensureLoggedIn('/login'), (req, res) => ...);
或重新排序您的处理程序,以便只有受保护的路由受中间件影响:
app.use('/logout', logout);
app.use('/login', login);
// applies to all below
app.use(Auth.ensureLoggedIn('/login'));
app.use('/', index);
app.use('/connect', connect);
app.use('/disconnect', disconnect);
我正在使用 passport.js 和本地策略,我可以使用 connect-ensure-login
的 ensureLoggedIn()
方法限制我的路线。
app.use('/login', login);
app.use('/connect', Auth.ensureLoggedIn('/login'), connect);
但是,如果我尝试保护主页,我会收到 ERR_TOO_MANY_REDIRECTS
错误,并且我会被重定向到登录页面:
app.use('/', Auth.ensureLoggedIn('/login'), index);
我试图调试这是为什么,但问题似乎只在保护索引时出现。如果我从索引路由中删除支票,它就可以正常工作。
任何人都可以发现我出错的地方或建议连接-确保登录的替代方法吗?
我的app.js
var express = require('express');
var path = require('path');
var favicon = require('serve-favicon');
var logger = require('morgan');
var cookieParser = require('cookie-parser');
var bodyParser = require('body-parser');
var passport = require('passport');
var LocalStrategy = require('passport-local').Strategy;
var Auth = require('connect-ensure-login');
var oauth1 = require('passport-oauth1');
var session = require('express-session');
var mongoose = require('mongoose');
var dbconf = require('./config/database');
var dbUser = require('./models/user');
var index = require('./routes/index');
var login = require('./routes/login');
var logout = require('./routes/logout');
var connect = require('./routes/connect');
var disconnect = require('./routes/disconnect');
var app = express();
// Database connection
mongoose.connect(dbconf.uri);
mongoose.Promise = global.Promise;
var db = mongoose.connection;
db.on('error',console.error.bind(console,'MongoDB connection error:'));
// view engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'jade');
// uncomment after placing your favicon in /public
//app.use(favicon(path.join(__dirname, 'public', 'favicon.ico')));
app.use(logger('dev'));
app.use(bodyParser.json());
app.use(bodyParser.urlencoded({ extended: false }));
app.use(cookieParser());
app.use(express.static(path.join(__dirname, 'public')));
// Setup passport
app.use(session({secret: "Koiasoidpoaksdpoao98as", resave: true, saveUninitialized: false}));
app.use(passport.initialize());
app.use(passport.session());
passport.use(new LocalStrategy({
usernameField: 'email',
passwordField: 'password'
}, (email, password, done) => {
dbUser.findOne({email: email}, (err, user) => {
if (err) { return done(err)}
if (!user) { return done(null, false); }
if (!user.comparePassword(password)) { return done(null, false); }
return done(null, user);
});
})
);
passport.serializeUser(function(user, done) {
done(null, user.id);
});
passport.deserializeUser(function(user, done) {
dbUser.findById(user, (err, founduser) => {
if (err) { return done(err);}
done(null, founduser);
});
});
// set user variables for user detail in global layout
app.use(function(req,res,next){
let account = ((req.session || {}).etsy || {}).account;
let etsyval = false;
if (account) {
etsyval = true;
}
if (res.locals.connected) {
res.locals.connected.etsy = etsyval;
} else {
res.locals.connected = {etsy: etsyval};
}
next();
})
app.use('/', Auth.ensureLoggedIn('/login'), index);
app.use('/logout', logout);
app.use('/login', login);
app.use('/connect', Auth.ensureLoggedIn('/login'), connect);
app.use('/disconnect', Auth.ensureLoggedIn('/login'), disconnect);
// catch 404 and forward to error handler
app.use(function(req, res, next) {
var err = new Error('Not Found');
err.status = 404;
next(err);
});
// error handler
app.use(function(err, req, res, next) {
// set locals, only providing error in development
res.locals.message = err.message;
res.locals.error = req.app.get('env') === 'development' ? err : {};
// render the error page
res.status(err.status || 500);
res.render('error');
});
module.exports = app;
我的login.js(路线)
var express = require('express');
var router = express.Router();
var passport = require('passport');
router.get('/',(req, res, next) => {
res.render('login', {title:'Login to use Overseer'});
});
router.post('/', passport.authenticate('local', {successReturnToOrRedirect: '/', failureRedirect: '/login'}), (req,res,next) => {
if (req.body.remember) {
req.session.cookie.maxAge = 30 * 24 * 60 * 60 * 1000; // Cookie expires after 30 days
}
else {
req.session.cookie.expires = false; // Cookie expires at end of session
}
res.redirect('/');
});
module.exports = router;
当你做的时候
app.use('/somepath', Auth.ensureLoggedIn('/login'));
中间件不仅适用于/somepath
,还适用于/somepath/any
、/somepath/any/another
等
因此,安装在 /
的中间件会触发 every request. 在您的情况下,当请求重定向到 /login
时,中间件会触发并重定向到 /login
再次导致无限循环。
可能的解决方案是在 routes/index.js
:
GET /
router.get('/', Auth.ensureLoggedIn('/login'), (req, res) => ...);
或重新排序您的处理程序,以便只有受保护的路由受中间件影响:
app.use('/logout', logout);
app.use('/login', login);
// applies to all below
app.use(Auth.ensureLoggedIn('/login'));
app.use('/', index);
app.use('/connect', connect);
app.use('/disconnect', disconnect);