Skip to content

ixd-system-design/Vault

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
private
private
 
 
public
public
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
server.js
server.js
 
 

Repository files navigation

Vault

This is an example of an Express app that uses Auth0 for User authentication. It displays a public landing page, but also shares secret data via an /api/secrets endpoint. This makes use of isAuthenticated logic to ensure the user is logged in before sending the secret data.

Setup Auth0

To use this code, create your own Auth0 account.

  • In the Auth0 dashboard choose Create Application
  • Choose the Regular Web Application option
  • When asked "What technology are you using", choose Express.
  • Select Integrate Now to Configure Auth0 with these settings:
  • Allowed Callback URL: http://localhost:3000/callback
  • Allowed Logout URLs: http://localhost:3000

Integrate Auth0

The Auth0 quickstart includes an Integrate the SDK section. This is useful as a point of comparison; this repo is setup in a similar way, but we will use Environment Variables, instead of hard-coding the details. These variables to the parameters that are needed by the Auth0 router, as specified in the Auth0 documentation.

Setup Environment Variables

Here's an example .env file showing the environment variables that are needed. You'll find something similar in the .env.example file included with in this repo. You will need to modify them to fit your own Auth0 account details.

BASE_URL=http://localhost:3000              # URL where the application is served 
SECRET=*****                                # A long, random string
CLIENT_ID=*****                             # Client ID found in your Application settings
ISSUER_BASE_URL=https://*****.auth0.com     # Auth0 URL found in your Application settings

Deploying to Vercel

When deploying to Vercel:

  1. Add the above settings as Environment Variables to your Vercel project during deployment, (or via Project > Settings > Environment Variables). Important: For the BASE_URL, use your actual Vercel project URL (e.g. https://my-project.vercel.app), instead of localhost.
  2. Update your Auth0 dashboard settings to allow Vercel: -Allowed Callback URL: http://localhost:3000/callback,https://my-project.vercel.app/callback -Allowed Logout URLs: http://localhost:3000,https://my-project.vercel.app

Note

If you're publishing templates via Express, you can also use the requiresAuth middleware that ships with Express OpenID Connect. This would allow you to automatically redirect users to a login page when they attempt to reach a secured page.

About

Auth0 Demo using ExpressJS

vault-nine-zeta.vercel.app

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages