javascript - Nginx + Node.js + express.js + passport.js: Subdommain stay authenticated -

-

i´ve got nginx server following config
, node.js server.

server.js

app         = express(),     cookiesession     = require('cookie-session'), app.use(cookiesession({     secret: config.session_secret,     resave: true,     saveuninitialized: true,     store: new redis({         port: config.redis_port     }),     cookie: { max_age: 43200000, domain:"localhost"} }));

nginx.conf

worker_processes  1;      events {         worker_connections  1024;     }       http {         upstream app {             server 127.0.0.1:3000;         }          server {             listen       80;             server_name  localhost;              client_max_body_size 32m;              location / {                 proxy_set_header x-real-ip $remote_addr;                 proxy_set_header x-forwarded-for $proxy_add_x_forwarded_for;                 proxy_set_header host $http_host;                 proxy_set_header x-nginx-proxy true;                 proxy_set_header upgrade $http_upgrade;                 proxy_set_header connection "upgrade";                 proxy_pass http://app/;                 proxy_redirect off;             }         }          server {             listen       80;             server_name  sub.localhost;             client_max_body_size 32m;               location / {                 proxy_set_header x-real-ip $remote_addr;                 proxy_set_header x-forwarded-for $proxy_add_x_forwarded_for;                 proxy_set_header host $http_host;                 proxy_set_header x-nginx-proxy true;                 proxy_set_header upgrade $http_upgrade;                 proxy_set_header connection "upgrade";                 proxy_pass http://app/;                 proxy_redirect off;             }         }         }

i´ve tried adding domain:".localhost" or domain:"*.localhost" tried adding 

app.use(function(req, res, next){    // website wish allow connect      res.setheader('access-control-allow-origin', req.headers.host)     // request methods wish allow     res.setheader('access-control-allow-methods', 'get, post, options, put, patch, delete');      // request headers wish allow     res.setheader('access-control-allow-headers', 'x-requested-with,content-type');      // set true if need website include cookies in requests sent     // api (e.g. in case use sessions)     res.setheader('access-control-allow-credentials', true);         next(); });

to server.js

the problem is, when authenticate on localhost im not authenticated on sub.localhost.

from login session across subdomains:

you can use: domain: ".app.localhost" , work. 'domain' parameter needs 1 or more dots in domain name setting cookies.


Comments

Post a Comment

Popular posts from this blog

Android : Making Listview full screen -

-
<linearlayout xmlns:android="http://schemas.android.com/apk/res/android" xmlns:tools="http://schemas.android.com/tools" android:layout_width="match_parent" android:layout_height="match_parent" android:orientation="vertical" tools:context=".mainactivity"> <edittext android:layout_margintop="5dp" android:layout_width="match_parent" android:layout_height="50dp" android:background="@drawable/location_edittext" android:id="@+id/locationeditext" android:textsize="15sp" android:textcolor="#999" android:paddingleft="15dp" /> <com.example.ravi_gupta.slider.viewpagercustomduration android:layout_width="wrap_content" android:layout_height="0dp" android:id="@+id/viewpager" android:scrollbarstyle="outsideoverlay" android:layout_weight="0.5&quo
Read more

javascript - Parse JSON from the body of the POST -

-
i'm using cameratag.com record video on website. service can send json response server can save data database. don't know how proceed here: the documentation states please note json repsonse passed in body of post , not form parameters. here example of how parse response in ruby: data = json.parse(request.raw_post) video_uuid = data["uuid"] but don't know how data on javascript. i'm not experienced in js please bare me :) post sample: { "uuid": "00012710-4b65-0131-ffe6-22000a499ea4", "camera_uuid": "98373a20-79ee-0130-3e42-1231390fcc11", "created_at": "2013-12-20t05:25:02.000z", "percent_complete": 100, "short_code": "kktb4q", "metadata": { }, "state": "published", "recorded_from": "http://singwho.com", "publish_type": null, "formats": [ { "name&qu
Read more

javascript - Chrome Extension: Interacting with iframe embedded within popup -

-
i writing chrome extension needs interact urls user not have open. therefore using hidden iframes embedded within popup, , attempting click button within iframe. however, receiving same origin policy error. know possible extension interact iframes of different domain via content scripts when iframe on tab user has open, not sure if possible use content scripts interact iframes directly in popup. here code: manifest.json "content_scripts": [ { "js": [ "bin/jquery.min.js", "interaction.js" ], "all_frames": true, "run_at": "document_start", "matches": [ "http://*/*", "https://*/*" ] }], "permissions": [ "activetab", "tabs", "http://*/", "https://*/" ], interaction.js $(document).ready(function() { $('div#iframes').append("<iframe id='shop' src=
Read more