Reputation: 671
Django and NodeJs - Manage authentication
I'm using for my main app Django, and for a third party modules NodeJs with Express. Now, i have to manage in a secure way the authentication of the third party app to my main app written in Django, that implements Tokens for API and default Django Authentication methods.
I have a bunch of ideas in order to achieve that, like:
- Create an API endpoint that checks the authentication via Token and call that API from the NodeJs App for every request (so, the auth Token it will be stored in a secure way to the backend of the third party app)
- Check the auth cookie from the NodeJs app
I think that the first approach is the way to go, but if anyone has some smarter ideas i'll be glad to listen them!
Final remarks/notes: These two apps are exposed to the users using a reverse proxy, and the authentication check can be managed directly backend-to-backend, and, if it's all ok, the application will be served to the user, without exposing any token authentication to the frontend
Upvotes: 2
Views: 724
Answers (1)
Reputation: 671
Ok guys, i think that my answer needs to be shared: i've created a "validate" endpoint in my main Django app, and, using a custom middleware in NodeJS, on the third party app i'll check (directly in a backend-backend fashion way) the token validation and then serve the content.
Upvotes: 2
Related Questions
- Authentication in django
- Authorization between services Django and NodeJs
- Django remote user authentication and security
- Node js : How can I integrate authorization and authentication to my node application?
- How to use User Authentication with node.js
- django and angular.js with authentication
- nodejs user system authentication
- User Authentication in Django Rest Framework + Angular.js web app
- how to setup user authentication in django
- How do I authenticate a user in a Node app with Django authentication?