From 982cd1e1f39b3614530d619a7efd3265173f7a3e Mon Sep 17 00:00:00 2001
From: Johannes Zellner <johannes@cloudron.io>
Date: Sun, 11 Oct 2015 12:29:24 +0200
Subject: [PATCH] Attach accessTokens to req for further use

This helps with extracting the token, which can come
from various places like headers, body or query
---
 src/auth.js | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/auth.js b/src/auth.js
index 0af5474af..a20e897f4 100644
--- a/src/auth.js
+++ b/src/auth.js
@@ -92,7 +92,7 @@ function initialize(callback) {
         });
     }));
 
-    passport.use(new BearerStrategy(function (accessToken, callback) {
+    passport.use(new BearerStrategy({ passReqToCallback: true }, function (req, accessToken, callback) {
         tokendb.get(accessToken, function (error, token) {
             if (error && error.reason === DatabaseError.NOT_FOUND) return callback(null, false);
             if (error) return callback(error);
@@ -116,6 +116,9 @@ function initialize(callback) {
                 tokenType = tokendb.TYPE_USER;
             }
 
+            // attach accessToken to req for further use
+            req.accessToken = accessToken;
+
             userdb.get(token.identifier, function (error, user) {
                 if (error && error.reason === DatabaseError.NOT_FOUND) return callback(null, false);
                 if (error) return callback(error);