passport
Ancient authentication library, built in the days when everything was built using tons of nested callbacks in NodeJS. The code works and makes sense, but is often hard to follow. Huge library of plugins that help you authenticate with others. The official documentation is pretty bad, but folks on Reddit have recommended this set of docs to help you truly understand dit: https://github.com/jwalton/passport-api-docs
Passport comes with ton of strategies as they call for login via various methods be it social logins like Facebook, Twitter , Github , google etc or be it local jwt, session etc. It is very old authentication package for nodejs and has a strong user community despite poor documentation we find the solution on other discussion platforms. It gets work done in case of social logins, but in the case of others, it is best to choose others over it. There are very few customisable options in any strategy available but is good for beginners who don't want to hustle for writing extra code and want to do things quickly.
I typically have a requirement to include some sort of authentication and authorization in my JavaScript projects, and Passport has fulfilled the authentication need for me on multiple occasions. I like that Passport doesn't tie me down to a particular database schema, allowing some design flexibility which is always appreciated since clients often have dated dependencies or existing databases. This allows me to utilize it for my core relational SQL systems as well as the occasional noSQL arrangement. I usually set it up to piggyback the authentication strategy off a delegate like Facebook or Twitter, but also have a long-running open source project that uses Google and GitHub for a more technical user base. That implementation has been extremely low maintenance, which is great in this era of security alerts and dependency issues piling up. This is definitely in my top picks when a client has a need for logins via social, and I have not regretted moving forward with it. Plus it has the added bonus of being easy to install and configure, which saves a good amount of time. Documentation has been sufficient as a last resort, but the developer community has some resources that are often more related to the tasks at hand.
passport.js is an authentication middleware for node.js. It supports a lot of social authentication using its plugins. The only con I noticed is the poorly written documentation. Also it still uses callback API which is highly inconvenient.
For all my node.js projects for authorization and authentication, I use the passport library. Code does the job but is hard to follow because it has lots of callbacks. The document is not well maintained but the community is very large and helpful you get most of the solutions on the discussion platform.it supports authentication with almost all social media platforms. It works with all types of the database schema and supports SQL and NoSQL.
I've used passport both professionally and on hobby projects, for years. It's well documented, and personally I found it easy to use. It provides a great api for authentication through various methods. There's a bit of a learning curve, but once you understand the framework, it makes it very easy to build an authentication system that's easily extensible - meaning down the road, if you want to add a new authentication method to your application, there will be a clear way to do so, by providing a new strategy for passport. Personally I've used it with local auth, google auth, and facebook auth, and had success all around. It also has support for sessions, which is very helpful
A highly extensible and reliable authentication middleware for Node that has been around for seemingly forever. However, till date passport remains of the most trusted go-to middleware for developers due to the insane number of ready made authentication strategies that are available for it. No matter what kind of authentication mechanism your application might require, chances are high that there is a pre-existing passport strategy available for you out there. With one of the largest community based ecosystems out there, passport is a highly recommended and well backed open source authentication middleware out there.
Passport is a battle-tested library for authentication, but it feels very outdated. The documentation is pretty bad, and it takes several trial-and-error attempts to actually get something working. I hope we get a nicer and more modern take on this library in the future. Since there aren't many alternatives to it, I still recommend it opposed to building auth layers yourself.
I have used it in most of my projects which requires authentication So here What I have found out Pros : 1. Great community - Lots of people are using it so you get help most of times if you get stuck 2. Easy to use for beginner 3. Lots of option for authentication including fb, twitter and google Cons : The only con is that its doc is not beginner friendly to hard
This library is a well written one with the exception that it uses callback hell for everything. I would recommend writing some wrappers for the whole setup with Promises and use that across all the projects. Even though there are a lot of plugins around authentication for many social sites, the documentation just is so bad. Support for sessions is also quite good.