DEV Community

Implement Google OAuth in NestJS using Passport

Tosin Moronfolu on August 15, 2022

Introduction Authentication is an essential part of most applications. Implementing authentication in your application depends on requir...

Read full post

Ganesh Patil • Aug 15 '22

Well written @chukwutosin A great article consist well research and this is actually amazing!

Tosin Moronfolu • Aug 15 '22

Thank you! I appreeciate the feedback.

Alex Karydis • Nov 25 '23

Thank you for this amazing tutorial! Can confirm that everything is up to date.

Tosin Moronfolu • Jan 12

There might be upgrades in the versions of the several tools used, but it should still work just fine

Dener Rocha • Oct 16 '22

How to integrate with an angular app ? Just call the route in nestjs ?

Tosin Moronfolu • Oct 19 '22

yes. just call the endpoints like you normally would in a frontend app

Abhik Banerjee • Aug 15 '23

This was helpful. Thanks!

Tosin Moronfolu • Aug 15 '23

I'm glad you found it helpful. Thanks!

Jessé Azevêdo • Dec 22 '23

Hi @chukwutosin_ ,

Thank you very much for your amazing How To!

Tosin Moronfolu • Jan 12

You're welcome!

iGEORGE17 • Aug 16 '22

juss started learning nestJS, nice article

Tosin Moronfolu • Aug 16 '22

Oh, that's cool! I'm glad you found it helpful

shifoo28 • Nov 28 '23

Well done, bro

Seghosimhe David • Aug 18 '22

When running locally, the first route does not take me to the google authentication page, is that how it's supposed to be on localhost?

Tosin Moronfolu • Aug 18 '22

No, you probably missed a step. What route did you visit?

Seghosimhe David • Aug 18 '22

I created a route path in my user auth controller, localhost:3000//auth/google
Does it have to be just localhost:3000/

Tosin Moronfolu • Aug 18 '22

following the article. you just need to visit: localhost:3000/auth

Seghosimhe David • Aug 18 '22

it works, It did not work previously because I tried to access it from my swagger documentation

Seghosimhe David • Aug 18 '22

I have a question if you don't mind, In a case where you do not need a refreshToken, what other option can be passed to super() aside accessType?

Tosin Moronfolu • Aug 18 '22

Any other Google specific options can be passed there. Every other option can be found on Google's documentation which I linked at the end of the article

Seghosimhe David • Aug 19 '22

Thanks

Seghosimhe David • Aug 18 '22

Thanks

mundzirmuin • Aug 10 '23

Thanks, I'll try implement this in my next project

Tosin Moronfolu • Aug 15 '23

Great! Thanks

Matias • May 22 • Edited

@chukwutosin_ At this point how can I handle state?

I need to pass a custom parameter from the frontend, and get this parameter on backend redirection.

This is to save extra on my DB apart of the data google give me.

Thank you so much!

Matias • May 23 • Edited

I found a solution:

In file: google.strategy.ts add this function.

async authenticate(req: Request) {
    if (req.query.myData) {
      // /auth
      return super.authenticate('google', {
        state: req.query.myData,
      });
    }
    // /auth/callback
    return super.authenticate(req);
  }

In file: google.strategy.ts update constructor.

constructor() {
    super({
      clientID: '',
      clientSecret: '',
      callbackURL: '',
      scope: ['email', 'profile'],
      passReqToCallback: true, // <---- add this.
    });
  }

In file: google.strategy.ts update validate function.

  async validate(
    req: Request, // <---- add this.
    accessToken: string,
    refreshToken: string,
    profile: Profile,
    done: VerifyCallback,
  ): Promise<void> {
...

console.log(req.query.state); // <----- Your data will be here.

Abdul Azeez • Feb 5 '23

Please @chukwutosin_ is this going to save to the database?

Tosin Moronfolu • Mar 14 '23

There's no database setup here.