Authentication Tutorial

This tutorial will show you how to use the authentication system and create custom adapters.

The Auth adapter handles authentication requests.


The client authentication service provides some API methods:

const auth = core.make('osjs/auth');
auth.user(); // Get user information; // Shows the authentication dialog (internal usage only)
auth.login({username, password}); // Log in a user
auth.logout(reload?); // Log out current user

User Information

You can get the user information from core.make('osjs/auth').user() in the client and req.session.user in the server.

Custom Authentication Adapter

To set up your adapter, see the authentication guide.

To generate a new adapter using the example via CLI run npm run make:auth.

For general information about development see development article.


const myAdapter = (core, config) => ({
  login: values => {
    // You can transform the form values from login here if you want
    return Promise.resolve(values);

  logout: () => {
    // And perform special operations on logout
    return Promise.resolve(true);

export default myAdapter;


In this example we only allow the user anders with the password evenrud.

Please note that the OS.js client expects to receive an JSON object with at least {id, username}.

const myAdapter = (core, config) => ({
  login: (req, res) => {
    const {username, password} = req.body;

    if (username === 'anders' && password === 'evenrud') {
      return Promise.resolve({id: 666, username, groups: ['admin']});

    return Promise.resolve(false);

  logout: (req, res) => {
    return Promise.resolve(true);

module.exports = myAdapter;

Blacklisting applications

If you return an array of application names in the property blacklist from the login, you can hide applications from a user.

This can be configured via the authentication adapter you're using.

OS.js Web Desktop - © Anders Evenrud <>

results matching ""

    No results matching ""