Node-red Nextcloud Oauth 2 Login

ℹ️ Support
1

Nextcloud version (eg, 12.0.2): 14.0.3
Operating system and version (eg, Ubuntu 17.04): Debian 9
Apache or nginx version (eg, Apache 2.4.25): Nginx
PHP version (eg, 7.1): 7.1

Note: This is a cross post from the Nodr-red forum to see if anyone has any ideas on this side

I’m trying to log into my Node-red instance using Nextcloud 14’s new Oath2 implementation. I get through the login with nextcloud and get re-directed to the callback url
https://example.tld/node-red/auth/strategy/callback?state=&code=################################################################################################################################ but then I just get re-directed back to the node-red login screen

Nginx settings for node-red

  #############
  # Node-Red  #
  #############
  location ^~ /node-red/ {
        proxy_set_header Host $http_host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection "upgrade";
        proxy_pass http://127.0.0.1:1880/node-red/;
  }

my settings.js based off the http://www.passportjs.org/packages/passport-oauth2/#usage example

  adminAuth: {
        type:"strategy",
        strategy: {
            name: "oauth2",
            label: 'Sign in with nextcloud',
            icon:"fa-cloud",
            strategy: require("passport-oauth2").Strategy,
            options: {
              authorizationURL: "https://example.tld/apps/oauth2/authorize",
              tokenURL: "https://example.tld/apps/oauth2/api/v1/token",
              clientID: "#####################################################################",
              clientSecret: "#####################################################################",
              callbackURL: "https://example.tld/node-red/auth/strategy/callback",
              proxy: true
            },
            verify: function(accessToken, refreshToken, profile, cb) {
                done(null, profile);
            }
       },
       users: [{
            username: "dugite.code",
            permissions: ["*"]
        }]
    },

Looking at this guy’s gitlab login example it should all be possible:
https://www.claudiuscoenen.de/2018/10/oauth2-with-nextcloud-provider-and-gitlab-client/

There is a user information url available but passport didn’t call for it.
"user_info_url" : "/ocs/v2.php/cloud/user?format=json"

I’m probably missing somethings simple

2

Ok so Reading here it looks like I do need to call "/ocs/v2.php/cloud/user?format=json" url somehow in order to actually get the username for the profile object.

Don’t know how to do that yet with passport.js