oAuth2 http://scottksmith.com/blog/2014/07/02/beer-locker-building-a-restful-api-with-node-oauth2-server/ using http bearer tokens for authorisation Authorization: Bearer npm install passport-http-bearer --save-dev

npm install oauth2orize —-save-devv

oauth2orize requires a Session Hopefully express-session works.