OmniAuth is a flexible authentication system utilizing Rack middleware.

authentication hacktoberfest omniauth ruby

Go to file

James A. Rosen 2f77d46ce7 Moved HttpBasic to oa-more. Closes #327		2011-06-05 18:12:23 -07:00
lib	Moved HttpBasic to oa-more. Closes #327	2011-06-05 18:12:23 -07:00
oa-core	Merge branch 'master' of github.com:intridea/omniauth into 1.0-beta	2011-05-25 17:17:59 -05:00
oa-enterprise	Bumping version to 0.2.6	2011-05-20 16:07:58 -05:00
oa-identity	check whether identity model is persisted with ActiveModel's #persisted? method	2011-06-03 09:49:32 -07:00
oa-more	Moved HttpBasic to oa-more. Closes #327	2011-06-05 18:12:23 -07:00
oa-oauth	added dropbox strategy	2011-06-01 01:02:38 -04:00
oa-openid	Moved HttpBasic to oa-more. Closes #327	2011-06-05 18:12:23 -07:00
tasks	Moved HttpBasic to oa-more. Closes #327	2011-06-05 18:12:23 -07:00
.autotest	Replace watchr with autotest	2011-04-22 13:13:24 -05:00
.document	Initial commit to rack-oauthable.	2010-03-25 19:37:03 -04:00
.gemtest	Gem dependency refactor	2011-04-22 02:52:52 -05:00
.gitignore	Ignore lots of stuff that should be ignored	2011-05-09 21:33:18 -07:00
.rspec	Switch to progress format to make Travis builds easier to read etc.	2011-04-25 10:22:29 -05:00
.travis.yml	Don't test against Ruby 1.9.1 until Rack restores compatibility	2011-05-24 23:06:52 -07:00
.yardopts	Gem dependency refactor	2011-04-22 02:52:52 -05:00
Gemfile	Moved HttpBasic to oa-more. Closes #327	2011-06-05 18:12:23 -07:00
LICENSE.md	Convert license to Markdown	2011-05-07 11:55:39 -07:00
README.md	Add WePay strategy	2011-05-27 17:19:25 -04:00
Rakefile	Rakefiles are executables	2011-05-14 10:11:04 -07:00
omniauth.gemspec	Moved HttpBasic to oa-more. Closes #327	2011-06-05 18:12:23 -07:00

README.md

OmniAuth: Standardized Multi-Provider Authentication

OmniAuth is a new Rack-based authentication system for multi-provider external authentcation. OmniAuth is built from the ground up on the philosophy that authentication is not the same as identity, and is based on two observations:

The traditional 'sign up using a login and password' model is becoming the exception, not the rule. Modern web applications offer external authentication via OpenID, Facebook, and/or OAuth.
The interconnectable web is no longer a dream, it is a necessity. It is not unreasonable to expect that one application may need to be able to connect to one, three, or twelve other services. Modern authentication systems should allow a user's identity to be associated with many authentications.

Installation

To install OmniAuth, simply install the gem:

gem install omniauth

Continuous Integration

Providers

OmniAuth currently supports the following external providers:

via OAuth (OAuth 1.0, OAuth 2, and xAuth)
- 37signals ID (credit: mbleigh)
- Bit.ly (credit: philnash)
- Blogger (credit: dsueiro-backing)
- DailyMile (credit: cdmwebs)
- Doit.im (credit: chouti)
- Dopplr (credit: flextrip)
- Douban (credit: quake)
- Evernote (credit: szimek)
- Facebook (credit: mbleigh)
- Foursquare (credit: mbleigh)
- GitHub (credit: mbleigh)
- GoodReads (credit: cristoffer)
- Google Health (credit: jaigouk)
- Gowalla (credit: kvnsmth)
- Hyves (credit: mrdg)
- Identi.ca (credit: dcu)
- Instagram (credit: kiyoshi)
- Instapaper (credit: micpringle)
- LinkedIn (credit: mbleigh)
- Mailru (credit: lexer)
- Meetup (credit coderoshi)
- Miso (credit: rickenharp)
- Mixi (credit: kiyoshi)
- Netflix (credit: caged)
- Plurk (credit: albb0920)
- Qzone (credit: quake)
- Rdio (via brandonweiss)
- Renren (credit: quake)
- Salesforce (via CloudSpokes)
- SmugMug (credit: pchilton)
- SoundCloud (credit: leemartin)
- T163 (credit: quake)
- Taobao (credit: l4u)
- TeamBox (credit jrom)
- Tqq (credit: quake)
- TradeMe (credit: pchilton)
- TripIt (credit: flextrip)
- Tsina (credit: quake)
- Tsohu (credit: quake)
- Tumblr (credit: jamiew)
- Twitter (credit: mbleigh)
- Vimeo (credit: jamiew)
- Vkontakte (credit: german)
- WePay (credit: ryanwood)
- Yammer (credit: kltcalamay)
- YouTube (credit: jamiew)
CAS (Central Authentication Service) (credit: jamesarosen)
Flickr (credit: pchilton)
Google Apps (via OpenID) (credit: mbleigh)
LDAP (credit: pyu10055)
OpenID (credit: mbleigh)
Yupoo (credit: chouti)

Compatibility

OmniAuth is tested against the following Ruby versions:

1.8.7
1.9.1
1.9.2
JRuby (note, the Evernote strategy is not available for JRuby)
Rubinius
REE

Usage

OmniAuth is a collection of Rack middleware. To use a single strategy, you simply need to add the middleware:

require 'oa-oauth'
use OmniAuth::Strategies::Twitter, 'CONSUMER_KEY', 'CONSUMER_SECRET'

Now to initiate authentication you merely need to redirect the user to /auth/twitter via a link or other means. Once the user has authenticated to Twitter, they will be redirected to /auth/twitter/callback. You should build an endpoint that handles this URL, at which point you will will have access to the authentication information through the omniauth.auth parameter of the Rack environment. For example, in Sinatra you would do something like this:

get '/auth/twitter/callback' do
  auth_hash = request.env['omniauth.auth']
end

The hash in question will look something like this:

{
  'uid' => '12356',
  'provider' => 'twitter',
  'user_info' => {
    'name' => 'User Name',
    'nickname' => 'username',
    # ...
  }
}

The user_info hash will automatically be populated with as much information about the user as OmniAuth was able to pull from the given API or authentication provider.

Resources

The best place to find more information is the OmniAuth Wiki. Some specific information you might be interested in:

OmniAuth Core

Michael Bleigh (mbleigh)
Erik Michaels-Ober (sferik)

License

OmniAuth is licensed under the MIT License.