kotovalexarian-likes-github/omniauth--omniauth

mirror of https://github.com/omniauth/omniauth.git synced 2022-11-09 12:31:49 -05:00

OmniAuth is a flexible authentication system utilizing Rack middleware.

authentication hacktoberfest omniauth ruby

Find a file

Michael Bleigh 47dcfff403 Closes #42 . OpenID auth hash no longer requires an argument but relies on instance variable.		2010-10-11 10:49:02 -05:00
oa-basic	Closes #37 . Deprecates using rack.auth in favor of omniauth.auth	2010-10-09 22:20:56 -05:00
oa-core	Closes #42 . OpenID auth hash no longer requires an argument but relies on instance variable.	2010-10-11 10:49:02 -05:00
oa-enterprise	Closes #37 . Deprecates using rack.auth in favor of omniauth.auth	2010-10-09 22:20:56 -05:00
oa-oauth	Closes #37 . Deprecates using rack.auth in favor of omniauth.auth	2010-10-09 22:20:56 -05:00
oa-openid	Closes #42 . OpenID auth hash no longer requires an argument but relies on instance variable.	2010-10-11 10:49:02 -05:00
omniauth	Bumping version.	2010-10-06 07:49:45 -05:00
.document	Initial commit to rack-oauthable.	2010-03-25 19:37:03 -04:00
.gitignore	adding ldap authentication for oa-enterprise gem	2010-10-01 20:48:13 -05:00
development_dependencies.rb	Updated to 0.0.4.	2010-08-16 10:21:46 -05:00
Rakefile	Updated to 0.0.4.	2010-08-16 10:21:46 -05:00
README.markdown	Adding credits and Gowalla to README.	2010-10-09 14:00:10 -07:00
rspec.watchr	Moved 37signals into a single OAuth2 class.	2010-06-23 20:15:43 -04:00
VERSION	Bumping version.	2010-10-06 07:49:45 -05:00

README.markdown

OmniAuth: Standardized Multi-Provider Authentication

OmniAuth is a new Rack-based authentication system for multi-provider external authentcation. OmniAuth is built from the ground up on the philosophy that authentication is not the same as identity, and is based on two observations:

The traditional 'sign up using a login and password' model is becoming the exception, not the rule. Modern web applications offer external authentication via OpenID, Facebook, and/or OAuth.
The interconnectable web is no longer a dream, it is a necessity. It is not unreasonable to expect that one application may need to be able to connect to one, three, or twelve other services. Modern authentication systems should allow a user's identity to be associated with many authentications.

Installation

To install OmniAuth, simply install the gem:

gem install omniauth

Providers

OmniAuth currently supports the following external providers:

via OAuth
- Facebook
- Twitter
- 37signals ID
- Foursquare
- LinkedIn
- GitHub
- Gowalla [credit: kvnsmth]
OpenID
Google Apps (via OpenID)
CAS (Central Authentication Service) [credit: jamesarosen]
LDAP [credit: Ping Yu]

Usage

OmniAuth is a collection of Rack middleware. To use a single strategy, you simply need to add the middleware:

require 'oa-oauth'
use OmniAuth::Strategies::Twitter, 'CONSUMER_KEY', 'CONSUMER_SECRET'

Now to initiate authentication you merely need to redirect the user to /auth/twitter via a link or other means. Once the user has authenticated to Twitter, they will be redirected to /auth/twitter/callback. You should build an endpoint that handles this URL, at which point you will will have access to the authentication information through the rack.auth parameter of the Rack environment. For example, in Sinatra you would do something like this:

get '/auth/twitter/callback' do
  auth_hash = request.env['rack.auth']
end

The hash in question will look something like this:

{
  'uid' => '12356',
  'provider' => 'twitter',
  'user_info' => {
    'name' => 'User Name',
    'nickname' => 'username',
    # ...
  }
}

The user_info hash will automatically be populated with as much information about the user as OmniAuth was able to pull from the given API or authentication provider.

Resources

The best place to find more information is the OmniAuth Wiki. Some specific information you might be interested in: