I have a corporate OAuth 2.0 API that every application should use to authenticate its users. This API requires a request to have the following parameyers:
response_type : must be set to “token”
client_id : client identifier for the application
redirect_uri : URI for the callback
state : a random value used by the client to maintain state between the request and callback
Example:
Have you looked at OmniAuth yet? That's how I would try to connect to an OAuth provider. There is a Devise strategy for OmniAuth. All the documentation you will find will show you how to connect via Facebook or Twitter or whatnot, but it's the same drill no matter which provider you choose.
Have you looked at OmniAuth yet? That’s how I would try to connect to an OAuth provider. There is a Devise strategy for OmniAuth. All the documentation you will find will show you how to connect via Facebook or Twitter or whatnot, but it’s the same drill no matter which provider you choose.
Precisely. There's <strike>a</strike> MANY RailsCast(s) about it, long out of date, but still relevant enough to give you the basic idea of how it works.
Precisely. There's <strike>a</strike> MANY RailsCast(s) about it, long out of date, but still relevant enough to give you the basic idea of how it works.
Yes, I saw it, - as you noticed, most of them are outdated. Thank you!
Well worth watching anyway, they give you the gist of how to integrate, even if you need to translate up to modern idiom in places. It's like learning on hand tools, and then graduating to the machine shop!