Integrates OAuth2 tokens from the Doorkeeper gem into Devise authentication strategies
Devise and Doorkeeper are complimentary gems. Doorkeeper's job is to dispense OAuth2 tokens and Devise's job is to ensure your resources are protected from unauthenticated requests.
The devise-doorkeeper gem allows your existing Devise application to accept OAuth2 tokens created by the Doorkeeper authorization flow.
This means you do not need to update your controllers to use the doorkeeper_authorize!
filter and can use the standard Devise authenticate_user! methods instead.
Add this line to your application's Gemfile:
gem 'devise-doorkeeper'
Update your config/initializers/doorkeeper.rb to call
Devise::Doorkeeper.configure_doorkeeper(self).
# config/initializers/doorkeeper.rb
Doorkeeper.configure do
Devise::Doorkeeper.configure_doorkeeper(self)
# extra configuration goes below
end
Update your config/initializers/devise.rb to call
Devise::Doorkeeper.configure_devise.
# config/initializers/devise.rb
Devise.setup do |config|
Devise::Doorkeeper.configure_devise(config)
# extra configuration goes below
end
:doorkeeper to your list of devise modules# example app/models/user.rb
class User
devise :doorkeeper
end
# example app/controllers/comments_controller.rb
class CommentsController < ApplicationController
before_action :authenticate_user!
def index
# this action is protected
# the devise-doorkeeper gem will permit access via valid OAuth2 tokens
end
end
Most API's should not create sessions for each API request.
This can be configured via the Devise skip_session_storage setting.
# config/initializers/devise.rb
config.skip_session_storage = [:http_auth] # this is the default devise config
config.skip_session_storage << :doorkeeper # disable session storage for oauth requests
git checkout -b my-new-feature)git commit -am 'Add some feature')git push origin my-new-feature)FAQs
Unknown package
We found that devise-doorkeeper demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Socket Firewall Enterprise is now available with flexible deployment, configurable policies, and expanded language support.
Security News
Open source dashboard CNAPulse tracks CVE Numbering Authorities’ publishing activity, highlighting trends and transparency across the CVE ecosystem.
Product
Detect malware, unsafe data flows, and license issues in GitHub Actions with Socket’s new workflow scanning support.