[Question] Further token authentication API examples

[joshhornby]

Is there any further API examples? Would be great to see how this could be implemented with a token based authentication system.

[pcantrell]

There isn't a whole lot of public example code yet. You’ll find some hints in the configuration chapter of the user guide and in the API docs for invalidateConfiguration.

Although there isn’t currently time available for it, my hope to write up a cookbook of examples for the 1.0 release.

If you can pose a more specific question, I can help point you in the right direction.

[joshhornby]

The cookbook sounds great.

Question wise, how would you handle oAuth 2 with Siesta?

[pcantrell]

I’d first select a third-party lib such as p2/OAuth2 or dongri/OAuthSwift to handle the whole dance of acquiring an OAuth token. That's well outside the scope of Siesta.

Once you have a token, you’d do something like this:

class MyApi: Service
    {
    init()
        {
        ...

        configure { $0.config.headers["Authorization"] = authHeader }
        }

    var authHeader: String?
        {
        didSet
            {
            // Clear any cached data now that auth has changed
            wipeResources()

            // Force resources to recompute headers next time they’re fetched
            invalidateConfiguration()
            }
        }
    }

…and then when authentication succeeds:

myAPI.authToken = authTokenFromOAuthLib

…and for logout:

myAPI.authToken = nil

You could integrate OAuth more tightly with Siesta. For example, you could add special error handling hooks in your Siesta config to trigger a token refresh when you detect an OAuth error. However, I’d start with something as simple as the code above and see what other needs you have.

[pcantrell]

I added some of this info to the Siesta docs: http://bustoutsolutions.github.io/siesta/guide/security/

Closing this issue, but feel free to post more on Stack Overflow (with the siesta-swift tag) or here if you need more info.