Skip to content
Assertion grant extension for Doorkeeper.
Branch: master
Clone or download
Pull request Compare This branch is 23 commits behind doorkeeper-gem:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
config/locales
lib/doorkeeper
spec
.gitignore
Gemfile
MIT-LICENSE
README.md
Rakefile
doorkeeper-grants_assertion.gemspec

README.md

Doorkeeper - Assertion Grant Extension

Assertion grant extension for Doorkeeper. Born from: https://github.com/doorkeeper-gem/doorkeeper/pull/249

Installation

  1. Add both gems to your Gemfile.
  2. Add assertion as a grant_flow to your initializer.

Lets you define your own way of authenticating resource owners via 3rd Party applications. For example, via Facebook:

Doorkeeper.configure do
  resource_owner_from_assertion do
    facebook = URI.parse('https://graph.facebook.com/me?access_token=' +
    params[:assertion])
    response = Net::HTTP.get_response(facebook)
    user_data = JSON.parse(response.body)
    User.find_by_facebook_id(user_data['id'])
  end

  # add your supported grant types and other extensions
  grant_flows %w(assertion authorization_code implicit password client_credentials)
end

If you want to ensure that resource owners can only receive access tokens scoped to a specific application, you'll need to add that logic in to the definition as well:

Doorkeeper.configure do
  resource_owner_from_assertion do
    Doorkeeper::Application.find_by!(uid: params[:client_id]) #will raise an exception if not found
    facebook = URI.parse('https://graph.facebook.com/me?access_token=' +
    params[:assertion])
    ....continue with authentication lookup....

IETF standard: http://tools.ietf.org/html/draft-ietf-oauth-assertions-16

You can’t perform that action at this time.