NOTE: This gem will not work until after bitly/oauth2_proxy#147 is integrated.
Authenticates requests from bitly/oauth2_proxy based on a shared-secret HMAC signature of the request.
If you're using Bundler in your project, add the
following to your
If you're not using Bundler, start.
Inject something resembling the following code fragment into your request
handling logic as the first thing that happens before the request body is
secret_key is the shared secret between your application and
the running instance of
def my_handler(request) result, header_signature, computed_signature = ( Oauth2ProxyAuthentication.validate_request(request, secret_key)) if result != Oauth2ProxyAuthentication::MATCH # Cancel the request, optionally logging the values above. end end
This project is in the public domain within the United States, and copyright and related rights in the work worldwide are waived through the CC0 1.0 Universal public domain dedication.
All contributions to this project will be released under the CC0 dedication. By submitting a pull request, you are agreeing to comply with this waiver of copyright interest.