This repository has been archived by the owner on Sep 12, 2021. It is now read-only.
Refactoring of the providers and cleanup #38
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Awesome! That sounds great. I'll review the commit. |
| */ | ||
| object GravatarService { | ||
| val URL = "http://www.gravatar.com/avatar/%s?d=404" | ||
| val Md5 = "MD5" |
There was a problem hiding this comment.
Should be val MD5 = ... since we're capitalizing acronyms.
|
Excellent work. Things are getting both simpler and more flexible. |
fernandoacorreia
added a commit
that referenced
this pull request
Jan 18, 2014
Refactoring of the providers and cleanup
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The providers do handle the
Identitynot any more. They return only theLoginInfoand for the social providers theSocialProfilewhich contains theLoginInfoand the profile data returned by the provider. I followed your suggestions for theIdentitytrait. It contains only theLoginInfo. The authentication information (secret tokens, password, ...) will only be handled by the providers. I have created an AuthInfoService` which can persist this data into the backing store.With the current implementation the authentication flow should be as follow.
Social Providers:
If the user authenticates the first time, the social provider implementation stores the authentication info for the linked
LoginInfointo the backing store and returns theSocialProfile. Now the controller should create a newIdentity. Maybe only from the data provided by the social provider or with additional data(IP-Address, UserAgent, Lang, ...). It the user authenticates again at a later time, then the provider updates the authentication info for the linkedLoginInfoand returns also theSocialProfile. Now the identity can be updated with the returned profile data and theLoginInfocan be stored in the authenticator cookie.Credentials Provider:
During registration the registration controller stores the authentication info and the created
Identityin the backing store. Now if the user tries to authenticate with its credentials, the provider checks if the stored authentication info matches with the credentials. If so the provider returns only theLoginInfowhich can then be stored in the authenticator cookie.