nov edited this page Oct 24, 2014 · 11 revisions

as OAuth Client

as OAuth Server

Note for OAuth Server Implementers

Before starting OAuth2 server implementation, read RFC 6749 and RFC 6750.

This gem is designed for those who understand OAuth RFCs.

Using this gem, you need to define these things by yourself.

  • Client Management Policy
  • API Security Policy
  • API Scope Design
  • Token Design (lifetime, opaque string or JWT etc.)
  • etc.


Call Rack::OAuth2.debug!, then you'll see all HTTP requests after that line in the log.

In Rails, you'll need to set Rack::OAuth2.logger = Rails.logger.

Rack::OAuth2.logger = Rails.logger