RubyGems - rodauth-omniauth - Versions diffs - 0.6.0 → 0.6.1 - Mend

rodauth-omniauth 0.6.0 → 0.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/README.md +54 -32
data/lib/rodauth/features/omniauth.rb +18 -14
data/lib/rodauth/features/omniauth_base.rb +3 -1
data/rodauth-omniauth.gemspec +1 -1
metadata +3 -6

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c91c4429c36390bbede1d97214cdb6a40c5a6f5d9255c379f3b17d026cee88c9
-  data.tar.gz: 8e09d6d3c5d4d9eb0022dd5696e1370fc82c22bd068ec5b883212f2117ae3c47
+  metadata.gz: 0453fcafd04b57e1adf926663a9edb8d1f9f72f25aa952d193cf092fc877327f
+  data.tar.gz: 3a3211e64e8558d3fe5aea563498f79763e3ebed62e9bd964020f52f5be36857
 SHA512:
-  metadata.gz: 03e77668f1f2c2076f003ac455c1f57dcfd5b60f7096cc77e5fe0918bf6484814ab02304eb9286e5323c42c2115102b262edb55dc41174dc0574c9ae0e6c84cc
-  data.tar.gz: f90369c94f3d9baf82dda2490ff716e543cd6cd09a6c8b856b2ba41c0594bcce69a489755520e2aea898eaf6907611d31d53c7cbf2a5f3f0fff51a457511012d
+  metadata.gz: 005c3b00e023b15f033af4782dba58f0e8372b4573c17822d0d770a980568c691a85a8c16422b8d3193ade0e8bdcfdb5ca54a9cd0244465842ef51efb7a69b37
+  data.tar.gz: 282df1dd1951ce51c41af1622e95e486a925280e699e9e0caa438ff5528efea6954d8d1b20f412f620fa5a41f114872c4773aba110010f32cd19936540abc122

data/README.md CHANGED Viewed

@@ -2,6 +2,15 @@
 [Rodauth] feature that offers login and registration via multiple external providers using [OmniAuth], together with the persistence of external identities.
+It comes with many features out of the box:
+* multiple external providers (with automatic identity linking)
+* automatic account creation (or login-only)
+* email verification on login
+* ability to count as two factors
+* JSON API support (+ JWT)
+* per-configuration strategies with inheritance
 ## Installation
 Add the gem to your project:
@@ -14,7 +23,7 @@ $ bundle add rodauth-omniauth
 > Rodauth's CSRF protection will be used for the request validation phase, so there is no need for gems like `omniauth-rails_csrf_protection`.
-## Usage
+## Getting started
 You'll first need to create the table for storing external identities:
@@ -91,23 +100,47 @@ account.identities #=> [#<Account::Identity ...>, ...]
 Currently, provider login is required to return the user's email address, and account creation is assumed not to require additional fields that need to be entered manually. There is currently also no built-in functionality for connecting/removing external identities when signed in. Both features are planned for future versions.
-### Timestamps
-If you want to know when an external identity was used first or last, you may want to add timestamp columns to the identities table:
-```rb
-create_table :account_identities do |t|
-  # ...
-  t.timestamps
-end
-```
-In that case, you'll need to make sure the column values are populated on create/update:
-```rb
-omniauth_identity_insert_hash { super().merge(created_at: Time.now) }
-omniauth_identity_update_hash { { updated_at: Time.now } }
-```
+## Configuration reference
+### Auth Value Methods
+| Method | Description |
+| :----  | :---------- |
+| `omniauth_verify_account?` | Automatically verify unverified accounts on login (defaults to true). |
+| `omniauth_login_unverified_account_error_flash` | Flash message for when existing account is unverified and automatic verification is disabled. |
+| `omniauth_login_failure_redirect` | Redirect location for when OmniAuth login failed. |
+| `omniauth_create_account?` | Automatically create account for new email address on OmniAuth login (defaults to true). |
+| `omniauth_login_no_matching_account_error_flash` | Flash message for when no existing account was found and automatic creation is disabled. |
+| `omniauth_two_factors?` | Treat OmniAuth login as two factors when using MFA (defaults to false). |
+| `omniauth_identities_table` | Table name for external identities (defaults to `account_identities`). |
+| `omniauth_identities_id_column` | Primary key column for identities table (defaults to `id`). |
+| `omniauth_identities_account_id_column` | Foreign key column for identities table (defaults to `account_id`). |
+| `omniauth_identities_provider_column` | Provider column for identities table (defaults to `provider`). |
+| `omniauth_identities_uid_column` | UID column for identities table (defaults to `uid`). |
+| `omniauth_prefix` | Path prefix to use for OmniAuth routes (defaults to `/auth`). |
+| `omniauth_failure_error_flash` | Flash message for failed OmniAuth login. |
+| `omniauth_failure_redirect` | Redirect location for failed OmniAuth login. |
+| `omniauth_failure_error_status` | Response status for failed OmniAuth login (defaults to 500). |
+| `omniauth_authorize_url_key` | Field name for authorization URL in JSON mode. |
+| `omniauth_error_type_key` | Field name for error type in JSON mode. |
+### Auth Methods
+| Method | Description |
+| :----  | :---------- |
+| `account_from_omniauth` | Find an existing account from OmniAuth login data (by default matches by email). |
+| `before_omniauth_callback_route` | Run arbitrary code before handling the callback route. |
+| `omniauth_identity_insert_hash` | Hash of column values used for creating a new identity on login. |
+| `omniauth_identity_update_hash` | Hash of column values used fro updating existing identities on login. |
+| `before_omniauth_create_account` | Any actions to take before creating a new account on OmniAuth login. |
+| `after_omniauth_create_account` | Any actions to take after creating a new account on OmniAuth login. |
+| `omniauth_setup` | Hook for OmniAuth setup phase |
+| `omniauth_request_validation_phase` | Hook for OmniAuth request validation phase (defaults to CSRF protection). |
+| `omniauth_before_request_phase` | Hook for OmniAuth before request phase. |
+| `omniauth_before_callback_phase` | Hook for OmniAuth  before callback phase. |
+| `omniauth_on_failure` | Hook for OmniAuth login failure. |
+## Customizing
 ### Login
@@ -196,7 +229,7 @@ end
 ### Identity data
-You can also store extra data on the external identities. For example, we could override the update hash to store `info`, `credentials`, and `extra` data from the auth hash into separate columns:
+You can also store extra data on the external identities. The most common use case is storing [timestamps](https://github.com/janko/rodauth-omniauth/wiki/Timestamps). You could also persist data about external identities, for example:
 ```rb
 alter_table :account_identities do
@@ -229,6 +262,8 @@ omniauth_identity_insert_hash do
 end
 ```
+### Identity schema
 You can change the table name or any of the column names:
 ```rb
@@ -239,18 +274,6 @@ omniauth_identities_provider_column :provider
 omniauth_identities_uid_column :uid
 ```
-### Audit logging
-If you're using the [audit_logging] feature, it can be useful to include the external provider name in the `login` audit logs:
-```rb
-enable :audit_logging
-audit_log_metadata_for :login do
-  { "provider" => omniauth_provider } if authenticated_by.include?("omniauth")
-end
-```
 ## Base
 The `omniauth` feature builds on top of the `omniauth_base` feature, which sets up OmniAuth and routes its requests, but has no interaction with the database. So, if you would prefer to handle external logins differently, you can load just the `omniauth_base` feature, and implement your own callback phase.
@@ -483,4 +506,3 @@ Everyone interacting in the rodauth-omniauth project's codebases, issue trackers
 [rodauth-model]: https://github.com/janko/rodauth-model
 [rodauth-rails]: https://github.com/janko/rodauth-rails
 [omniauth-oauth2]: https://github.com/omniauth/omniauth-oauth2
-[audit_logging]: https://rodauth.jeremyevans.net/rdoc/files/doc/audit_logging_rdoc.html

data/lib/rodauth/features/omniauth.rb CHANGED Viewed

@@ -58,14 +58,12 @@ module Rodauth
     def _handle_omniauth_callback
       before_omniauth_callback_route
-      retrieve_omniauth_identity
-      if !account && omniauth_identity
-        account_from_omniauth_identity
-      end
       unless account
-        account_from_omniauth
+        if omniauth_identity
+          account_from_omniauth_identity
+        else
+          account_from_omniauth
+        end
       end
       if account && !open_account?
@@ -81,10 +79,7 @@ module Rodauth
       transaction do
         if !account
           if omniauth_create_account?
-            omniauth_new_account
-            before_omniauth_create_account
-            omniauth_save_account
-            after_omniauth_create_account
+            omniauth_create_account
           else
             set_redirect_error_flash omniauth_login_no_matching_account_error_flash
             redirect omniauth_login_failure_redirect
@@ -103,8 +98,12 @@ module Rodauth
       end
     end
+    def omniauth_identity
+      @omniauth_identity ||= retrieve_omniauth_identity
+    end
     def retrieve_omniauth_identity
-      @omniauth_identity = _retrieve_omniauth_identity(omniauth_provider, omniauth_uid)
+      _retrieve_omniauth_identity(omniauth_provider, omniauth_uid)
     end
     def account_from_omniauth_identity
@@ -145,8 +144,6 @@ module Rodauth
       remove_omniauth_identities
     end
-    attr_reader :omniauth_identity
     def omniauth_second_factor?
       features.include?(:two_factor_base) && uses_two_factor_authentication? && omniauth_two_factors?
     end
@@ -166,6 +163,13 @@ module Rodauth
       true
     end
+    def omniauth_create_account
+      omniauth_new_account
+      before_omniauth_create_account
+      omniauth_save_account
+      after_omniauth_create_account
+    end
     def _omniauth_new_account(login)
       acc = { login_column => login }
       unless skip_status_checks?

data/lib/rodauth/features/omniauth_base.rb CHANGED Viewed

@@ -195,10 +195,12 @@ module Rodauth
     end
     def self.included(auth)
-      auth.extend ClassMethods
+      auth.extend OmniauthBase::ClassMethods
       auth.instance_variable_set(:@omniauth_providers, [])
     end
+  end
+  module OmniauthBase
     module ClassMethods
       def inherited(subclass)
         super

data/rodauth-omniauth.gemspec CHANGED Viewed

@@ -1,6 +1,6 @@
 Gem::Specification.new do |spec|
   spec.name          = "rodauth-omniauth"
-  spec.version       = "0.6.0"
+  spec.version       = "0.6.1"
   spec.authors       = ["Janko Marohnić"]
   spec.email         = ["janko@hey.com"]

metadata CHANGED Viewed

@@ -1,14 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: rodauth-omniauth
 version: !ruby/object:Gem::Version
-  version: 0.6.0
+  version: 0.6.1
 platform: ruby
 authors:
 - Janko Marohnić
-autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-11-29 00:00:00.000000000 Z
+date: 1980-01-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rodauth
@@ -197,7 +196,6 @@ licenses:
 metadata:
   homepage_uri: https://github.com/janko/rodauth-omniauth
   source_code_uri: https://github.com/janko/rodauth-omniauth
-post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -212,8 +210,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.5.23
-signing_key:
+rubygems_version: 3.6.9
 specification_version: 4
 summary: Rodauth extension for logging in and creating account via OmniAuth authentication.
 test_files: []