Last active
January 11, 2022 17:04
-
-
Save bearded-avenger/c1cbaa093566489cb8c36a7b83cf0f34 to your computer and use it in GitHub Desktop.
Rails - SSO - WordPress - Authenticating against a WordPress install from a Rails site using oAuth
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| config.omniauth :wordpress_hosted, ENV['SSO_KEY'], ENV['SSO_SECRET'], | |
| strategy_class: OmniAuth::Strategies::WordpressHosted, | |
| client_options: { site: ENV['SSO_URL'] } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #authentication framework | |
| gem 'devise' | |
| #oauth2 integration | |
| gem 'omniauth' | |
| gem 'omniauth-oauth2', '1.3.1' # DO NOT change this! If we update teo 1.4 the SSO doesnt work anymore | |
| gem 'omniauth-wordpress_hosted', github: 'jwickard/omniauth-wordpress-oauth2-plugin' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| class Users::OmniauthCallbacksController < Devise::OmniauthCallbacksController | |
| def wordpress_hosted | |
| Rails.logger.debug request.env["omniauth.auth"] | |
| @user = User.find_for_wordpress_oauth2(request.env["omniauth.auth"], current_user) | |
| if @user.persisted? | |
| flash[:notice] = I18n.t "devise.omniauth_callbacks.success", :kind => "your CG Cookie" | |
| sign_in_and_redirect @user, :event => :authentication #this will throw if @user is not activated | |
| else | |
| session["devise.wordpress_oauth2_data"] = request.env["omniauth.auth"] | |
| redirect_to new_user_registration_url | |
| end | |
| end | |
| end |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| devise_for :users, controllers: { omniauth_callbacks: 'users/omniauth_callbacks' } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| class User < ActiveRecord::Base | |
| devise :database_authenticatable, :registerable, :recoverable, :rememberable, :trackable, :validatable, :omniauthable | |
| def self.find_for_wordpress_oauth2(oauth, signed_in_user=nil) | |
| if signed_in_user | |
| if signed_in_user.email.nil? or signed_in_user.email.eql?('') | |
| signed_in_user.update_attributes(email: oauth['info']['email']) | |
| end | |
| return signed_in_user | |
| else | |
| user = User.find_by_provider_and_uid(oauth['provider'], oauth['uid']) | |
| if user.nil? | |
| user = User.create!(email: oauth['info']['email'], id: oauth['uid'], provider: oauth['provider'] ) | |
| end | |
| user | |
| end | |
| end | |
| def self.find_by_provider_and_uid(provider, uid) | |
| where(provider: provider, id: uid).first | |
| end | |
| end |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Rails 4.2.6
WordPress 4.5
providercolumn to users db (string)