Class: OmniAuth::Strategies::OAuth2

Inherits:

Object

• Object
• OmniAuth::Strategies::OAuth2

Includes:

OmniAuth::Strategy

Defined in:

lib/omniauth/strategies/oauth2.rb

Direct Known Subclasses

Infinum

Defined Under Namespace

Classes: CallbackError

Instance Attribute Summary

• #access_token ⇒ Object

  Returns the value of attribute access_token.

Instance Method Summary

• #authorize_params ⇒ Object
• #callback_phase ⇒ Object
• #callback_url ⇒ Object
• #client ⇒ Object
• #request_phase ⇒ Object
• #token_params ⇒ Object

Instance Attribute Details

#access_token ⇒ Object

Returns the value of attribute access_token.

# File 'lib/omniauth/strategies/oauth2.rb', line 26

def access_token
  @access_token
end

Instance Method Details

#authorize_params ⇒ Object

# File 'lib/omniauth/strategies/oauth2.rb', line 48

def authorize_params
  options.authorize_params[:state] = SecureRandom.hex(24)
  params = options.authorize_params.merge(options.authorize_options.inject({}){|h,k| h[k.to_sym] = options[k] if options[k]; h})
  if OmniAuth.config.test_mode
    @env ||= {}
    @env['rack.session'] ||= {}
  end
  session['omniauth.state'] = params[:state]
  params
end

#callback_phase ⇒ Object

# File 'lib/omniauth/strategies/oauth2.rb', line 65

def callback_phase
  if request.params['error'] || request.params['error_reason']
    raise CallbackError.new(request.params['error'], request.params['error_description'] || request.params['error_reason'], request.params['error_uri'])
  end
  if !options.provider_ignores_state && (request.params['state'].to_s.empty? || request.params['state'] != session.delete('omniauth.state'))
    raise CallbackError.new(nil, :csrf_detected)
  end

  self.access_token = build_access_token
  self.access_token = access_token.refresh! if access_token.expired?

   super
  rescue ::OAuth2::Error => e
    fail!(e.code, e)
  rescue CallbackError => e
    fail!(e.error_reason,e)
  rescue ::MultiJson::DecodeError => e
    fail!(:invalid_response, e)
  rescue ::Timeout::Error, ::Errno::ETIMEDOUT => e
    fail!(:timeout, e)
  rescue ::SocketError => e
    fail!(:failed_to_connect, e)
end

#callback_url ⇒ Object

# File 'lib/omniauth/strategies/oauth2.rb', line 32

def callback_url
  full_host + script_name + callback_path
end

#client ⇒ Object

# File 'lib/omniauth/strategies/oauth2.rb', line 28

def client
  ::OAuth2::Client.new(options.client_id, options.client_secret, deep_symbolize(options.client_options))
end

#request_phase ⇒ Object

# File 'lib/omniauth/strategies/oauth2.rb', line 44

def request_phase
  redirect client.auth_code.authorize_url({:redirect_uri => callback_url}.merge(authorize_params))
end

#token_params ⇒ Object

# File 'lib/omniauth/strategies/oauth2.rb', line 59

def token_params
  options.token_params.merge(options.token_options.inject({}){|h,k| h[k.to_sym] = options[k] if options[k]; h})
end