discourse/config/initializers/omniauth.rb

require "openssl"
require "openid_redis_store"

# if you need to test this and are having ssl issues see:
#  http://stackoverflow.com/questions/6756460/openssl-error-using-omniauth-specified-ssl-path-but-didnt-work

Rails.application.config.middleware.use OmniAuth::Builder do

  provider :open_id,
           :store => OpenID::Store::Redis.new($redis),
           :name => "google",
           :identifier => "https://www.google.com/accounts/o8/id",
           :require => "omniauth-openid"

  provider :open_id,
           :store => OpenID::Store::Redis.new($redis),
           :name => "yahoo",
           :identifier => "https://me.yahoo.com",
           :require => "omniauth-openid"

  Discourse.auth_providers.each do |p|
    if p.type == :open_id
      provider :open_id, {
        :name => p.name,
        :store => OpenID::Store::Redis.new($redis),
        :require => "omniauth-openid"
      }.merge(p.options)
    elsif p.type == :oauth2
      provider :oauth2,
               p.options[:client_id],
               p.options[:client_secret],
               {
                 :name => p.name,
                 :require => "omniauth-oauth2"
               }.merge(p.options)
    end
  end

  # lambda is required for proper multisite support,
  #  without it subdomains will not function correctly
  provider :facebook,
           :setup => lambda { |env|
              strategy = env["omniauth.strategy"]
              strategy.options[:client_id] = SiteSetting.facebook_app_id
              strategy.options[:client_secret] = SiteSetting.facebook_app_secret
           },
           :scope => "email"

  provider :twitter,
           :setup => lambda { |env|
              strategy = env["omniauth.strategy"]
              strategy.options[:consumer_key] = SiteSetting.twitter_consumer_key
              strategy.options[:consumer_secret] = SiteSetting.twitter_consumer_secret
           }

  provider :github,
           :setup => lambda { |env|
              strategy = env["omniauth.strategy"]
              strategy.options[:client_id] = SiteSetting.github_client_id
              strategy.options[:client_secret] = SiteSetting.github_client_secret
           },
           :scope => "user:email"

  provider :browser_id,
           :name => "persona"

  provider :cas,
           :host => SiteSetting.cas_hostname

end
we need email scope (also as I edit files I like to keep quoting consistent) 2013-08-01 19:47:54 -04:00			`require "openssl"`
			`require "openid_redis_store"`
use omniauth-openid to replace google id 2013-02-12 01:51:44 -05:00
This commit adds a callback route to handle omniauth failure and removes a few unneccessary entries in en.yml 2013-02-14 14:11:13 -05:00			`# if you need to test this and are having ssl issues see:`
nuking SSL = bad 2013-02-13 17:12:20 -05:00			`# http://stackoverflow.com/questions/6756460/openssl-error-using-omniauth-specified-ssl-path-but-didnt-work`
use omniauth-openid to replace google id 2013-02-12 01:51:44 -05:00
			`Rails.application.config.middleware.use OmniAuth::Builder do`
nuking SSL = bad 2013-02-13 17:12:20 -05:00
This commit adds a callback route to handle omniauth failure and removes a few unneccessary entries in en.yml 2013-02-14 14:11:13 -05:00			`provider :open_id,`
correct multisite functionality for omniauth 2013-03-24 20:21:18 -04:00			`:store => OpenID::Store::Redis.new($redis),`
we need email scope (also as I edit files I like to keep quoting consistent) 2013-08-01 19:47:54 -04:00			`:name => "google",`
			`:identifier => "https://www.google.com/accounts/o8/id",`
			`:require => "omniauth-openid"`
nuking SSL = bad 2013-02-13 17:12:20 -05:00
This commit adds a callback route to handle omniauth failure and removes a few unneccessary entries in en.yml 2013-02-14 14:11:13 -05:00			`provider :open_id,`
correct multisite functionality for omniauth 2013-03-24 20:21:18 -04:00			`:store => OpenID::Store::Redis.new($redis),`
we need email scope (also as I edit files I like to keep quoting consistent) 2013-08-01 19:47:54 -04:00			`:name => "yahoo",`
			`:identifier => "https://me.yahoo.com",`
			`:require => "omniauth-openid"`
nuking SSL = bad 2013-02-13 17:12:20 -05:00
working plugin interface for custom openid auth, custom css and custom js 2013-08-01 01:59:57 -04:00			`Discourse.auth_providers.each do \|p\|`
			`if p.type == :open_id`
			`provider :open_id, {`
			`:name => p.name,`
			`:store => OpenID::Store::Redis.new($redis),`
we need email scope (also as I edit files I like to keep quoting consistent) 2013-08-01 19:47:54 -04:00			`:require => "omniauth-openid"`
working plugin interface for custom openid auth, custom css and custom js 2013-08-01 01:59:57 -04:00			`}.merge(p.options)`
Authenticate with Discourse via OAuth2 See https://github.com/michaelkirk/discourse_oauth2_example for an example of how you might integrate your existing oauth2 provider's authentication via a Discourse plugin. 2013-08-18 00:43:59 -04:00			`elsif p.type == :oauth2`
			`provider :oauth2,`
			`p.options[:client_id],`
			`p.options[:client_secret],`
			`{`
			`:name => p.name,`
			`:require => "omniauth-oauth2"`
			`}.merge(p.options)`
working plugin interface for custom openid auth, custom css and custom js 2013-08-01 01:59:57 -04:00			`end`
			`end`

			`# lambda is required for proper multisite support,`
			`# without it subdomains will not function correctly`
This commit adds a callback route to handle omniauth failure and removes a few unneccessary entries in en.yml 2013-02-14 14:11:13 -05:00			`provider :facebook,`
correct multisite functionality for omniauth 2013-03-24 20:21:18 -04:00			`:setup => lambda { \|env\|`
we need email scope (also as I edit files I like to keep quoting consistent) 2013-08-01 19:47:54 -04:00			`strategy = env["omniauth.strategy"]`
correct multisite functionality for omniauth 2013-03-24 20:21:18 -04:00			`strategy.options[:client_id] = SiteSetting.facebook_app_id`
			`strategy.options[:client_secret] = SiteSetting.facebook_app_secret`
			`},`
			`:scope => "email"`
nuking SSL = bad 2013-02-13 17:12:20 -05:00
This commit adds a callback route to handle omniauth failure and removes a few unneccessary entries in en.yml 2013-02-14 14:11:13 -05:00			`provider :twitter,`
correct multisite functionality for omniauth 2013-03-24 20:21:18 -04:00			`:setup => lambda { \|env\|`
we need email scope (also as I edit files I like to keep quoting consistent) 2013-08-01 19:47:54 -04:00			`strategy = env["omniauth.strategy"]`
correct multisite functionality for omniauth 2013-03-24 20:21:18 -04:00			`strategy.options[:consumer_key] = SiteSetting.twitter_consumer_key`
			`strategy.options[:consumer_secret] = SiteSetting.twitter_consumer_secret`
			`}`
nuking SSL = bad 2013-02-13 17:12:20 -05:00
Added Github authentication option, disabled by default with enable options in settings. 2013-02-25 23:28:32 -05:00			`provider :github,`
correct multisite functionality for omniauth 2013-03-24 20:21:18 -04:00			`:setup => lambda { \|env\|`
we need email scope (also as I edit files I like to keep quoting consistent) 2013-08-01 19:47:54 -04:00			`strategy = env["omniauth.strategy"]`
correct multisite functionality for omniauth 2013-03-24 20:21:18 -04:00			`strategy.options[:client_id] = SiteSetting.github_client_id`
			`strategy.options[:client_secret] = SiteSetting.github_client_secret`
we need email scope (also as I edit files I like to keep quoting consistent) 2013-08-01 19:47:54 -04:00			`},`
correct scope, it should user:email to get read access to email 2013-08-01 20:03:29 -04:00			`:scope => "user:email"`
Added Github authentication option, disabled by default with enable options in settings. 2013-02-25 23:28:32 -05:00
Add Mozilla Persona Omniauth Gem and initializer 2013-02-25 19:10:16 -05:00			`provider :browser_id,`
we need email scope (also as I edit files I like to keep quoting consistent) 2013-08-01 19:47:54 -04:00			`:name => "persona"`
Add Mozilla Persona Omniauth Gem and initializer 2013-02-25 19:10:16 -05:00
add cas support with a few tests 2013-05-23 16:40:50 -04:00			`provider :cas,`
			`:host => SiteSetting.cas_hostname`

nuking SSL = bad 2013-02-13 17:12:20 -05:00			`end`