DEVHIDE
Login Or Sign up

Omniauth custom provider and strategy w/ doorkeeper

1.7k Views Asked by At

I have a custom OAuth2 provider (is a Rails app) built with Doorkeeper

and have a custom client strategy built with OmniAuth

The problem is when I set this in config/initializers/devise.rb

config.omniauth :mystrategy, "apikey", "secret"

Then i will got this error:

(mystrategy) Callback phase initiated.
(mystrategy) Authentication failure! invalid_credentials: 
OmniAuth::Strategies::OAuth2::CallbackError, OmniAuth::Strategies::OAuth2::CallbackError

And if i change the config in devise.rb to be

config.omniauth :mystrategy, "apikey", "secret", {:provider_ignores_state => true}

Then everything is all right ...

I can't figure out what cause this problem. it seems the problem is the Rails' CSRF protection?

ruby-on-rails oauth-2.0 omniauth csrf doorkeeper
Original Q&A
1

There are 1 best solutions below

0
On

Try changing omniauth-oauth2 to version

gem "omniauth-oauth2", "~> 1.0.2"

Related Questions in RUBY-ON-RAILS

Related Questions in OAUTH-2.0

Related Questions in OMNIAUTH

Related Questions in CSRF

Related Questions in DOORKEEPER

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.