ueberauth/ueberauth_google ueberauth/ueberauth_google

  • Stars
    star
    158
  • Rank 237,131 (Top 5 %)
  • Language
    Elixir
  • License
    MIT License
  • Created almost 9 years ago
  • Updated 9 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
ueberauth/ueberauth_google
github

ueberauth

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Google OAuth2 Strategy for Überauth.

Überauth Google

Continuous Integration Build Status Module Version Hex Docs Total Download License Last Updated

Google OAuth2 strategy for Überauth.

Installation

  1. Setup your application at Google Developer Console.

  2. Add :ueberauth_google to your list of dependencies in mix.exs:

    def deps do
  [
    {:ueberauth_google, "~> 0.10"}
  ]
end

  3. Add Google to your Überauth configuration:

    config :ueberauth, Ueberauth,
  providers: [
    google: {Ueberauth.Strategy.Google, []}
  ]

  4. Update your provider configuration:

    Use that if you want to read client ID/secret from the environment variables in the compile time:

    config :ueberauth, Ueberauth.Strategy.Google.OAuth,
  client_id: System.get_env("GOOGLE_CLIENT_ID"),
  client_secret: System.get_env("GOOGLE_CLIENT_SECRET")

    Use that if you want to read client ID/secret from the environment variables in the run time:

    config :ueberauth, Ueberauth.Strategy.Google.OAuth,
  client_id: {System, :get_env, ["GOOGLE_CLIENT_ID"]},
  client_secret: {System, :get_env, ["GOOGLE_CLIENT_SECRET"]}

  5. Include the Überauth plug in your controller:

    defmodule MyApp.AuthController do
  use MyApp.Web, :controller
  plug Ueberauth
  ...
end

  6. Create the request and callback routes if you haven't already:

    scope "/auth", MyApp do
  pipe_through :browser

  get "/:provider", AuthController, :request
  get "/:provider/callback", AuthController, :callback
end

  7. Your controller needs to implement callbacks to deal with Ueberauth.Auth and Ueberauth.Failure responses.

For an example implementation see the Überauth Example application.

Calling

Depending on the configured url you can initiate the request through:

/auth/google

Or with options:

/auth/google?scope=email%20profile

By default the requested scope is "email". Scope can be configured either explicitly as a scope query value on the request path or in your configuration:

config :ueberauth, Ueberauth,
  providers: [
    google: {Ueberauth.Strategy.Google, [default_scope: "email profile plus.me"]}
  ]

You can also pass options such as the hd parameter to suggest a particular Google Apps hosted domain (caution, can still be overridden by the user), prompt and access_type options to request refresh_tokens and offline access (both have to be present), or include_granted_scopes parameter to allow incremental authorization.

config :ueberauth, Ueberauth,
  providers: [
    google: {Ueberauth.Strategy.Google, [hd: "example.com", prompt: "select_account", access_type: "offline", include_granted_scopes: true]}
  ]

In some cases, it may be necessary to update the user info endpoint, such as when deploying to countries that block access to the default endpoint.

config :ueberauth, Ueberauth,
  providers: [
    google: {Ueberauth.Strategy.Google, [userinfo_endpoint: "https://www.googleapis.cn/oauth2/v3/userinfo"]}
  ]

This may also be set via runtime configuration by passing a 2 or 3 argument tuple. To use this feature, the first argument must be the atom :system, and the second argument must represent the environment variable containing the endpoint url. A third argument may be passed representing a default value if the environment variable is not found, otherwise the library default will be used.

config :ueberauth, Ueberauth,
  providers: [
    google: {Ueberauth.Strategy.Google, [
      userinfo_endpoint: {:system, "GOOGLE_USERINFO_ENDPOINT", "https://www.googleapis.cn/oauth2/v3/userinfo"}
    ]}
  ]

To guard against client-side request modification, it's important to still check the domain in info.urls[:website] within the Ueberauth.Auth struct if you want to limit sign-in to a specific domain.

Copyright and License

Copyright (c) 2015 Sean Callan

Released under the MIT License, which can be found in the repository in LICENSE.

More Repositories

1

guardian

Elixir Authentication
Elixir
3,434
star
2

ueberauth

An Elixir Authentication System for Plug-based Web Applications
Elixir
1,614
star
3

oauth2

An Elixir OAuth 2.0 Client Library
Elixir
747
star
4

guardian_db

Guardian DB integration for tracking tokens and ensuring logout cannot be replayed.
Elixir
367
star
5

ueberauth_example

Example Phoenix application using Überauth for authentication
Elixir
220
star
6

ueberauth_github

GitHub OAuth2 Strategy for Überauth
Elixir
102
star
7

ueberauth_identity

A username/password Strategy for Überauth
Elixir
80
star
8

ueberauth_facebook

Facebook OAuth2 Strategy for Überauth.
Elixir
77
star
9

guardian_phoenix

A collection of helpers for when using Guardian with Phoenix
Elixir
45
star
10

ueberauth_twitter

Twitter Strategy for Überauth
Elixir
35
star
11

guardian_backdoor

A plug to write faster acceptance tests by skipping the sign-in process. This feature is inspired by Clearance’s backdoor.
Elixir
26
star
12

ueberauth_slack

Slack OAuth2 Strategy for Überauth
Elixir
23
star
13

ueberauth_vk

vk.com OAuth2 Strategy for Überauth.
Elixir
19
star
14

ueberauth_apple

Ueberauth Strategy for Sign In with Apple
Elixir
8
star
15

guardian_paseto

A Guardian.Token implementation for Paseto tokens (https://paseto.io)
Elixir
8
star
16

guardian_pemfile_config_example

Example of a guardian configuration using a private and public pem file
Elixir
7
star
17

guardian_jwe

Elixir
6
star
18

ueberauth_provider

OAuth2 Provider
Elixir
5
star
19

guardian_onetime

A single use token implementation for Guardian
Elixir
1
star