Comments (10)
Yes, we're very interested on that. A similar approach to devise will help controllers customization, which now is an issue in doorkeeper.
If you have any questions on how to implement this, let me know, I'd be glad to help!
from doorkeeper.
Excellent, I'll take a look at this in the near future and we can talk about it more.
from doorkeeper.
I started this branch https://github.com/applicake/doorkeeper/compare/customisable-routes
Right now it mounts all routes correctly, but since doorkeeper is an isolated engine, it break all url helpers in views (we need to append main_app.
to every helper)
I'm still deciding whether we should remove the isolation or not. I'd love to hear some thoughs
from doorkeeper.
The isolation was the reason we use custom controllers to access Doorkeeper functionality. I didn't want to modify the application-wide view templates to use main_app (or whatever it is). If there was a way to remove it, then I didn't find it. :)
I'm definitely in favor of making Doorkeeper a non-isolated engine.
from doorkeeper.
Yep, me too.
I removed the engine isolation in the last commit. I had to change the url helpers in the views anyway, mainly because when models were isolated, Rails could identify the correct routes, but without isolation it couldn't.
Most of helpers have doorkeeper
prefix right now, but I thought it would make more sense to use oauth
prefix instead (for example oauth_authorization_path
)
I'm still not very happy with this change in url helpers, this could cause trouble for uses who generated the views.
from doorkeeper.
@mattgreen In the latest merge on master you can configure the controllers and aliases for them. I think right now we can improve and allow users to skip controllers and so on.
What do you think?
from doorkeeper.
@mattgreen I just added the ability to skip controllers in the use_doorkeeper block.
You just use it like
use_doorkeeper do
skip_controllers :applications, :authorized_applications
end
And it will not add routes for that controller in the app.
We will add this code to the released gem when we release 0.5 version.
Hopefully that fixes your issue. Let me know.
from doorkeeper.
Awesome, thanks guys!
from doorkeeper.
The skip functionality was just what I was looking for - can we get this added to the documentation? (I am happy to add this if that's ok).
from doorkeeper.
This is more of a Rails feature rather than doorkeeper's, bu I'd merge a PR
that shows this in a sentence or two in the README. Thanks!
On Tuesday, April 28, 2015, Steve Dalton [email protected] wrote:
The skip functionality was just what I was looking for - can we get this
added to the documentation? (I am happy to add this if that's ok).—
Reply to this email directly or view it on GitHub
#81 (comment)
.
from doorkeeper.
Related Issues (20)
- How do I know if an application has been authorized by a resource owner? HOT 1
- Regression with Errors in 5.6.8 HOT 5
- Refreshing a token sending scopes separated by `+` does not work HOT 5
- Cleanup job removes not expired tokens HOT 1
- Different access grants return the same access token with `reuse_access_token` enabled
- Removing active_record_options was a breaking change HOT 1
- `Doorkeeper::AccessToken.find_or_create_for` with empty scopes raises NoMethodError HOT 6
- Token revocation error when token contains null byte. HOT 2
- Doorkeeper is loading ActiveRecord too early HOT 1
- AuthorizedApplications returns the date that the _application_ was created, not the date that the _authorization_ was created HOT 2
- Add GitHub Discussions to the project HOT 1
- Doorkeeper appears to be missing a way to validate client configuration before redirecting to the authentication page HOT 1
- Access tokens should be revoked when multiple attempts are made to exchange the same authorization code
- When introspection is disabled we return 200 for authorized clients via basic auth but 401 for authorized clients via bearer auth HOT 8
- Option to specify supported PKCE code_challenge_methods supported HOT 7
- Doorkeeper's redirect_uri validation is not implemented according to specification
- Refresh Tokens as-implemented are susceptible to Refresh Token Reuse Attacks
- Support for RFC 9207 - OAuth 2.0 Authorization Server Issuer Identification
- Issues getting tests running HOT 3
- Doorkeeper shouldn't generate a secret for public clients HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from doorkeeper.