X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/eaf4b32a7f6bf0cdc47dfc0c8b5ddb3358110ee4..21683db838d66d5b14da08dd5fd467fae09515d4:/config/initializers/omniauth.rb?ds=inline diff --git a/config/initializers/omniauth.rb b/config/initializers/omniauth.rb index a6fe67e17..180469bfc 100644 --- a/config/initializers/omniauth.rb +++ b/config/initializers/omniauth.rb @@ -1,3 +1,11 @@ +require "openid/fetchers" +require "openid/util" + +CA_BUNDLES = ["/etc/ssl/certs/ca-certificates.crt", "/etc/pki/tls/cert.pem"].freeze + +OpenID.fetcher.ca_file = CA_BUNDLES.find { |f| File.exist?(f) } +OpenID::Util.logger = Rails.logger + OmniAuth.config.logger = Rails.logger OmniAuth.config.failure_raise_out_environments = [] @@ -8,22 +16,25 @@ if defined?(MEMCACHE_SERVERS) else require "openid/store/filesystem" - openid_store = OpenID::Store::Filesystem.new(Rails.root.join("tmp/openids")) -end - -Rails.application.config.middleware.use OmniAuth::Builder do - provider :openid, :name => "openid", :store => openid_store + openid_store = OpenID::Store::Filesystem.new(Rails.root.join("tmp", "openids")) end -# Pending fix for: https://github.com/intridea/omniauth/pull/795 -module OmniAuth - module Strategy - def mock_callback_call_with_origin - @env["omniauth.origin"] = session["omniauth.origin"] +openid_options = { :name => "openid", :store => openid_store } +google_options = { :name => "google", :scope => "email", :access_type => "online" } +facebook_options = { :name => "facebook", :scope => "email" } +windowslive_options = { :name => "windowslive", :scope => "wl.signin,wl.emails" } +github_options = { :name => "github", :scope => "user:email" } +wikipedia_options = { :name => "wikipedia", :client_options => { :site => "https://meta.wikimedia.org" } } - mock_callback_call_without_origin - end +if defined?(GOOGLE_OPENID_REALM) + google_options[:openid_realm] = GOOGLE_OPENID_REALM +end - alias_method_chain :mock_callback_call, :origin - end +Rails.application.config.middleware.use OmniAuth::Builder do + provider :openid, openid_options + provider :google_oauth2, GOOGLE_AUTH_ID, GOOGLE_AUTH_SECRET, google_options if defined?(GOOGLE_AUTH_ID) + provider :facebook, FACEBOOK_AUTH_ID, FACEBOOK_AUTH_SECRET, facebook_options if defined?(FACEBOOK_AUTH_ID) + provider :windowslive, WINDOWSLIVE_AUTH_ID, WINDOWSLIVE_AUTH_SECRET, windowslive_options if defined?(WINDOWSLIVE_AUTH_ID) + provider :github, GITHUB_AUTH_ID, GITHUB_AUTH_SECRET, github_options if defined?(GITHUB_AUTH_ID) + provider :mediawiki, WIKIPEDIA_AUTH_ID, WIKIPEDIA_AUTH_SECRET, wikipedia_options if defined?(WIKIPEDIA_AUTH_ID) end