Add token base workflow about ueberauth HOT 9 CLOSED

I will be more than happy to contribute on this but I need directions, specially thinking on fallback

from ueberauth.

@yordis please see my comment here

from ueberauth.

@scrogson but the idea is actually expand ueberauth module to support that workflow once you have the token. Notice how much duplicated code is needed for accomplish the task.

I understand how to accomplish the task but I think is better to add that feature. I think is a perfect place and it will help a lot of people.

from ueberauth.

I understand how to accomplish the task but I think is better to add that feature. I think is a perfect place and it will help a lot of people.

@yordis i agree. I need this feature to jump on ueberauth, and leave Rails...

from ueberauth.

@tugal the ticket is closed so 😢

from ueberauth.

I'd like to attack this feature in the very near future. I'm seeing this come up as an issue more and more. My focus atm is getting guardian 1.0 out but I'm hearing this issue loud and clear. One thing I'm not sure about is how to get this into ueberauth base rather than delegating it out to the individual strategies. Is there a behaviour we can define that would provide enough to kick this off or do you folks think that strategies should look after it?

from ueberauth.

@hassox if you are focus on Guardian I can help over this side.

One thing I'm not sure about is how to get this into ueberauth base rather than delegating it out to the individual strategies.
We can't, every strategy knows about his implementation detail. The only thing we could do is define the protocol of communication. I don't see this working in ueberauth side, specially that you have twitter in OAuth 1 still 😭

Is there a behaviour we can define that would provide enough to kick this off or do you folks think that strategies should look after it?
Strategy providers have to look after it. Ueberauth will just implement the protocol definition and workflow.

Side notes,
The reason that I didn't want to do what is listed here #20 (comment) is that, all their implementations required a Plug.Conn to be able to work. If want to see ueberauth as Web based only that would makes sense, but now with GraphQL or even good architectures around OTP apps, the attachment to any Web framework becomes a wall, at least for the token
In my case, I pushed all the user identity to it's own OTP, which just receive a token string passed from the web server.

from ueberauth.

I'd like to attack this feature in the very near future. I'm seeing this come up as an issue more and more. My focus atm is getting guardian 1.0 out but I'm hearing this issue loud and clear. One thing I'm not sure about is how to get this into ueberauth base rather than delegating it out to the individual strategies. Is there a behaviour we can define that would provide enough to kick this off or do you folks think that strategies should look after it?

@hassox : Why not create another optionnal method "validate_token" (ina ddition to exiting ones : request and callback), where statégies are responsible to implement. In my point of view, only stratégies know how to validate their tokens...

Nice to hean that this feature still open..

from ueberauth.

Moved to #61

from ueberauth.