Skip to content
/ rails5-api-jwt-facebook-auth Public

Rails5 example application for JWT authentication (knock gem) with Facebook login

License

MIT license
23 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

muZk/rails5-api-jwt-facebook-auth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
app
app
 
 
bin
bin
 
 
config
config
 
 
db
db
 
 
lib/tasks
lib/tasks
 
 
log
log
 
 
public
public
 
 
test
test
 
 
tmp
tmp
 
 
.gitignore
.gitignore
 
 
Gemfile
Gemfile
 
 
Gemfile.lock
Gemfile.lock
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
Rakefile
Rakefile
 
 
config.ru
config.ru
 
 

Repository files navigation

Rails5 JWT Authentication with Facebook Login

This rails5 API application is a proof of concept for JWT authentication alongside facebook login.

It uses Knock, which doesn't provide multiple strategies (yet).

Gems used

  • Knock for API authentication.
  • Figaro for ENV variables.
  • Koala for facebook access_token validation and user information retrieval.

Configuration

  1. Configure figaro:

    cp config/application.yml.sample config/application.yml

  2. Create a facebook application:

  • Visit Facebook Developers

  • Click My Apps, then select *Add a New App from the dropdown menu

  • Select Website platform and enter a new name for your app

  • Click on the Create New Facebook App ID button

  • Choose a Category that best describes your app

  • Click on Create App ID button

  • In the upper right corner click on Skip Quick Star

  • Copy and paste App ID and App Secret keys into config/application.yml.

    Note: App ID is FB_APP_ID, App Secret is FB_SECRET_KEY

    For example:

        # config/application.yml
        FB_APP_ID: 'fb app id'
        FB_SECRET_KEY: 'fb secret key'
  • Click on the Settings tab in the left nav, then click on + Add Platform
  • Select Website
  • Enter http://localhost:3000 under Site URL

Note: those steps were based on hackaton-starter github.

  1. Database:

Sqlite for simplicity.

Just run

rake db:migrate

Running

rails s

API

The API endpoint for facebook authentication is

POST /facebook_user_token

Which will create a user in the database using the facebook uid.

And the expected JSON payload

{
    "auth": {
        "access_token": "facebook access token for the application"
    }
}

You can get a valid access_token for your facebook app using the Graph API Explorer

Then, you can use CURL to retrieve a JWT Token:

curl -H "Content-Type: application/json" -X POST -d '{"auth": {"access_token": "YOUR ACCESS_TOKEN"}}' http://localhost:3000/facebook_user_token

Example response from the API:

201 Created
{"jwt": "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9"}

How to get access_token using Facebook Web SDK

Head to Facebook Login for the Web with the JavaScript SDK >> for a working example.

The statusChangeCallback function is called with the results of a login attempt. You can access to the user access token in this function:

    // This is called with the results from from FB.getLoginStatus().
    function statusChangeCallback(response) {
        if (response.status === 'connected') {
            var accessToken = esponse['authResponse']['accessToken'];
            // EXAMPLE: Register or authenticate the user in our API
            $.post('/facebook_user_token', { auth: { access_token: accessToken } })
                .done(function(data){
                    console.log('jwt token:', data['jwt']);
                })
                .fail(function(error){
                    console.log(error);
                })
        }
    }

About

Rails5 example application for JWT authentication (knock gem) with Facebook login

Topics

rails facebook-login jwt-authentication

Resources

Readme

License

MIT license
Activity

Stars

23 stars

Watchers

2 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages