Rails Provider Example

This is a very quick rails example. The scenario is that you use OAuth2 to authenticate your internal APIs.

require 'oauth2/server/request'

class MyController < ApplicationController

  before_filter :oauth2_verify_request

  def oauth2_verify_request
    req = OAuth2::Server::Request.new do |req|
      req.realm       = "example.com"
      req.algorithms  = 'hmac-sha256'

      req.method do
        request.method
      end

      req.request_uri do
        request.request_uri
      end

      req.host_with_port do
        request.host + request.port.to_s
      end

      req.access_token do
        token_for(req.request_header.token)
      end

      req.access_token_expired? do
        false
      end

      req.request_header do
        request.authorization
      end
    end

    unless req.validate
      head :unauthorized
    end
  end

end