ring-oauth2 icon indicating copy to clipboard operation
ring-oauth2 copied to clipboard

Published 20 hours ago verified publisher icon weavejester

Implicit dependencies on other middelware

Open ingesolvoll opened this issue 6 years ago • 5 comments

This middleware assumes that the developer already applied wrap-session, wrap-cookie, wrap-params and possibly more. I struggled a bit today before remembering that. I guess this would be a blocker for less experienced ring users.

Would it be a good idea to insert a paragraph about those implicit dependencies in README.md? There already exists a reference to wrap-defaults, but that one is rather specific about a single problem.

ingesolvoll avatar Nov 30 '17 13:11 ingesolvoll

It requires wrap-session and wrap-params. A note in the README would be very useful, as I seem to have forgotten to do that!

weavejester avatar Nov 30 '17 19:11 weavejester

I can make a pull request if you want help

ingesolvoll avatar Dec 01 '17 09:12 ingesolvoll

This has been added recenlty to the docs. Is this clear enough now? It mentions wrap-params, but not yet wrap-session.

Kah0ona avatar Feb 01 '19 12:02 Kah0ona

I don't see any changes in the README, it only mentions wrap-defaults but not explicit ordering. I may be having this issue, or maybe not.

          (http/run-server
            (-> (routes lagosta-routes)
                (wrap-oauth2 okta-attrs)
                (wrap-defaults (-> site-defaults (assoc-in [:session :cookie-attrs :same-site] :lax)))
                wrap-params)
            {:port 3434})))

does this look correct? I'm trying to use Okta and going to my :launch-uri does nothing i.e. I'm not redirected to Okta's authorize-uri

SOLVED: it wasn't related, but maybe a bug? my :launch-uri was defined as an absolute url http://localhost:3434/login which didn't work, but /login does. README says

It can be any relative URI as long as it is unique. It can also be an absolute URI like

jcpsantiago avatar Oct 13 '21 13:10 jcpsantiago 

          (http/run-server
            (-> (routes lagosta-routes)
                (wrap-oauth2 okta-attrs)
                (wrap-defaults (-> site-defaults (assoc-in [:session :cookie-attrs :same-site] :lax)))
                wrap-params)
            {:port 3434})))

does this look correct?

Yes, except that wrap-params is also added by wrap-defaults, so you can omit it.

README says

It can be any relative URI as long as it is unique. It can also be an absolute URI like

That's the documentation for the redirect URI:

The redirect URI provides the internal callback. It can be any relative URI as long as it is unique. It can also be an absolute URI like

It's probably a good idea to mention that the launch-uri must be a relative URI, since it adds a route associated with that URI.

weavejester avatar Oct 13 '21 16:10 weavejester