support noauth

[akvadrako]

Hopefully this patch is unintrusive enough

[brntbeer]

Maybe i don't understand the concept of noauth well enough. But why not 'email' => nil?

[akvadrako]

I just didn't understand the use of the email field's usage well enough

[damm]

Looking back I thought #136 covered this very well

[marianogg9]

@damm @brntbeer @akvadrako hi guys. I'm fighting with this authentication issue for a while now, I'm not sure if I can apply any of these hacks to my config.ru to get foreman running. Also I've taken a look a this one https://github.com/damm/descartes/commit/84e3d4a239ee9e8ffc87ed70d6569eee729a4d74 but I can't figure it out how to apply those changes. Here's my config,ru:

$stdout.sync = true
$:.unshift File.dirname(FILE) + '/lib'
require 'descartes/web'
require 'descartes/github_auth'
require 'rack-canonical-host'

use Rack::CanonicalHost do
case ENV['RACK_ENV'].to_sym
when :production then ENV['CANONICAL_HOST'] if defined?ENV['CANONICAL_HOST']
end
end

use Rack::Session::Cookie, :key => 'rack.session',
:expire_after => 1209600,
:secret => (ENV['SESSION_SECRET'] || raise('missing SESSION_SECRET'))

use OmniAuth::Builder do
provider :google_apps,
:store => OpenID::Store::Redis.new(Redis.connect(:url => ENV['REDISTOGO_URL']) ||
OpenID::Store::Redis.new(Redis.connect(:url => 'redis://localhost:6379/1'))),
:name => 'google',
:domain => ENV['GOOGLE_OAUTH_DOMAIN']
end

class Descartes::NoAuth < Sinatra::Base
before do
session['user'] = { 'uid' => 'anonymous', 'email' => 'noemail' }
redirect '/'
end
end

run Rack::URLMap.new('/' => Descartes::Web, '/auth/github' => Descartes::GithubAuth,
'/auth/noauth' => Descartes::NoAuth)

• And my .env

OAuth type (either 'google' or 'github' or 'noauth')
OAUTH_PROVIDER=noauth

I'm still getting the "descartes/config.ru:16:in `block in

': missing SESSION_SECRET (RuntimeError)" error.. If anyone has anything to add, it'd be awesome. Thanks!!!

[damm]

export SESSION_SECRET="somethingrandom"

[marianogg9]

Thanks @damm and sorry but somethingrandom??? I don't know what it would be suitable. Thanks!

[marianogg9]

And, is this something I need to add to config.ru? what about .env file?

[damm]

@Mariano-gon It's due to how Sessions are handled (and encryption). It should be unique and random.

http://www.sinatrarb.com/faq.html#sessions

Slightly better could? be http://guides.rubyonrails.org/security.html#session-storage

[marianogg9]

Thanks @damm. Seems like I'm facing another issue now, I've opened another thread (#153). One last thing, the .env and config.ru are correct? Thanks!

[obfuscurity]

Man I just realized how badly I want this since a) Google deprecated new registrations for OpenID 2.0 and b) GitHub changed their OAuth too. IOW, neither OAUTH mech works for new deployments. 😭