Contents

Doorkeeper.configure do
  orm :active_record
  use_refresh_token
  api_only
  base_controller 'ActionController::API'

  skip_client_authentication_for_password_grant { true } if defined?(skip_client_authentication_for_password_grant)

  resource_owner_authenticator { current_spree_user }

  resource_owner_from_credentials do
    user = Spree.user_class.find_for_database_authentication(email: params[:username])

    next if user.nil?

    if defined?(Spree::Auth::Config) && Spree::Auth::Config[:confirmable] == true
      user if user.active_for_authentication? && user.valid_for_authentication? { user.valid_password?(params[:password]) }
    elsif user&.valid_for_authentication? { user.valid_password?(params[:password]) }
      user
    end
  end

  admin_authenticator do |routes|
    current_spree_user&.has_spree_role?('admin') || redirect_to(routes.root_url)
  end

  grant_flows %w[password client_credentials]

  allow_blank_redirect_uri true

  handle_auth_errors :raise

  access_token_methods :from_bearer_authorization, :from_access_token_param

  optional_scopes :admin, :write, :read
end

Doorkeeper::AccessGrant.class_eval do
  self.table_name = 'spree_oauth_access_grants'
end

Doorkeeper::AccessToken.class_eval do
  self.table_name = 'spree_oauth_access_tokens'
end

Doorkeeper::Application.class_eval do
  self.table_name = 'spree_oauth_applications'
end

Version data entries

7 entries across 7 versions & 1 rubygems

Version	Path
spree_api-4.3.3	config/initializers/doorkeeper.rb
spree_api-4.3.2	config/initializers/doorkeeper.rb
spree_api-4.3.1	config/initializers/doorkeeper.rb
spree_api-4.3.0	config/initializers/doorkeeper.rb
spree_api-4.3.0.rc3	config/initializers/doorkeeper.rb
spree_api-4.3.0.rc2	config/initializers/doorkeeper.rb
spree_api-4.3.0.rc1	config/initializers/doorkeeper.rb