FoF passport, the Laravel passport oauth extension

MayankSethi

i m trying to install that but my laravel is giving error while installing passport in it
anyway thanks for the help will get back to you if have any other problem that for the help

MayankSethi

hey guys I was having a situation here as I have talked to you about the falgrow passport I installed that successfully but the thing is that my project is in laravel framework version 5.2.* and I found out that it doesn't support laravel passport so is their any other way that I can use this thing as if I update the laravel framework it will broke my site can you guys help me with this as I want to use this as my forum for my website

clarkwinkelmann

MayankSethi I'm afraid you will have to update your Laravel install to use Passeport

Upgrade from 5.2 should not be too much of a pain, see https://laravel.com/docs/5.4/upgrade

If you encounter issues with your Laravel upgrade there are many places where you can ask for help (even here, but stackoverflow and laravel forums are probably better)

luceos

olidev You cannot use Laravel Passport on it without any package?

You need to configure this oauth2 driver as additional authorization driver next to the default username/password, github or twitter logins Flarum provides. So yes you need an extension to make this happen. This extension is named after the Laravel passport library, but it works with any OAuth 2 server adhering to conventions.

hassanalvi20

Problem 1
- Installation request for flagrow/passport ^0.2.0@beta -> satisfiable by flagrow/passport[0.2.0-beta].
- flagrow/passport 0.2.0-beta requires flarum/core ^0.1.0-beta.8 -> satisfiable by flarum/core[0.1.x-dev] but these conflict with your requirements or minimum-stability.

how to reslove this

hassanalvi20

Using version ^0.2.0@beta for flagrow/passport
./composer.json has been updated
Loading composer repositories with package information
Updating dependencies (including require-dev)
Your requirements could not be resolved to an installable set of packages.

Installation failed, reverting ./composer.json to its original content.

luceos

hassanalvi20 use this

composer require "flagrow/passport:*"

poVoq

Laravel Passport, which provides a full OAuth2 server implementation for your Laravel application in a matter of minutes. Passport is built on top of the League OAuth2 server that is maintained by Alex Bilbie.

Am I assuming right that this will also work with other OAuth2 servers, or only this specific one?

luceos

poVoq works with pretty much all oath 2 servers.

Brightside56

luceos , I would like to allow users sign in to my forum only using OAuth2 provider (laravel passport) without possibility to create forum account manually. Do you plan to implement such functionality? I would like just to see "sign in using xxx" button. Also when user is authentificating using oauth, forum needs to associate it's oauth record with forum account and this process is not intuitive.

luceos

Brightside56 without possibility to create forum account manually

This is an existing core request: flarum/core641

Brightside56 Also when user is authentificating using oauth, forum needs to associate it's oauth record with forum account and this process is not intuitive.

I think that's still possible using the events the extension provides. You can listen to them and fill any columns you so please, see https://github.com/flagrow/passport/blob/master/src/Events/SendingResponse.php

Brightside56

luceos I think that's still possible using the events the extension provides. You can listen to them and fill any columns you so please, see https://github.com/flagrow/passport/blob/master/src/Events/SendingResponse.php

No, it's not solution I need. In case there is no account on forum with such social provider I need to inform user that he need to register new account or login via his existing account to connect social record with forum account.

Also, if someone creates account on oauth side with email which belongs to forum admin, he can get admin permissions on forum (login as admin), because there is no email validation mechanisms on oauth side or they are, but optional, and newly created user will be able to login on forum with not confirmed email of admin.

User78

When signing in, it returns "An error occurred while trying to load this page."
Details

Downloaded with Bazaar multiple times
Using Auth0 for OAuth (shows successful login in logs)

JoshStrobl

User78 I am getting this as well, but to elaborate a bit more on my current issue:

I am attempting to use this with Phabricator, since it provides an OAuth Server (as per their documentation, which doesn't actually mention any scopes). I've managed to pin-point my specific issue down to src/Controllers/PassportController.phpon line 88, where $user->getId() is returning null, because the response it is getting is:

object(Flagrow\Passport\ResourceOwner)#781 (1) { ["response":"Flagrow\Passport\ResourceOwner":private]=> array(3) { ["result"]=> NULL ["error_code"]=> string(19) "ERR-INVALID-SESSION" ["error_info"]=> string(27) "Session key is not present." } }

This seems like a fairly common issue when I searched for it in conjunction with Phabricator. After digging through the code, I'm not actually sure it's being passed the access_token, or if it is then it's failing to get the user and attempts session-based auth instead of token-based auth to perform the conduit API call and load the user, presumably because Phabricator is likely using Conduit internally in the user.whoami endpoint.

Some of the scopes I'm passing, though I'm not entirely sure how many of them (if any) work: user.username,user.userName,email.address,user.realName,user.id

I know this extension is not at all intended / designed to work with Phabricator, but the last time I wrote anything in PHP was like...8 years ago at the least, the likes of oauth2-phabricator are pretty dead, etc. so if there are any details I could provide to @luceos to enable the use of this extension with Phabricator, I'd be happy to provide it (I'm on the Flarum Discord server, so I am readily accessible).

luceos

JoshStrobl this extension is to work with Laravel passport comparable OAuth2 servers. I simply cannot provide support for other services, that doesn't make any sense. As to your error, it seems the session key is expected by the server, you might want to try to trace this with the support team of phabricator.

JoshStrobl

luceos I was under the impression it was compatible with OAuth2 servers, as per the description:

The OAuth2 (and Laravel passport) compatible oauth extension

If it's sole intent is to work with Laravel Passport, then it should just be the "The Laravel Passport-compatible OAuth extension". Seeing as Phabricator provides an OAuth2 Server, seemed like it would be at least possible to utilize this extension. Guess I'll just need to fumble through the Flarum docs and write an extension.

luceos

JoshStrobl it is compliant with oauth2 servers, but phabricator needs a session key in addition to the other payload.

JoshStrobl

So just a follow up, I got this working as a result of...

1. getResourceOwnerDetailsUrl Change

The getResourceOwnerDetailsUrl function needed to be changed from:

return $this->settings->get('flagrow.passport.app_user_url');

to the following:

return $this->settings->get('flagrow.passport.app_user_url')."?access_token=".((string) $token->getToken());

If there is any possibility of getting an upstream option in your project to pass optional params with a replacer for it, that'd be amazing.

2. Added a result private variable to ResourceOwner

I added:

private $result as a variable, added the following in the constructor:

$this->result = $response["result"];

3. Change ResourceOwner getValueByKey function calls

Phabricator returns user info as a "results" array which has:

phid instead of id
primaryEmail instead of email
userName instead of name

Additionally needed to change $this->response to $this->result

Is there any remote possibility of expanding your extension to support further configuration options such as the above (or handling their cases)? I'd prefer to not have to maintain a fork, but happy to do so if you have no desire to expand your extension to handle the cases above.

luceos

JoshStrobl yes I can take care of that. Please feel free to create an issue or pr on the github repository.

JoshStrobl

Any thoughts on this @luceos?

XiaozhouSong

I have run the command in flarum folder, everything looks fine. But where I could set the configuration? with OAuth authorization url things...
Please help...

JoshStrobl

XiaozhouSong But where I could set the configuration? with OAuth authorization url things...

Go to Administration backend
Go to Extensions
Enable "Flagrow Passport" by checking it
Click the vertical ellipsis (⋮) button when you're hover over that extension.
Click Settings.

This is the standard way of changing extension settings.

« Previous Page Next Page »