winwin / omniauth
Installs: 861
Dependents: 0
Suggesters: 0
Security: 0
Stars: 0
Watchers: 3
Forks: 0
Open Issues: 0
Type:project
Requires
- php: >=7.2
- ext-json: *
- ext-openssl: *
- psr/http-factory: ^1.0
- psr/http-server-middleware: ^1.0
- psr/log: ^1.0
Requires (Dev)
- hybridauth/hybridauth: ~3.0
- kuiper/web: ^0.6
- laminas/laminas-diactoros: ^2.0
- phpstan/extension-installer: ^1.0
- phpstan/phpstan: ^0.12.34
- phpstan/phpstan-strict-rules: ^0.12.4
- phpunit/phpunit: ^6.0
- psr/container: ^1.0
- roave/security-advisories: dev-master
- slim/slim: ^4.5
- vlucas/phpdotenv: ^5.0
- winwin/composer-phpcs-plugin: ^0.2
Suggests
- hybridauth/hybridauth: To use oauth2 providers implements in Hybridauth 3
This package is auto-updated.
Last update: 2024-10-13 15:54:25 UTC
README
Omniauth is a middleware for multi-provider authentication inspired by Opauth.
How to use it?
Check out and see examples to find how it work.
Configuration
The constructor of the Omniauth
class has serval options to control its behavior.
strategies
An array of configuration for authentication providers. The key is the provider name and also will be used for route match, and the value will be the contructor parameters for the strategy.
The common configuration key for the strategy is strategy_class
,which also can set
by call:
<?php $omniauth->getStrategyFactory()->register($providerName, $strategyClass);
route
A pattern to match which uri will do the authentication.
The default value is /:strategy/:action
. The :strategy
place holder
will expand to an regexp match all provider name listed in strategies
configuration,
and the :action
place holder will match nothing or any word.
auth_key
The key name to save user identity in $_SESSION
array. The default value is 'auth'
auto_login
If value is true, omniauth will check current user whether is logged in (by check $_SESSION['auth']
is not empty),
if not, it will redirect user to the default login page. The default value is true
.
redirect_uri_key
The key name to save current page before redirect user to login page in $_SESSION
array and when user login successfully,
omniauth will redirect user to the saved page.
The default value is login_redirect_uri
.
identity_transformer
A function to transformer user identity before save to session.
How to add my authentication strategy?
Check out PasswordStrategy to see how to implements an new authentication strategy.
Usually, a strategy should extends AbstractStrategy and have to implement two function authenticate
and verify
.
The authenticate
function initiate the authentication flow,
and the verify
function will check user's credential and call $this->login($user)
to set user identity and return back the page before login.