Oauth Applications Documentation - openstax/accounts GitHub Wiki

  • Applications are allowed access to accounts, so users can log in using their OpenStax accounts
  • Admins can add oauth applications at /oauth/applications
  • Doorkeeper is a Rails engine used to allow access to CRUD operations on Oauth applications.
  • Because Doorkeeper is an engine, it has its own templates for the different operations
  • Some of the Doorkeeper templates are customized and are located in views/doorkeeper/applications
  • Some methods from app/lib/authenticate_methods.rb are used on ApplicationsController. It is important to be aware that changes to access in authenticate_methods.rb can impact access across the entire application
  • Controller for ouath application is in app/controllers/oauth/applications_controller.rb
  • User Access Policy is in app/access_policies/doorkeeper/application_access_policy.rb
  • Each application has an owner which is the user that creates the application in accounts
  • The Owner is a Group. There can be multiple members of the Group, but only one is the owner.
  • Oauth admins are added to the group and are allowed to edit only the redirect URI
  • OAuth Admins must be added to an application by an Admin.