A Rails engine for providing OpenID Connect authorization. Uses the openid_connect gem to turn a Rails app into an OpenID Connect provider.

Use your application as an Open ID provider.

You'll need some kind of user authentication to exist on you application first. Normally we use Devise.

Add this line to your application's Gemfile:

gem 'oidc_provider'

And then execute:

$ bundle

Or install it yourself as:

$ gem install oidc_provider

Install the support stuffs:

• an initializer
• default routes to your routes file

$ rails generate oidc_provider:install

Migrations next:

$ rails oidc_provider:install:migrations
$ rails db:migrate

This gem signs the generated JWT (JSON Web Tokens) using a private key that should exist at the path lib/oidc_provider_key.pem in your Rails application (or in the path defined in the OIDC_PROVIDER_PRIVATE_KEY_PATH).

You can pass its passphrase using the OIDC_PROVIDER_KEY_PASSPHRASE environment variable.

This gem provide a convenient way of generating one if you need it by running :

$ rails oidc_provider:generate_key

Visit: https://demo.c2id.com/oidc-client/

Click "Client details"

Copy and paste the client ID, secret, and redirection URI into your config/initializers/oidc_provider.rb config for a new client.

Visit: https://demo.c2id.com/oidc-client/

Click "OpenID provider details"

Put in your website as the issuer and click "Query"

You should see values generated for all 4 endpoints below.

Visit: https://demo.c2id.com/oidc-client/

Click "Authenticate end-user"

Click "Log in with OpenID Connect". You should see the following headings:

• OpenID authentication response
• Token response
• Provider public RSA JSON Web Key (JWK)
• ID token
• UserInfo (with your email in there)

Contribution directions go here.

The gem is available as open source under the terms of the MIT License.

gem build oidc_provider.gemspec
gem push oidc_provider-0.3.10.gem