Authlogic Create new session without password

Question

I'm trying to build Facebook OAuth into my existing Authlogic login system. I have the OAuth part complete, and stored the facebook access_token. The problem I'm facing is to actually log the user in (create a session) without the user typing in their password.

  #facebook's OAuth callback
  def callback 
    access_token = client.web_server.get_access_token(params[:code], :redirect_uri => redirect_uri)
    fb_user = JSON.parse(access_token.get('/me'))  
    @user = User.find_by_facebook_id(fb_user["id"]) || User.find_by_email(fb_user["email"]) || User.new
    @user.update_attributes({
      :facebook_id => fb_user["id"],
      :first_name => fb_user["first_name"],
      :last_name => fb_user["last_name"],
      :gender => fb_user["gender"],
      :email => fb_user["email"],
      :timezone => fb_user["timezone"],
      :locale => fb_user["locale"],
      :facebook_url => fb_user["link"],
      :facebook_access_token => access_token.token
    }) #unless @user.updated_at < 2.days.ago

# TODO: set current_user
# Maybe something like this?
   # @user_session = UserSession.new({
   #    :remember_me => true,
   #    :password =>"[FILTERED]",
   #    :email => email
   # }).save



  flash[:success] = "Welcome, #{@user.name}"
  redirect_to :root
end

can the "crypted_password" db column be blank? – Anatoly Jul 18 '11 at 11:45 — Anatoly, Jul 18 '11 at 11:45

score 2 · Accepted Answer · answered Jul 20 '11 at 00:44

2

Nevermind I figured it out. It was in the README the whole time.

UserSession.new(@user, true) //true = persistent session

answered Jul 20 '11 at 00:44

porkeypop

324
2
11

Authlogic Create new session without password

1 Answers1

Linked