I use Omniauth to authenticate users using Twitter and Facebook, following the "standard" tutorial on this topic ( screencast by Ryan Bates , although I use Authlogic, not Devise).
I can log in using Twitter, but I canβt process authenticated requests because my Twitter access token secret has been changed to the end of Twitter but is not updated at the end of my application. I tried to remove authentication, but for some reason it just keeps the old one.
authentications_controller.rb
def create omniauth = request.env['omniauth.auth'] authentication = Authentication.find_by_provider_and_uid(omniauth['provider'], omniauth['uid']) if authentication # User is already registered with application flash[:notice] = 'Signed in successfully.' sign_in_and_redirect(authentication.user) elsif current_user # User is signed in but has not already authenticated with this social network current_user.authentications.create!(:provider => omniauth['provider'], :uid => omniauth['uid'], :token => (omniauth['credentials']['token'] rescue nil), :secret => (omniauth['credentials']['secret'] rescue nil)) current_user.apply_omniauth(omniauth) current_user.save flash[:notice] = 'Authentication successful.' redirect_to root_url else # User is new to this application @user = User.new @user.apply_omniauth(omniauth) if @user.save flash[:notice] = 'User created and signed in successfully.' sign_in_and_redirect(@user) else session[:omniauth] = omniauth.except('extra') redirect_to new_user_path end end end
user.rb
def apply_omniauth(omniauth) self.email = " foo@example.com " self.login = omniauth['user_info']['nickname'] if login.blank? authentications.build(:provider => omniauth['provider'], :uid => omniauth['uid'], :token => omniauth['credentials']['token'], :secret => omniauth['credentials']['secret']) end
Any ideas? Rails 3.0.6 and Ruby 1.8.7
source share