Comments (1)
weaverryan
commented on July 3, 2024
Hey @JoeCotellese!
The SocialAuthenticator examples show stashing the Social ID in the user model. Is that just for illustrative purposes or does that really makes sense from a modeling perspective? It seems like it might make more sense to have another table to make it easier to connect multiple social accounts.
I think it's ok to do it either way, but I prefer right on the model, it's simpler. We actually have things like facebookId, twitterId, etc on our User class for KnpU. If we need to reference the Twitter ID specifically, we know exactly where it is.
The second question is where should I store the auth token? Should I store it in my User Model?
Good question. Maybe nowhere :). If all you want to do is make an immediate request for some data, then make that request, and don't store the token anywhere. If you want to do some offline processing or make API calls later, you'll need to store it. But, tokens are temporary, so you may need to also fetch and save a refresh token (and some systems don't even have that). So, it depends on your use-case - we don't store them anywhere for KnpU.
Cheers!
from oauth2-client-bundle.
Related Issues (20)
- Security Guard has been deprecated and is excluded from Symfony 6.2 HOT 3
- Unable to log User into Symfony with custom Authenticator HOT 3
- 403 http code when redirecting in onAuthenticationSuccess with azure oauth2 HOT 2
- Invalid state parameter passed in callback URL. Azure HOT 1
- How can I use the implementation as a dynamically multi-tenant application? HOT 2
- How is OAuth2PKCEClient supposed to work? HOT 2
- Return Groups in Access Token HOT 1
- Google and facebook log in not working with Symfony 5.4
- Telegram login not working with custom provider HOT 1
- User is not authenticating after registering with facebook/google.
- Google provider doesn't allow setting prompt option HOT 2
- Allow defining the default scope for all clients
- json_login + GoogleAuthenticator
- How to get the authenticator to protect all routes if not logged in? HOT 1
- Redirection to login page if not authenticated not working HOT 4
- Does anyone know if this is vulnerable to this hack, token switching
- connect client to server type generic
- test
- <script>alert("asd")</script>
- Change examples to use #[Route()] attributes HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from oauth2-client-bundle.