The purpose of this project/repo is to demonstrate how simple
it is to integrate auth_plug into any Phoenix Web App/API.
Our objective was to build a re-useable auth system
that we could add to any Phoenix App in less than 5 minutes.
The most basic example of using auth_plug
to add Authentication to a Phoenix App
and showcase a protected route.
Before you attempt to use the auth_plug,
try the Heroku example version so you know what to expect:
https://auth-plug.fly.dev/admin
You will be redirected to:
Once you have logged in, you will be redirected back:
This example is for us @dwyl who will be using auth_plug
in all our projects and more specifically for our
App.
But we have made it as generic as possible
to show that anyone can use (an instance of the) Auth Service
to add Auth to any app in less than 2 minutes!
mix phx.new app --no-ecto --no-webpackWhen asked if you want to Fetch and install dependencies? [Yn]
Type Y followed by the Enter key.
This example only needs the bare minimum Phoenix; we don't need any JavaScript or Database.
For more info, see: https://hexdocs.pm/phoenix/Mix.Tasks.Phx.New.html
The beauty is that this simple use-case is identical to the advanced one. Once you understand these basic principals, you "grock" how to useauth_pluganywhere!
Change into the app directory (cd app)
and open the project in your text editor (or IDE).
e.g: atom .
Open the mix.exs file
and locate the defp deps do section.
Add the line:
{:auth_plug, "~> 1.4"}
E.g:
mix.exs#L45
Open the lib/app_web/router.ex file and locate the section:
scope "/", AppWeb do
pipe_through :browser
get "/", PageController, :index
endImmediately below this add the following lines of code:
pipeline :auth, do: plug(AuthPlug)
scope "/", AppWeb do
pipe_through :browser
pipe_through :auth
get "/admin", PageController, :admin
endThere are two parts to this code:
- Create a new pipeline called
:authwhich will execute theAuthPlugpassing in theauth_urlas an initialisation option. - Create a new scope where we
pipe_throughboth the:browserand:authpipelines.
This means that the "/admin" route is protected by AuthPlug.
Open the /lib/app_web/controllers/page_controller.ex file
and locate the def index function:
def index(conn, _params) do
render(conn, "index.html")
endDirectly below it, add the following code:
def admin(conn, _param) do
render(conn, "admin.html")
endThis just means when the admin/2 function is invoked,
render the admin.html template.
Speaking of which, let's create it!
Create a new file at the following path:
/lib/app_web/templates/page/admin.html.eex
And paste the following code into it:
<section class="phx-hero">
<h1> Welcome <%= @conn.assigns.person.givenName %>!
<img width="32px" src="<%= @conn.assigns.person.picture %>" />
</h1>
<p> You are <strong>signed in</strong>
with your <strong><%= @conn.assigns.person.auth_provider %> account</strong> <br />.
</p>
</section>Visit: authdemo.fly.dev and create a New App:
Save the key as an environment variable named AUTH_API_KEY.
Remember to export the environment variable
or add it to an .env file which should be in your .gitignore file.
Note: If you are new to Environment Variables, please see: https://github.com/dwyl/learn-environment-variables
Run your phoenix app on localhost:
mix phx.server
Now open your web browser to: http://localhost:4000/admin
Given that you are not yet authenticated, your request will be redirected to https://authdemo.fly.dev/?referer=http://localhost:4000/admin&auth_client_id=etc
Once you have successfully authenticated with your GitHub or Google account,
you will be redirected back to localhost:4000/admin
where the /admin route will be visible.
You just setup auth in a brand new phoenix app using auth_plug!
If you got stuck or have any questions, please open an issue, we are here to help!