OAuth2 Custom Provider

[luggesexe]

Hello,

I am about to write the next large project. For that I think this Framework is a great fit.
For that I have two questions regarding OAuth.

1. I see that there are already some providers such as GitHub. I have my own custom provider based upon league. Can I integrate it without relying on patching the SupportedOAuthProvider.php ? This is not a Provider that Tempest would benefit from including globally. I can use the GenericOAuthConfig but would like to benefit from mapping my scopes with the methods such as getXYField... (without ->raw, methods are present in the provider package)

2. In the Docs I can find https://tempestphp.com/3.x/features/oauth#working-with-the-o-auth-user this feature.
   Is it possible to make the $user globally avaliable? So that I can access $user->id in a controller without having to initialize it everywhere again? Would that just work with $this->user->myCustomScopeClaim?

Thank you for your help.

Kindly

[xHeaven]

1. That enum is only used for the installer/scaffolding. You can create custom OAuth configurations by implementing the OAuthConfig interface, then registering your newly built config in a .config.php file. You can then inject that provider into your controllers via the #[Tag] attribute.
2. The OAuthUser is transient, it only exists during the callback. The currently authenticated user is available by injecting an Authenticatable into your controllers. Eg. final class User implements DatabaseModel, Authenticatable.

[iamdadmin]

If you use ./tempest install auth --oauth you'll be able to select scaffolding for the App\ namespace items you'll need like a middleware for you to start from, and you can select 'Generic' as the OAuth provider, to implement your custom provider into.

[brendt]

Great to see you're going to use Tempest :)

I think your questions were answered? If you need any more help, feel free to open a new issue or join our Discord