Merge pull request #8 from blairanderson/master

Added Readme Documentation
kmrshntr · May 9, 2015 · acf3570 · acf3570
2 parents 8a7aa69 + fc5f4d1
commit acf3570
Show file tree

Hide file tree

Showing 2 changed files with 65 additions and 10 deletions.
diff --git a/.gitignore b/.gitignore
@@ -15,3 +15,4 @@ spec/reports
 test/tmp
 test/version_tmp
 tmp
+.idea/
diff --git a/README.md b/README.md
@@ -1,24 +1,78 @@
 # Omniauth::Slack
 
-TODO: Write a gem description
+This Gem contains the Slack strategy for OmniAuth.
 
-## Installation
+## Before You Begin
 
-Add this line to your application's Gemfile:
+You should have already installed OmniAuth into your app; if not, read the [OmniAuth README](https://github.com/intridea/omniauth) to get started.
 
-    gem 'omniauth-slack'
 
-And then execute:
+Now sign into the [Slack application dashboard](https://api.slack.com/applications) and create an application. Take note of your API keys.
 
-    $ bundle
 
-Or install it yourself as:
+## Using This Strategy
 
-    $ gem install omniauth-slack
+First start by adding this gem to your Gemfile:
 
-## Usage
+```ruby
+gem 'omniauth-slack'
+```
 
-TODO: Write usage instructions here
+If you need to use the latest HEAD version, you can do so with:
+
+```ruby
+gem 'omniauth-slack', github: 'kmrshntr/omniauth-slack'
+```
+
+Next, tell OmniAuth about this provider. For a Rails app, your `config/initializers/omniauth.rb` file should look like this:
+
+```ruby
+Rails.application.config.middleware.use OmniAuth::Builder do
+  provider :slack, "API_KEY", "API_SECRET", scope: "client"
+end
+```
+
+Replace `"API_KEY"` and `"API_SECRET"` with the appropriate values you obtained [earlier](https://api.slack.com/applications).
+
+If you are using [Devise](https://github.com/plataformatec/devise) then it will look like this:
+
+```ruby
+Devise.setup do |config|
+  # other stuff...
+
+  config.omniauth :slack, ENV["SLACK_APP_ID"], ENV["SLACK_APP_SECRET"], scope: 'client'
+
+  # other stuff...
+end
+```
+
+Slack lets you choose from a [few different scopes](https://api.slack.com/docs/oauth#auth_scopes).
+
+
+## Authentication Options
+
+#### State
+
+> *unique string to be passed back upon completion*
+
+> The state parameter should be used to avoid forgery attacks by passing in a value that's unique to the user you're authenticating and checking it when auth completes.
+
+for a logged in user, you might want to include state, for example with devise:
+
+`https://www.yourapp.com/users/auth/slack?state=1234-foobutter`
+
+creates an auth session with `state`
+
+After a successful auth, the callback request will include `request.env["omniauth.params"]` hash
+
+```ruby
+class CallbackController < ApplicationController
+  def slack
+    request.env["omniauth.params"]["state"]
+    # => "1234-foobutter"
+  end
+end
+```
 
 ## Contributing
-Original file line number
+Diff line change
@@ Expand Up / @@ -15,3 +15,4 @@ spec/reports @@
     test/tmp
     test/version_tmp
     tmp
+    .idea/