discourse/lib/auth/facebook_authenticator.rb

# frozen_string_literal: true

class Auth::FacebookAuthenticator < Auth::ManagedAuthenticator
  AVATAR_SIZE = 480

  def name
    "facebook"
  end

  def enabled?
    SiteSetting.enable_facebook_logins
  end

  def register_middleware(omniauth)
    omniauth.provider :facebook,
                      setup:
                        lambda { |env|
                          strategy = env["omniauth.strategy"]
                          strategy.options[:client_id] = SiteSetting.facebook_app_id
                          strategy.options[:client_secret] = SiteSetting.facebook_app_secret
                          strategy.options[:info_fields] = "name,first_name,last_name,email"
                          strategy.options[:image_size] = {
                            width: AVATAR_SIZE,
                            height: AVATAR_SIZE,
                          }
                          strategy.options[:secure_image_url] = true
                        },
                      scope: "email"
  end

  # facebook doesn't return unverified email addresses so it's safe to assume
  # whatever email we get from them is verified
  # https://developers.facebook.com/docs/graph-api/reference/user/
  def primary_email_verified?(auth_token)
    true
  end
end
DEV: enable frozen string literal on all files This reduces chances of errors where consumers of strings mutate inputs and reduces memory usage of the app. Test suite passes now, but there may be some stuff left, so we will run a few sites on a branch prior to merging 2019-05-03 06:17:27 +08:00			`# frozen_string_literal: true`

REFACTOR: Migrate FacebookAuthenticator to use ManagedAuthenticator Changes to functionality - Removed syncing of user metadata including gender, location etc. These are no longer available to standard Facebook applications. - Removed the remote 'revoke' functionality. No other providers have it, and it does not appear to be standard practice in other apps. - The 'facebook_no_email' event is no longer logged. The system can cope fine with a missing email address. Data is migrated to the new user_associated_accounts table. facebook_user_infos can be dropped once we are confident the data has been migrated successfully. 2018-11-28 23:49:24 +08:00			`class Auth::FacebookAuthenticator < Auth::ManagedAuthenticator`
DEV: Remove logical OR assignment of constants (#29201) Constants should always be only assigned once. The logical OR assignment of a constant is a relic of the past before we used zeitwerk for autoloading and had bugs where a file could be loaded twice resulting in constant redefinition warnings. 2024-10-16 10:09:07 +08:00			`AVATAR_SIZE = 480`
Uses higher resolution pictures when importing avatars from Facebook 2016-09-28 12:38:41 +08:00
major refactor of auth, break up the gigantic omniauth controller into sub classes for way better extensibitily 2013-08-23 14:20:43 +08:00			`def name`
			`"facebook"`
			`end`

FEATURE: List, revoke and reconnect associated accounts. Phase 1 (#6099) Listing connections is supported for all built-in auth providers. Revoke and reconnect is currently only implemented for Facebook. 2018-07-23 23:51:57 +08:00			`def enabled?`
			`SiteSetting.enable_facebook_logins`
			`end`

Fixed all broken specs Moved middleware config into authenticators 2013-08-26 09:04:16 +08:00			`def register_middleware(omniauth)`
			`omniauth.provider :facebook,`
			`setup:`
			`lambda { \|env\|`
			`strategy = env["omniauth.strategy"]`
			`strategy.options[:client_id] = SiteSetting.facebook_app_id`
			`strategy.options[:client_secret] = SiteSetting.facebook_app_secret`
REFACTOR: Migrate FacebookAuthenticator to use ManagedAuthenticator Changes to functionality - Removed syncing of user metadata including gender, location etc. These are no longer available to standard Facebook applications. - Removed the remote 'revoke' functionality. No other providers have it, and it does not appear to be standard practice in other apps. - The 'facebook_no_email' event is no longer logged. The system can cope fine with a missing email address. Data is migrated to the new user_associated_accounts table. facebook_user_infos can be dropped once we are confident the data has been migrated successfully. 2018-11-28 23:49:24 +08:00			`strategy.options[:info_fields] = "name,first_name,last_name,email"`
			`strategy.options[:image_size] = {`
			`width: AVATAR_SIZE,`
			`height: AVATAR_SIZE,`
			`}`
			`strategy.options[:secure_image_url] = true`
Fixed all broken specs Moved middleware config into authenticators 2013-08-26 09:04:16 +08:00			`},`
			`scope: "email"`
			`end`

DEV: Explicitly define primary_email_verified? method for managed authenticators (#19127) We're going to change the default return value of the `primary_email_verified?` method of `Auth::ManagedAuthenticator` to false, so we need to explicitly define the method on authenticators to return true where it makes sense to do so. Internal topic: t/82084. 2022-11-24 11:46:06 +08:00			`# facebook doesn't return unverified email addresses so it's safe to assume`
			`# whatever email we get from them is verified`
			`# https://developers.facebook.com/docs/graph-api/reference/user/`
			`def primary_email_verified?(auth_token)`
			`true`
			`end`
major refactor of auth, break up the gigantic omniauth controller into sub classes for way better extensibitily 2013-08-23 14:20:43 +08:00			`end`