bigfork / silverstripe-oauth

SilverStripe OAuth2 authentication, based on the PHP League's OAuth2 client
BSD 3-Clause "New" or "Revised" License
9 stars 11 forks source link

Decouple access tokens from members #2

Closed kinglozzer closed 7 years ago

kinglozzer commented 7 years ago

This could instead be handled by extension hooks in Controller::callback(). Implementors will need to be responsible for storing whatever information they require to handle the returned token (e.g. object IDs) in the session before they redirect to http://foo.com/oauth/authenticate.

Example flow with “Account” class: