Skip to content

Commit

Permalink
separated auth guide
Browse files Browse the repository at this point in the history
  • Loading branch information
@Spiral-Memory
Spiral-Memory committed Jul 1, 2024
1 parent 745b11b commit cb71541
Show file tree
Hide file tree
Showing 2 changed files with 100 additions and 84 deletions.
102 changes: 18 additions & 84 deletions packages/react/README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -63,88 +63,34 @@ To use the `EmbeddedChat` component, include it in your component's render metho
- `dark` (boolean): Enables dark mode in the application. Defaults to `false`.
- `remoteOpt` (boolean): Allows props override remotely using `EmbeddedChat RC App`. Defaults to `false`.

### Authentication

The `EmbeddedChat` component offers three distinct authentication modes to cater to different requirements for accessing RocketChat. Below is a detailed guide on how to implement each authentication flow.

#### 1. Token Authentication Flow

Token authentication allows users to authenticate using a service-specific access token. There are two ways to use token authentication:

##### a. Using `accessToken` and `expiresIn`:

```javascript
auth: {
flow: 'TOKEN',
credentials: {
serviceName: "your-service-name",
accessToken: "accessToken",
expiresIn: 3600,
},
}
```

- `serviceName`: The name of your authentication service.
- `accessToken`: The access token obtained from your authentication service.
- `expiresIn`: The duration in seconds for which the token is valid.

##### b. Using `resume`:

```javascript
auth: {
flow: 'TOKEN',
credentials: {
resume: 'resumeToken',
},
}
```

- `resume`: A resume token to be used for authentication.

In both cases, the credentials are posted to the `/api/v1/login` endpoint of the RocketChat server.

#### 2. Password Authentication Flow
## Handling the Closable State

The password method displays a modal where users can enter their username and password:
If `isClosable` is `true`, provide a `setClosableState` function to manage the state when the chat window is closed:

```javascript
auth: {
flow: 'PASSWORD',
}
```jsx
<EmbeddedChat
isClosable={true}
setClosableState={handleClose}
// ...other props
/>
```

This method is straightforward and does not require additional configuration for the `auth` prop. When this flow is active, a modal dialog prompts users for their RocketChat username and password.
## Authentication Guide

#### 3. OAuth Authentication Flow
Embedded Chat supports various methods for logging into a Rocket.Chat server. These include three primary methods:

To use RocketChat's OAuth authentication, ensure the EmbeddedChat app is installed and configured on your RocketChat server:
1. **Token-Based Authentication**: This can be either a personal access token or a service-specific access token.
2. **Login Credentials**: Using a valid username/email and password.
3. **OAuth Authentication**: Uses the OAuth configuration set up in Rocket.Chat. [This method requires installing the EmbeddedChat RC App on the Rocket.Chat server]

```javascript
auth: {
flow: 'OAUTH',
}
```
#### Storing the `ec-token` for Auto Login

This method utilizes the OAuth configuration set up in RocketChat, providing a seamless authentication experience.
After completing the login, a `resume-token / ec-token` is used for automatic login. There are two methods to store this token :

### Integrating with EmbeddedChat
1. **Local Storage**: Store the `ec-token` in the browser's local storage.
2. **HTTP-Only Cookie**: Store the `ec-token` as an HTTP-only cookie. [This method requires the installation of the EmbeddedChat RC App on the Rocket.Chat server]

When implementing any of these authentication methods in `EmbeddedChat`, include the `auth` prop with the desired configuration:

```jsx
<EmbeddedChat
host="http://your-rocketchat-server.com"
roomId="YOUR_ROOM_ID"
auth={{
flow: 'TOKEN', // or 'PASSWORD' or 'OAUTH'
credentials: {
// Include if using TOKEN flow
},
}}
/>
```

Ensure that the `host` and `roomId` props are set according to your RocketChat server and the specific room you want to connect to.
For a detailed description of how to work with each of these authentication methods, refer to the [authentication.md](docs/authentication.md) file.

## Theming and Customization

Expand All @@ -159,18 +105,6 @@ You can pass a `theme` object to customize the appearance according to your appl

Follow [theming.md](docs/theming.md) to know more about EmbeddedChat's theming.

## Handling the Closable State

If `isClosable` is `true`, provide a `setClosableState` function to manage the state when the chat window is closed:

```jsx
<EmbeddedChat
isClosable={true}
setClosableState={handleClose}
// ...other props
/>
```

## Development

Follow this [EmbeddedChat Readme](https://github.com/RocketChat/EmbeddedChat) to setup EmbeddedChat for development.
Expand Down
82 changes: 82 additions & 0 deletions packages/react/docs/authentication.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,82 @@
### Authentication

The `EmbeddedChat` component offers three distinct authentication modes to cater to different requirements for accessing RocketChat. Below is a detailed guide on how to implement each authentication flow.

#### 1. Token Authentication Flow

Token authentication allows users to authenticate using a service-specific access token. There are two ways to use token authentication:

##### a. Using `accessToken` and `expiresIn`:

```javascript
auth: {
flow: 'TOKEN',
credentials: {
serviceName: "your-service-name",
accessToken: "accessToken",
expiresIn: 3600,
},
}
```

- `serviceName`: The name of your authentication service.
- `accessToken`: The access token obtained from your authentication service.
- `expiresIn`: The duration in seconds for which the token is valid.

##### b. Using `resume`:

```javascript
auth: {
flow: 'TOKEN',
credentials: {
resume: 'resumeToken',
},
}
```

- `resume`: A resume token to be used for authentication.

In both cases, the credentials are posted to the `/api/v1/login` endpoint of the RocketChat server.

#### 2. Password Authentication Flow

The password method displays a modal where users can enter their username and password:

```javascript
auth: {
flow: 'PASSWORD',
}
```

This method is straightforward and does not require additional configuration for the `auth` prop. When this flow is active, a modal dialog prompts users for their RocketChat username and password.

#### 3. OAuth Authentication Flow

To use RocketChat's OAuth authentication, ensure the EmbeddedChat app is installed and configured on your RocketChat server:

```javascript
auth: {
flow: 'OAUTH',
}
```

This method utilizes the OAuth configuration set up in RocketChat, providing a seamless authentication experience.

### Integrating with EmbeddedChat

When implementing any of these authentication methods in `EmbeddedChat`, include the `auth` prop with the desired configuration:

```jsx
<EmbeddedChat
host="http://your-rocketchat-server.com"
roomId="YOUR_ROOM_ID"
auth={{
flow: 'TOKEN', // or 'PASSWORD' or 'OAUTH'
credentials: {
// Include if using TOKEN flow
},
}}
/>
```

Ensure that the `host` and `roomId` props are set according to your RocketChat server and the specific room you want to connect to.

0 comments on commit cb71541

Please sign in to comment.