Project status

[literakl]

Thank you for this revival! What is its current status? Can I just replace the original vue-authenticate in package.json with your fork?

[ajmas]

Hiya, sorry for the delay. Seems I never saw the e-mail.

You should be able to, but I haven't done extensive testing pre-Vue3. All I can say it is working for our Vue3 based project. Did you try it in yours and run into issues?

[mercmobily]

(Where are my manners?) Thank you so much for this!
I am using Vue3 and Pinia. This project should allow me to add login options to my site, right? I think it's the only one available!

[ajmas]

@mercmobily if you are looking at 3rd party oauth, yes. Possibly OpenID too, but I haven’t tested this.

If you are running into any issues, then set up a sample project in GitHub demonstrating the issue you are running into.

[mercmobily]

All good. I asked a possibly silly question in #17 -- let me know. Once I get started, I should be good to go. I will be happy to write tutorials/guides if you want. I also tried to get in touch with Davor Grubelić but had no response...

[mercmobily]

Once I have this up and running, are you interested in tutorials/articles/whatever? I am still trying to figure out what to do on the server side, but once I am up to speed, I would be happy to help.

[ajmas]

Documentation is always good. Feel free to write anything, whether via the wiki or some other means.

The project was forked, partly because Davor Grubelić seemed AWOL.

Server side it would be a case of sending the token you got from your OAuth provider, as a bearer token and doing any validation there. From my understanding you can do a basic signature and expiry check or validate with the OAuth provider. I must admit, this is something I am
a little rusty on.

[mercmobily]

Server side it would be a case of sending the token you got from your OAuth provider, as a bearer token and doing any validation there. From my understanding you can do a basic signature and expiry check or validate with the OAuth provider. I must admit, this is something I am a little rusty on.

Ah this is the bit I was hoping you WOULDN'T be rusty on :-D
Just to be clear, this is only the CLIENT side. The server still needs to do the token bouncing etc. right?]

[ajmas]

Basically here the frontend is doing the whole authentication handshake, but the server shouldn’t be blindly accepting a token. It also needs to get the person’s profile. It may either be part of the token or may need to be fetched from the auth provider.

[mercmobily]

OK thank you!

[ajmas]

I haven't been watching this space much recently, due to other work. Its not dead, its just that the project is currently stable and unless there are serious breakages or wishes for improvements, then the project is just idling.

I did do a dependency check and anything runtime still looks fine. Maybe just some dev dependencies to improve?

BTW documentation and example are always welcome. Some recipes are already added to the wiki.