Rails admin with Sorcery

2019-05-07 00:54发布

问题:

I'm trying to install the Rails Admin Gem using Sorcery for authentication instead of Devise.

Rails admin does provide a hook that you can use to attach your own authentication method. Here is the example they provide in their docs (using warden):

config.authenticate_with do
  warden.authenticate! :scope => :admin
end
config.current_user_method { current_admin }

I'm guessing that inside the block I need to reference the before_filter that Sorcery uses to authenticate users, which would be require_login.

However, when I try that and I try to visit /admin when logged out, I get a routing error:

No route matches {:action=>"new", :controller=>"sessions"}

This probably happens because I am being redirected within the engine rather than in the main app.

How can I set this up correctly?

回答1:

# config/initializers/rails_admin.rb
RailsAdmin.config do |config|
  config.authenticate_with do
    # Use sorcery's before filter to auth users
    require_login
  end
end

# app/controllers/application_controller.rb
class ApplicationController
  # Overwrite the method sorcery calls when it
  # detects a non-authenticated request.
  def not_authenticated
    # Make sure that we reference the route from the main app.
    redirect_to main_app.login_path
  end
end

#config/initializers/rails_admin.rb
RailsAdmin.config do |config|
  ...
  config.parent_controller = 'ApplicationController'
end


回答2:

If you use Sorcery with Cancancan gem, you should also add config.current_user_method(&:current_user) in your config/initializers/rails_admin.rb file, or you'll get the error: You are not authorized.