fbauth is a Pluggable Facebook Authentication application for TurboGears2.
It aims at making easy to implement authentication and registration with FaceBook Connect in any TurboGears2 application.
fbauth can be installed both from pypi or from bitbucket:
easy_install tgapp-fbauth
should just work for most of the users
In your application config/app_cfg.py import plug:
from tgext.pluggable import plug
Then at the end of the file call plug with fbauth:
plug(base_config, 'fbauth')
You will be able to add facebook login, registration and connect buttons using the helpers provided by fbauth.
Keep in mind that facebook connect won't work correctly with applications that are not running on port 80
When using FBAuth users will have a new related entity called fbauth.
Accessing user.fbauth it is possible to access the user user.fbauth.facebook_id
and user.fbauth.profile_picture.
fbauth provides a bunch of helpers which will automatically generate the buttons and the javascript required to let your users log into your application using FaceBook Connect:
- h.fbauth.login_button(appid, text='Login with Facebook', scope=None, remember='', size='medium')
Places a login button. Login permits to log with an user that has already been connected with a facebook id. To connect an user to a facebook id, registration or connect can be used.
The
appidparameter has to be the id of your application, ifNoneis provided the FB.init call will be skipped so that FB can be manually initialized.The
textparameter is the text to show inside the button.The
scopeparameter is the permissions that the application will ask to facebook. By default those are only user data and email.The
rememberparameter can be used to log the user with an expiration date instead of using a session cookie, so that the session can last longer than the browser tab life.The
sizeparameter can be used to choose size of facebook login button. You can use : small, medium, large or xlarge.
- h.fbauth.login_button_custom(appid, text='Login with Facebook', scope=None, remember='', img_btn='')
Places a login button with custom image. Login permits to log with an user that has already been connected with a facebook id. To connect an user to a facebook id, registration or connect can be used.
The
appidparameter has to be the id of your application, ifNoneis provided the FB.init call will be skipped so that FB can be manually initialized.The
textparameter is the text to show inside the button.The
scopeparameter is the permissions that the application will ask to facebook. By default those are only user data and email.The
rememberparameter can be used to log the user with an expiration date instead of using a session cookie, so that the session can last longer than the browser tab life.The
img_btnparameter specific custom url image button.
- h.fbauth.register_button(appid, text='Register with Facebook', scope=None, remember='', size='medium')
Places a registration button. Registration automatically creates a new user from its facebook data and logs him in. For registration to work it is required that any additional data apart the data which is already required by default in the quickstart User model can be nullable. A way to identify newly registered users and ask for missing data is provided If an user for the obtained token already exists that user is logged in instead of creating a new user. This permits to implement 1 click registration and login. Newly created users will have both
user.fbauth.registeredanduser.fbauth.just_connectedflags atTrueso that it is possible to identify when users have just registered and ask them more informations that facebook didn't provide. It is suggested to set thejust_connectedflag toFalseon post_login handler to correctly track users that have just registered for real.The
appidparameter has to be the id of your application, ifNoneis provided the FB.init call will be skipped so that FB can be manually initialized.The
textparameter is the text to show inside the button.The
scopeparameter is the permissions that the application will ask to facebook. By default those are only user data and email.The
rememberparameter can be used to log the user with an expiration date instead of using a session cookie, so that the session can last longer than the browser tab life.The
sizeparameter can be used to choose size of facebook register button. You can use : small, medium, large or xlarge.
- h.fbauth.register_button_custom(appid, text='Register with Facebook', scope=None, remember='', img_btn='')
Places a registration button with custom image. Registration automatically creates a new user from its facebook data and logs him in. For registration to work it is required that any additional data apart the data which is already required by default in the quickstart User model can be nullable. A way to identify newly registered users and ask for missing data is provided If an user for the obtained token already exists that user is logged in instead of creating a new user. This permits to implement 1 click registration and login. Newly created users will have both
user.fbauth.registeredanduser.fbauth.just_connectedflags atTrueso that it is possible to identify when users have just registered and ask them more informations that facebook didn't provide. It is suggested to set thejust_connectedflag toFalseon post_login handler to correctly track users that have just registered for real.The
appidparameter has to be the id of your application, ifNoneis provided the FB.init call will be skipped so that FB can be manually initialized.The
textparameter is the text to show inside the button.The
scopeparameter is the permissions that the application will ask to facebook. By default those are only user data and email.The
rememberparameter can be used to log the user with an expiration date instead of using a session cookie, so that the session can last longer than the browser tab life.The
img_btnparameter specific custom url image button.
- h.fbauth.connect_button(appid, text='Connect your Facebook account', scope=None, size='medium')
Places a connect account button. Connect permits to associate an already existing user to a facebook account so that it can later log with its facebook account. Newly connected users will have
user.fbauth.just_connectedflag atTruewhile theuser.fbauth.registeredflag will beFalseto differentiate users that have been connected from users that have registered with facebook.The
appidparameter has to be the id of your application, ifNoneis provided the FB.init call will be skipped so that FB can be manually initialized.The
textparameter is the text to show inside the button.The
scopeparameter is the permissions that the application will ask to facebook. By default those are only user data and email.The
sizeparameter can be used to choose size of facebook login button. You can use : small, medium, large or xlarge.
- h.fbauth.connect_button_custom(appid, text='Connect your Facebook account', scope=None, img_btn='')
Places a connect account button. Connect permits to associate an already existing user to a facebook account so that it can later log with its facebook account. Newly connected users will have
user.fbauth.just_connectedflag atTruewhile theuser.fbauth.registeredflag will beFalseto differentiate users that have been connected from users that have registered with facebook.The
appidparameter has to be the id of your application, ifNoneis provided the FB.init call will be skipped so that FB can be manually initialized.The
textparameter is the text to show inside the button.The
scopeparameter is the permissions that the application will ask to facebook. By default those are only user data and email.The
img_btnparameter specific custom url image button.
FBAuth exposes some hooks to alter its behavior, the hooks that can be used with TurboGears2 register_hook are:
- fbauth.on_registration(facebook_data, user) -> Runs when it is registering a new user from facebook login, permits to add additional data to the user.
- fbauth.on_login(facebook_data, user) -> Runs when it is logging in from facebook, permits to update/add additional data to the user.
FBAuth provides a bunch of utility methods that make easy to work with facebook:
- fbauth.lib.has_fbtoken_expired(user)
- Checks if the facebook token for the given users has expired or not, this can be
useful when calling facebook API. The facebook token itself can be retrieved from
user.fbauth.access_token
Mysql charset to use to be compliant with UTF8 is utf8mb4. If you already have an installation with latin-1 or utf8 as collation and you want to be compliant with the UTF8 standard you have to convert your database in order to use utf8mb4 as collation, and add ?charset=utf8mb4 to your connection string. And you have to launch the migration included from version 0.3.4 with command:
$ gearbox migrate-pluggable fbauth upgrade
and to rollback:
$ gearbox migrate-pluggable fbauth downgrade
For more info see https://github.com/TurboGears/tgext.pluggable#using-migrations