Skip to content

icoretech/omniauth-box2

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

7 Commits
.github/workflows
.github/workflows
Β 
Β 
lib
lib
Β 
Β 
test
test
Β 
Β 
.gitignore
.gitignore
Β 
Β 
.rubocop.yml
.rubocop.yml
Β 
Β 
Gemfile
Gemfile
Β 
Β 
LICENSE.txt
LICENSE.txt
Β 
Β 
README.md
README.md
Β 
Β 
Rakefile
Rakefile
Β 
Β 
omniauth-box2.gemspec
omniauth-box2.gemspec
Β 
Β 

Repository files navigation

OmniAuth Box2 Strategy

Test Gem Version

This gem provides an OmniAuth strategy for Box OAuth2.

Installation

Add this line to your application's Gemfile:

gem 'omniauth-box2'

Then run:

bundle install

Usage

Rails.application.config.middleware.use OmniAuth::Builder do
  provider :box, ENV.fetch('BOX_CLIENT_ID'), ENV.fetch('BOX_CLIENT_SECRET')
end

Provider App Setup

  • Box developer console: https://developer.box.com/
  • Register callback URL (example): https://your-app.example.com/auth/box/callback

Options

  • callback_url
  • Request-phase query options can be passed directly to /auth/box when supported by Box OAuth endpoints.

Auth Hash

Example payload from request.env['omniauth.auth'] (real flow shape, anonymized):

{
  "uid": "123456789",
  "info": {
    "name": "Sample User",
    "email": "sample@example.test"
  },
  "credentials": {
    "token": "sample-access-token",
    "refresh_token": "sample-refresh-token",
    "expires": false,
    "scope": "root_readonly"
  },
  "extra": {
    "raw_info": {
      "type": "user",
      "id": "123456789",
      "name": "Sample User",
      "login": "sample@example.test",
      "created_at": "2012-05-09T09:12:30-07:00",
      "modified_at": "2026-03-04T19:21:50-08:00",
      "language": "en",
      "timezone": "Europe/Amsterdam",
      "space_amount": 999999999999999,
      "space_used": 74112195069,
      "max_upload_size": 53687091200,
      "status": "active",
      "job_title": "CEO",
      "phone": "+390000000000",
      "address": "",
      "avatar_url": "https://example.app.box.com/api/avatar/large/123456789",
      "notification_email": null
    }
  }
}

Notes:

  • uid is mapped from raw_info.id (as string)
  • info.name is mapped from raw_info.name
  • info.email is mapped from raw_info.login
  • credentials includes token, plus refresh_token when provided by Box
  • extra.raw_info is the full users/me response

Provider Endpoints

The strategy uses current Box OAuth and API endpoints:

  • Authorize URL: https://account.box.com/api/oauth2/authorize
  • Token URL: https://api.box.com/oauth2/token
  • User info URL: https://api.box.com/2.0/users/me

Development

bundle install
bundle exec rake lint
bundle exec rake test_unit
bundle exec rake test_rails_integration

Test Structure

  • test/omniauth_box2_test.rb: strategy/unit behavior
  • test/rails_integration_test.rb: full Rack/Rails request+callback flow
  • test/test_helper.rb: shared test bootstrap

Compatibility

  • Ruby: >= 3.2 (tested on 3.2, 3.3, 3.4, 4.0)
  • omniauth-oauth2: >= 1.8, < 2.0
  • Rails integration lanes: ~> 7.1.0, ~> 7.2.0, ~> 8.0.0, ~> 8.1.0

Release

Tag releases as vX.Y.Z; GitHub Actions publishes the gem to RubyGems.

License

MIT License. See LICENSE.txt.

About

πŸ”Œ OmniAuth strategy for Box OAuth2 authentication.

rubygems.org/gems/omniauth-box2

Topics

ruby rails gem omniauth oauth2 authentication box

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

4 tags

Contributors

Languages