Question 1

How to set up Google OAuth2 with Devise in Rails?

Accepted Answer

Follow the README's Devise section: add the gem to your Gemfile, configure omniauth in devise.rb, define routes, create a callbacks controller, and implement a user model method to handle the auth hash. It provides step-by-step code examples.

Question 2

omniauth-google-oauth2 vs omniauth-google: which one should I use?

Accepted Answer

omniauth-google-oauth2 is the maintained, up-to-date gem for Google OAuth2, while omniauth-google might be deprecated or less feature-rich. Check the gem versions and community support; this gem is recommended for current projects due to its active development and Google API compliance.

Question 3

How to handle multiple client IDs for web and mobile with this gem?

Accepted Answer

Use the multi-platform authentication setup in the Devise section: register multiple omniauth middlewares with different names and client IDs in devise.rb, then add corresponding actions in the callbacks controller. It supports web, Android, and iOS without conflicts.

Question 4

Why am I getting a redirect_uri_mismatch error in omniauth-google-oauth2?

Accepted Answer

This often occurs due to incorrect redirect_uri configuration, especially with mobile clients or hybrid flows. Ensure the redirect_uri matches Google Console settings, and for mobile, send an empty string as noted in the README's mobile client notes.

Question 5

How to implement the One-time Code Flow with omniauth-google-oauth2?

Accepted Answer

Set provider_ignores_state to true, add custom JavaScript to handle client-side authentication and POST the code to the callback, and handle server-side validation. The README includes a JavaScript example and explains the flow steps.

Question 6

What scopes are needed for Google authentication with this gem?

Accepted Answer

At least one of 'email' or 'profile' scopes is required by Google. You can override defaults with a custom scope list, but always include one of these; other scopes like YouTube or Docs need full URLs or prefixes as detailed in the Configuration section.

omniauth-google-oauth2

What is omniauth-google-oauth2?

Overview

Use Cases

Best For

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions