Why are there hashes in the DB for users generated via OAuth?


(Norandom) #1

Hey,

I took a look at the discourse-oauth2-basic plugin because we want to use it with Single Sign On.

I generated a couple of accounts via the oauth workflow / login method.

discourse=# select username_lower, auth_token from users;

username_lower  |            auth_token
-----------------+----------------------------------
 username       | cblalblalala

I took a look at the plugin code Add option for setting Authorization header 路 discourse/discourse-oauth2-basic@7584d84 路 GitHub but it does not seem to store the bearer tokens.

What are these auth_tokens?

Best,
Marius