| CARVIEW |
Select Language
HTTP/2 200
date: Mon, 21 Jul 2025 18:49:45 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
x-robots-tag: none
etag: W/"f086d30b5fae3ff8bdfdd58151a6db0e"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=5KAlOW8ElQNCYADyfSJDGnBTY15Xk5AnctFBr0cYiLG7gKpHQcoEGC3tRHtYD3OM2goa4fHO2oibYueLZ29KbxdQTbKS%2Bc8f9uVdKvUzAhH3jcw%2BJHI%2BeUm7IhIS%2Fdl5GQZwb6zDRcQZTQpUOQ2knISBs%2BtuJqfQ81OyGNkpxOh2KUyVYGWVrSMbXmGyw8mSF4cXkLN6g%2BPr2glSLdfvaMLqU40j1xbwWwbNRiVi4CB3UItPu2SO1OyBMaO%2F%2F1mb2BABCkbaJAzWMLo9YSfacw%3D%3D--wZNNcEpomNQ%2FAlRC--%2Ff%2Bq%2FkOazEErmFkCVXV09A%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.1226268438.1753123785; Path=/; Domain=github.com; Expires=Tue, 21 Jul 2026 18:49:45 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Tue, 21 Jul 2026 18:49:45 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: D2B4:A54BF:25DDD3:2D0F8D:687E8BC9
Home · nov/rack-oauth2 Wiki · GitHub
Skip to content
Navigation Menu
{{ message }}
-
-
Notifications
You must be signed in to change notification settings - Fork 119
Home
nov edited this page Oct 24, 2014
·
11 revisions
Before starting OAuth2 server implementation, read RFC 6749 and RFC 6750.
This gem is designed for those who understand OAuth RFCs.
Using this gem, you need to define these things by yourself.
- Client Management Policy
- API Security Policy
- API Scope Design
- Token Design (lifetime, opaque string or JWT etc.)
- etc.
Call Rack::OAuth2.debug!, then you'll see all HTTP requests after that line in the log.
In Rails, you'll need to set Rack::OAuth2.logger = Rails.logger.
Rack::OAuth2.debug!
Rack::OAuth2.logger = Rails.logger
You can’t perform that action at this time.