Secure a Rails API with Auth0

carlos.guisao · November 3, 2022, 4:48pm

Hey, thanks for sharing this amazing guide!

Three things to point out:

In Rails 6, if you put lib files under app/lib they are autoloaded, meaning you don’t have to load them manually in the ApplicationController.
Rails.application.config.x.auth0 was returning an empty hash in my case, so I had to do: Rails.application.config_for(:auth0)[:Key-I-Need]
I had some issues decoding the token, so for me on JWT.decode instead of iss: Rails.application.config.x.auth0.issuerUri, I used issuer: issuer,

Topic		Replies	Views
Building Secure APIs with Rails 6 and Auth0 Blog Discussions auth0 , rails-api	16	5544	May 31, 2022
Error using "Ruby On Rails API: Authentication" Get Help jwt , api	4	3037	August 20, 2020
Rails Authentication By Example Developer Hub ruby , authentication , rails	3	2610	April 28, 2023
Auth0_api_audience credential not being passed in Rails, yet things work Get Help	4	3313	January 23, 2020
Ruby on Rails API Authorization: Complete Developer Guide Developer Hub api , ruby , authorization , rails , rbac	2	1751	June 21, 2024