Project

onfido

0.06
A long-lived project that still receives updates
onfidoonfido/onfido-rubyHomepageDocumentationSource CodeWiki
A thin wrapper for Onfido's API. This gem only supports v3 of the Onfido API. Refer to Onfido's API documentation for details of the expected requests and responses.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
1,577,180
Stars
7
Forks
17
Watchers
18
 Releases
Current version
2.9.0
Total releases
41
First release
2015-04-11
Latest release
2023-11-23
 Pull Requests
Open Pull Requests
1
Closed Pull Requests
2
Merged Pull Requests
34
Pull Request Acceptance Rate
91%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2022-02-17
Reverse Dependencies
0

 Dependencies

Development

rspec
~> 3.1
rspec-its
~> 1.2
rubocop
~> 1.11
sinatra
~> 1.4
webmock
~> 3.0

Runtime

rack
>= 1.6.0
rest-client
~> 2.0
 Project Readme

Onfido

The official Ruby library for integrating with the Onfido API.

Gem Version Build Status

Documentation can be found at https://documentation.onfido.com

This version uses Onfido API v3.6 and is compatible with Ruby 2.4 onwards. Refer to our API versioning guide for details of which client library versions use which versions of the API.

Installation

Add this line to your application's Gemfile:

gem 'onfido', '~> 2.0.1'

Getting started

Configure with your API token and region:

onfido = Onfido::API.new(
  api_key: ENV['ONFIDO_API_KEY'],
  # Supports :eu, :us and :ca. Previously defaulted to :eu.
  region: :eu
)

All resources share the same interface when making API calls. Use .create to create a resource, .find to find one, and .all to fetch all resources.

For example, to create an applicant:

onfido.applicant.create(
  first_name: 'Test',
  last_name: 'Applicant'
)

Documentation and code examples can be found at https://documentation.onfido.com

Error Handling

There are 3 classes of errors raised by the library, all of which subclass Onfido::OnfidoError:

  • Onfido::RequestError is raised whenever Onfido returns a 4xx response
  • Onfido::ServerError is raised whenever Onfido returns a 5xx response
  • Onfido::ConnectionError is raised whenever a network error occurs (e.g., a timeout)

All 3 error classes provide the response_code, response_body, json_body, type and fields of the error (although for Onfido::ServerError and Onfido::ConnectionError the last 3 are likely to be nil).

def create_applicant
  onfido.applicant.create(params)
rescue Onfido::RequestError => e
  e.type          # => 'validation_error'
  e.fields        # => { "email": { "messages": ["invalid format"] } }
  e.response_code # => '422'
end

Other configuration

Optional configuration options with their defaults:

onfido = Onfido::API.new(
  # ...
  open_timeout: 10,
  read_timeout: 30
)

Verifying webhooks

Each webhook endpoint has a secret token, generated automatically and exposed in the API. When sending a request, Onfido includes a signature computed using the request body and this token in the X-SHA2-Signature header.

You should compare this provided signature to one you generate yourself with the token to verify that a webhook is a genuine request from Onfido.

if Onfido::Webhook.valid?(request.raw_post,
                          request.headers["X-SHA2-Signature"],
                          ENV['ONFIDO_WEBHOOK_TOKEN'])
  process_webhook
else
  render status: 498, text: "498 Token expired/invalid"
end

Read more at https://developers.onfido.com/guide/manual-webhook-signature-verification#webhook-security

Contributing

  1. Fork it ( https://github.com/onfido/onfido-ruby/fork )
  2. Create your feature branch (git checkout -b my-new-feature)
  3. Commit your changes (git commit -am 'Add some feature')
  4. Push to the branch (git push origin my-new-feature)
  5. Create a new Pull Request

More documentation

More documentation and code examples can be found at https://documentation.onfido.com