This is a sample application that demonstrates how to integrate with Tremendous for Platforms.
This section assumes that:
- you already have a Tremendous account
- you already have an API key
- you already have an OAuth application
- you completed the setup instructions below and the sample app is up and running
-
Create an organization by clicking the "New Organization" button on the root page
-
Fill in the form and click "Create", saving your new organization
-
Click "Set up on Tremendous", which will:
- Create a connected organization by making an API call to the connected_organizations endpoint
- Create a connected organization member by making an API call to the connected_organization_members endpoint
- If both calls were successful, you'll see the "Connected Org ID" and "Connected Org Member ID" fields populated on the "Tremendous Integration" section
-
Click "Open Tremendous flow for [Creator Name]" button to start the flow on Tremendous' side, which will:
- Make a call to the backend to retrieve a session URL from Tremendous
- The backend will make an API call to get a new session URL from Tremendous
- These URLs are temporary and should never be stored
- The backend will return the URL to the frontend, which will redirect the user to the session URL
This sample app shows how to listen for webhooks from Tremendous. These are handled by the WebhooksController and are expected to be received in the /webhooks path.
When creating your webhook in Tremendous, the url field should be set to https://[YOUR-HOSTNAME]/webhooks.
See the ngrok setup section for more details on how to make this sample app publicly accessible from your local machine.
The following sections describe the two webhooks supported by this sample app.
This webhook is triggered when your customer goes through the Tremendous for Platforms flow. When receiving it, the sample app will process the payload and update the organization with the Tremendous organization ID.
This webhook can also be used to inform your system that the end-user has completed the flow, and the organization is pending review by Tremendous.
This webhook is triggered once the organization is approved by Tremendous. If you want the OAuth integration to be seamless to the end-user, and not require any manual action to authorize your OAuth application by them, you should listen for this webhook. When receiving it, this app fetches the OAuth grant code from the payload. It then triggers the OAuth flow to retrieve the OAuth tokens (access and refresh).
To make it easier to manage the OAuth boilerplate, this sample app uses the oauth2 Ruby gem.
Tremendous supports OAuth 2.0 authentication, allowing you to securely make API calls on behalf of your customers.
You'll need to have both a OAuth access token and a refresh token for the organization. There are two ways to get these tokens:
- Listen to the
CONNECTED_ORGANIZATIONS.OAUTH.GRANTEDwebhook, and refer to the webhooks section for more details on how to handle it- this option will make the OAuth integration seamless to the end-user, and requires no further manual action
- If webhooks are not configured, once the organization is approved by Tremendous and the first time the end-user accesses the Tremendous for Platforms flow, the OAuth authorization flow will be triggered automatically
- when the end-user authorizes the OAuth application, they'll be redirected back to the platform, to the
return_uriconfigured when registering the OAuth application - please refer to the OAuth 2.0 docs for more details
- when the end-user authorizes the OAuth application, they'll be redirected back to the platform, to the
Once the OAuth flow is completed and you have the tokens, you can make API calls on behalf of the customer. This functionality is demonstrated via the "Make Tremendous OAuth API call" button (which becomes available once the OAuth flow is completed). Clicking it will trigger an API call using the OAuth tokens for that organization.
The example in the code uses the oauth2 Ruby gem to handle the OAuth boilerplate.
Please refer to the Tremendous API docs for more details on any other supported endpoints.
.
- Ruby 2.7+
- Bundler
- SQLite3
-
Install dependencies:
bundle install
-
Create database and run migrations:
bundle exec rake db:create bundle exec rake db:migrate
-
Configure your environment:
- Check
.env.exampleto see what environment variables are needed - Create your own
.env, using.env.examplefile as a base, and update the blank keys with the appropriate values for your environment
- Check
-
Start the server:
bundle exec rackup -
Visit http://localhost:9292 in your browser
- The application starts with the organizations page
- Click on the "New Organization" button to add a new organization and fill in the form
- Click "Set up on Tremendous" to create the appropriate setup on Tremendous; you only need to do this once per organization
- You'll then see a new button "Open Tremendous flow for X"; clicking it will start the flow on Tremendous's side
- Once your newly created organization is reviewed and approved by Tremendous, and the webhook has been processed, the "OAuth Status" will change to "Connected"
When testing the flow end-to-end, this application needs to be publicly accessible. Tremendous will redirect back to the platform from the Tremendous for Platforms flow, or when sending webhooks. This can be easily achieved by using a service like ngrok.
Just make sure to boot the app with:
RACK_ENV=production bundle exec rackup -o 0.0.0.0And then, on another terminal, start ngrok with:
ngrok http 9292You can then use the ngrok public URL whenever you need to set up anything on Tremendous pointing to this app:
- set
return_uriwhen registering the OAuth application tohttps://<your-ngrok-domain>/callback - set
urlwhen configuring the webhook tohttps://<your-ngrok-domain>/webhooks - set
TREMENDOUS_RETURN_URLin your.envfile tohttps://<your-ngrok-domain>/organizations/%{id}so that it's used as the return URL when setting up new session URLs