I need to allow users to login to spree using a non-standard authentication service. Users in my community all have accounts on another 3d party service set up for us. That service provides a web-service that takes a login and password, and returns a userId if successful. As an admin I can then query for user profile information.
I've been imagining that when a user attempts to log in, I run their credentials against the remote service, and if successful, store the username and then retrieve the profile information and push that into the db (name, address, etc...). Is that the right approach? How would I even do that?