access_token_agent 3.1.1 → 3.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/.rspec +1 -0
- data/CHANGELOG.md +15 -0
- data/README.md +6 -3
- data/access_token_agent.gemspec +5 -1
- data/bin/console +11 -0
- data/lib/access_token_agent.rb +1 -0
- data/lib/access_token_agent/connector.rb +25 -9
- data/lib/access_token_agent/error.rb +3 -1
- data/lib/access_token_agent/missing_access_token.rb +7 -0
- data/lib/access_token_agent/token.rb +15 -4
- data/lib/access_token_agent/unsupported_token_type_error.rb +7 -0
- data/lib/access_token_agent/version.rb +3 -0
- metadata +6 -2
- data/lib/access_token_agent/invalid_token_type_error.rb +0 -5
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b05e9bb8df48a419db6aa15bf18bca718638a4e8
|
|
4
|
+
data.tar.gz: 405ed7dfca477e3763e8acd6fc12b394813e0ffb
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 19b6c44ddedcfdd3a7dc8a7c67dc0ab73d81c7cf11129c6bb2ccc2bf897d0cd15dee6400bf82fae597cbb49cb6b602a39ed5f56064a929ff1970e253231f7fcf
|
|
7
|
+
data.tar.gz: 90dab0e2595761e707ca502ec1b0b3489cbf8e7d96fdf21a6ca8952715856db351acfd29235b281567aa298d786eefc105fe751555042d77990bca76f5e3899b
|
data/.rspec
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
--color
|
data/CHANGELOG.md
CHANGED
|
@@ -1,3 +1,18 @@
|
|
|
1
|
+
## master
|
|
2
|
+
|
|
3
|
+
*no unreleased changes*
|
|
4
|
+
|
|
5
|
+
## 3.2.0
|
|
6
|
+
|
|
7
|
+
- Add `http_auth_header` method to the connector, since this is the most
|
|
8
|
+
common use case
|
|
9
|
+
- Deprecate the `authenticate` method in favor of the new `token` method
|
|
10
|
+
- Allow to configure from which path to get the access token
|
|
11
|
+
- Put all errors into the AccessTokenAgent namespace
|
|
12
|
+
- Actually return a token when faking auth
|
|
13
|
+
- Rename error raised for unsupported token types
|
|
14
|
+
- Ensure that access token response carries an access token
|
|
15
|
+
|
|
1
16
|
## 3.1.1
|
|
2
17
|
|
|
3
18
|
- Fix broken gem release (missing files)
|
data/README.md
CHANGED
|
@@ -19,21 +19,24 @@ And then execute:
|
|
|
19
19
|
|
|
20
20
|
$ bundle
|
|
21
21
|
|
|
22
|
-
## Configuration
|
|
22
|
+
## Basic Configuration
|
|
23
23
|
|
|
24
24
|
Create an instance of AccessTokenAgent::Connector with the desired
|
|
25
25
|
configuration and use that instance to authenticate.
|
|
26
26
|
|
|
27
|
-
Needs the following parameters:
|
|
27
|
+
Needs the following parameters to instantiate:
|
|
28
28
|
|
|
29
29
|
* `host` - the server address where the auth provider is running.
|
|
30
30
|
* `client_id` - the client_id of the application using this gem.
|
|
31
31
|
* `client_secret` - the client_secret of the application using this gem.
|
|
32
|
+
* `access_token_path` - Allows to customize the HTTP path where the
|
|
33
|
+
access token needs to be requested.
|
|
34
|
+
**Default:** `/oauth/token`
|
|
32
35
|
|
|
33
36
|
Optional parameters:
|
|
34
37
|
|
|
35
38
|
* `fake_auth` - if true, do not connect to the auth service and return
|
|
36
|
-
|
|
39
|
+
a faked access token.
|
|
37
40
|
|
|
38
41
|
### Example
|
|
39
42
|
|
data/access_token_agent.gemspec
CHANGED
|
@@ -1,8 +1,12 @@
|
|
|
1
1
|
# coding: utf-8
|
|
2
2
|
|
|
3
|
+
lib = File.expand_path('../lib', __FILE__)
|
|
4
|
+
$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
|
|
5
|
+
require 'access_token_agent/version'
|
|
6
|
+
|
|
3
7
|
Gem::Specification.new do |s|
|
|
4
8
|
s.name = 'access_token_agent'
|
|
5
|
-
s.version =
|
|
9
|
+
s.version = AccessTokenAgent::VERSION
|
|
6
10
|
s.date = '2016-04-08'
|
|
7
11
|
s.summary = 'Handles authentication against an OAuth2 provider'
|
|
8
12
|
s.homepage = 'https://github.com/kaeuferportal/access_token_agent'
|
data/bin/console
ADDED
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
#!/usr/bin/env ruby
|
|
2
|
+
|
|
3
|
+
require 'bundler/setup'
|
|
4
|
+
require 'access_token_agent'
|
|
5
|
+
|
|
6
|
+
# You can add fixtures and/or initialization code here to make experimenting
|
|
7
|
+
# with your gem easier. You can also use a different console, if you like.
|
|
8
|
+
|
|
9
|
+
# (If you use this, don't forget to add pry to your Gemfile!)
|
|
10
|
+
require 'pry'
|
|
11
|
+
Pry.start
|
data/lib/access_token_agent.rb
CHANGED
|
@@ -2,28 +2,44 @@ require 'net/http'
|
|
|
2
2
|
|
|
3
3
|
module AccessTokenAgent
|
|
4
4
|
class Connector
|
|
5
|
+
FAKE_TOKEN = 'FakeAuthToken'.freeze
|
|
6
|
+
|
|
5
7
|
def initialize(host:,
|
|
6
8
|
client_id:,
|
|
7
9
|
client_secret:,
|
|
8
|
-
fake_auth: false
|
|
10
|
+
fake_auth: false,
|
|
11
|
+
access_token_path: '/oauth/token')
|
|
9
12
|
@host = host
|
|
10
13
|
@client_id = client_id
|
|
11
14
|
@client_secret = client_secret
|
|
12
15
|
@fake_auth = fake_auth
|
|
16
|
+
@access_token_path = access_token_path
|
|
13
17
|
end
|
|
14
18
|
|
|
15
|
-
def
|
|
16
|
-
|
|
17
|
-
|
|
19
|
+
def http_auth_header
|
|
20
|
+
{ Authorization: "Bearer #{token}" }
|
|
21
|
+
end
|
|
22
|
+
|
|
23
|
+
def token
|
|
24
|
+
return FAKE_TOKEN if @fake_auth
|
|
25
|
+
@known_token = fetch_token unless @known_token && @known_token.valid?
|
|
26
|
+
|
|
18
27
|
@known_token.value
|
|
19
28
|
end
|
|
20
29
|
|
|
30
|
+
def authenticate
|
|
31
|
+
warn '[DEPRECATION] `authenticate` is deprecated. Use `token` instead.'
|
|
32
|
+
token
|
|
33
|
+
end
|
|
34
|
+
|
|
35
|
+
private
|
|
36
|
+
|
|
21
37
|
def fetch_token
|
|
22
|
-
|
|
38
|
+
Token.new(fetch_token_hash)
|
|
23
39
|
end
|
|
24
40
|
|
|
25
|
-
def
|
|
26
|
-
response =
|
|
41
|
+
def fetch_token_hash
|
|
42
|
+
response = perform_request
|
|
27
43
|
case response.code
|
|
28
44
|
when '200' then JSON.parse(response.body)
|
|
29
45
|
when '401' then raise UnauthorizedError
|
|
@@ -34,7 +50,7 @@ module AccessTokenAgent
|
|
|
34
50
|
raise ConnectionError
|
|
35
51
|
end
|
|
36
52
|
|
|
37
|
-
def
|
|
53
|
+
def perform_request
|
|
38
54
|
request = Net::HTTP::Post.new(auth_uri)
|
|
39
55
|
request.basic_auth @client_id, @client_secret
|
|
40
56
|
request.form_data = { 'grant_type' => 'client_credentials' }
|
|
@@ -47,7 +63,7 @@ module AccessTokenAgent
|
|
|
47
63
|
end
|
|
48
64
|
|
|
49
65
|
def auth_uri
|
|
50
|
-
@auth_uri ||= URI("#{@host}
|
|
66
|
+
@auth_uri ||= URI("#{@host}#{@access_token_path}")
|
|
51
67
|
end
|
|
52
68
|
end
|
|
53
69
|
end
|
|
@@ -1,4 +1,5 @@
|
|
|
1
|
-
require 'access_token_agent/
|
|
1
|
+
require 'access_token_agent/missing_access_token'
|
|
2
|
+
require 'access_token_agent/unsupported_token_type_error'
|
|
2
3
|
|
|
3
4
|
module AccessTokenAgent
|
|
4
5
|
class Token
|
|
@@ -7,9 +8,8 @@ module AccessTokenAgent
|
|
|
7
8
|
EXPIRY_MARGIN = 60 # seconds
|
|
8
9
|
|
|
9
10
|
def initialize(auth_response)
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
end
|
|
11
|
+
validate_response(auth_response)
|
|
12
|
+
|
|
13
13
|
@value = auth_response['access_token']
|
|
14
14
|
@expires_at = Time.now + auth_response['expires_in']
|
|
15
15
|
end
|
|
@@ -17,5 +17,16 @@ module AccessTokenAgent
|
|
|
17
17
|
def valid?
|
|
18
18
|
@expires_at - EXPIRY_MARGIN > Time.now
|
|
19
19
|
end
|
|
20
|
+
|
|
21
|
+
private
|
|
22
|
+
|
|
23
|
+
def validate_response(auth_response)
|
|
24
|
+
unless auth_response['token_type'] == 'bearer'
|
|
25
|
+
raise UnsupportedTokenTypeError, auth_response['token_type']
|
|
26
|
+
end
|
|
27
|
+
|
|
28
|
+
token = auth_response['access_token']
|
|
29
|
+
raise MissingAccessToken if token.nil? || token.empty?
|
|
30
|
+
end
|
|
20
31
|
end
|
|
21
32
|
end
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: access_token_agent
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 3.
|
|
4
|
+
version: 3.2.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Beko Käuferportal GmbH
|
|
@@ -115,6 +115,7 @@ extensions: []
|
|
|
115
115
|
extra_rdoc_files: []
|
|
116
116
|
files:
|
|
117
117
|
- ".gitignore"
|
|
118
|
+
- ".rspec"
|
|
118
119
|
- ".rubocop.yml"
|
|
119
120
|
- ".ruby-version"
|
|
120
121
|
- ".travis.yml"
|
|
@@ -123,13 +124,16 @@ files:
|
|
|
123
124
|
- LICENSE.md
|
|
124
125
|
- README.md
|
|
125
126
|
- access_token_agent.gemspec
|
|
127
|
+
- bin/console
|
|
126
128
|
- lib/access_token_agent.rb
|
|
127
129
|
- lib/access_token_agent/connection_error.rb
|
|
128
130
|
- lib/access_token_agent/connector.rb
|
|
129
131
|
- lib/access_token_agent/error.rb
|
|
130
|
-
- lib/access_token_agent/
|
|
132
|
+
- lib/access_token_agent/missing_access_token.rb
|
|
131
133
|
- lib/access_token_agent/token.rb
|
|
132
134
|
- lib/access_token_agent/unauthorized_error.rb
|
|
135
|
+
- lib/access_token_agent/unsupported_token_type_error.rb
|
|
136
|
+
- lib/access_token_agent/version.rb
|
|
133
137
|
homepage: https://github.com/kaeuferportal/access_token_agent
|
|
134
138
|
licenses:
|
|
135
139
|
- MIT
|