authinator 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: d74ae2cc632fa497d66db160895f23b467ecf229
+  data.tar.gz: b94bb79f1f6a8a2bf4590f3bda38c67cee7cdf1c
+SHA512:
+  metadata.gz: cb6b27be793d25bee657b48791648ffe740a0efa52f0e07d7a704ffb4b51e0b6c4c775f36888c1cd130acb364eb14f2ebcc5ceb673e8d34f8fb85eedd4d452bb
+  data.tar.gz: a536e204bae88a4a8daf8492d83fd1fa22b1013d8812e0716e29e4a4a47603d019bbe5db6c0d6127cd9e44c0255fccaa7c958f74f6c4d4f3bcbd5f52a9aedc98

data/.gitignore

@@ -0,0 +1,14 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+*.bundle
+*.so
+*.o
+*.a
+mkmf.log

data/.rspec

@@ -0,0 +1,2 @@
+--color
+--format documentation

data/.rubocop.yml

@@ -0,0 +1,49 @@
+AllCops:
+  Exclude:
+    - 'authinator.gemspec'
+
+Metrics/BlockNesting:
+  Max: 2
+
+Metrics/LineLength:
+  AllowURI: true
+  Enabled: false
+
+Metrics/MethodLength:
+  CountComments: false
+  Max: 15
+
+Metrics/ParameterLists:
+  Max: 4
+  CountKeywordArgs: true
+
+Style/AccessModifierIndentation:
+  EnforcedStyle: outdent
+
+Style/CollectionMethods:
+  PreferredMethods:
+    map:      'collect'
+    reduce:   'inject'
+    find:     'detect'
+    find_all: 'select'
+
+Style/Documentation:
+  Enabled: false
+
+Style/DotPosition:
+  EnforcedStyle: trailing
+
+Style/DoubleNegation:
+  Enabled: false
+
+Style/EachWithObject:
+  Enabled: false
+
+Style/Encoding:
+  Enabled: false
+
+Style/Lambda:
+  Enabled: false
+
+Style/TrailingComma:
+  EnforcedStyleForMultiline: 'comma'

data/.ruby-gemset

@@ -0,0 +1 @@
+authinator

data/.ruby-version

@@ -0,0 +1 @@
+ruby-2.1.5

data/.travis.yml

@@ -0,0 +1,19 @@
+bundler_args: --without development
+env:
+  global:
+    - JRUBY_OPTS="$JRUBY_OPTS --debug"
+language: ruby
+rvm:
+  - 1.9.3
+  - 2.0.0
+  - 2.1
+  - jruby-19mode
+  - jruby-head
+  - rbx-2
+  - ruby-head
+matrix:
+  allow_failures:
+    - rvm: jruby-head
+    - rvm: ruby-head
+  fast_finish: true
+sudo: false

data/Gemfile

@@ -0,0 +1,18 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in authinator.gemspec
+gemspec
+
+gem 'rake'
+
+group :test do
+  gem 'coveralls'
+  gem 'json', platforms: [:jruby, :ruby_18, :ruby_19]
+  gem 'mime-types', '~> 1.25', platforms: [:jruby, :ruby_18]
+  gem 'rack-test'
+  gem 'rest-client', '~> 1.6.0', platforms: [:jruby, :ruby_18]
+  gem 'rspec', '~> 3.0.0'
+  gem 'rubocop', '>= 0.28', platforms: [:ruby_19, :ruby_20, :ruby_21]
+  gem 'simplecov', '>= 0.9'
+  gem 'webmock'
+end

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2014 Alexander Bradner
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,42 @@
+# Authinator
+[![Gem Version](http://img.shields.io/gem/v/authinator.svg)][gem]
+[![Build Status](http://img.shields.io/travis/abradner/authinator.svg)][travis]
+[![Dependency Status](http://img.shields.io/gemnasium/abradner/authinator.svg)][gemnasium]
+[![Code Climate](http://img.shields.io/codeclimate/github/abradner/authinator.svg)][codeclimate]
+[![Coverage Status](http://img.shields.io/coveralls/abradner/authinator.svg)][coveralls]
+
+[gem]: https://rubygems.org/gems/authinator
+[travis]: http://travis-ci.org/abradner/authinator
+[gemnasium]: https://gemnasium.com/abradner/authinator
+[codeclimate]: https://codeclimate.com/github/abradner/authinator
+[coveralls]: https://coveralls.io/r/abradner/authinator
+
+TODO: Write a gem description
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'authinator'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install authinator
+
+## Usage
+
+TODO: Write usage instructions here
+
+## Contributing
+
+1. Fork it ( https://github.com/abradner/authinator/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create a new Pull Request

data/Rakefile

@@ -0,0 +1,18 @@
+#!/usr/bin/env rake
+require 'bundler/gem_tasks'
+require 'rspec/core/rake_task'
+
+RSpec::Core::RakeTask.new
+
+task test: :spec
+
+begin
+  require 'rubocop/rake_task'
+  RuboCop::RakeTask.new
+rescue LoadError
+  task :rubocop do
+    $stderr.puts 'RuboCop is disabled'
+  end
+end
+
+task default: [:spec, :rubocop]

data/authinator.gemspec

@@ -0,0 +1,28 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'authinator/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = 'authinator'
+  spec.version       = Authinator::VERSION
+  spec.authors       = ['Alexander Bradner']
+  spec.email         = ['alex@bradner.net']
+  spec.summary       = 'Single-Sign-On for the front and rails backend of a Single-Page-App'
+  # spec.description   = ''
+  spec.homepage      = 'https://github.com/abradner/authinator'
+  spec.license       = 'MIT'
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ['lib']
+
+  spec.add_runtime_dependency 'oauth2', '~> 1.0'
+  spec.add_runtime_dependency 'doorkeeper',     '~> 2.0'
+
+  spec.add_development_dependency 'bundler', '~> 1.7'
+  spec.add_development_dependency 'rake', '~> 10.0'
+  spec.add_development_dependency 'rspec', '~> 3'
+  spec.add_development_dependency 'rubocop'
+end

data/lib/authinator.rb

@@ -0,0 +1,6 @@
+require 'authinator/version'
+require 'authinator/auth_code_exchanger'
+
+module Authinator
+  # Your code goes here...
+end

data/lib/authinator/auth_code_exchanger.rb

@@ -0,0 +1,100 @@
+# require 'omniauth/strategies/google_oauth2'
+# require 'omniauth-oauth2'
+require 'oauth2'
+
+# module Authinator
+class AuthCodeExchanger
+  VALID_PROVIDERS = [:stub, :google]
+  STUB_SAMPLE_TOKEN = {
+    token: 'ya29.token',
+    refresh_token: '1/refresh',
+    expires_in: 3600,
+  }
+
+  attr_reader :provider
+
+  def self.valid_providers
+    VALID_PROVIDERS
+  end
+
+  PROVIDER_HASHES = {
+    google: {
+      client_id: 'cl_id',
+      client_secret: 'cl_sec',
+      site: 'https://accounts.google.com',
+      token_url: '/o/oauth2/token',
+    },
+    stub: {
+      client_id: 'cl_id',
+      client_secret: 'cl_sec',
+      site: 'https://example.org',
+      token_url: '/extoken',
+    },
+  }
+
+  def initialize(provider, client_options = {})
+    unless VALID_PROVIDERS.include? provider
+      fail ArgumentError,
+           "Provider #{provider} not in supported parameter list:\n" <<
+             VALID_PROVIDERS.inspect
+    end
+
+    @provider = provider
+    build_provider_hash(client_options)
+  end
+
+  def site_token_url
+    @provider_hash[:site] + @provider_hash[:token_url]
+  end
+
+  def exchange(auth_code)
+    # auth_code = params[:code]
+    return if auth_code.nil? || auth_code.empty?
+
+    case @provider.to_sym
+    when :google
+      exchange_with_google(auth_code)
+    when :stub
+      exchange_with_stub(auth_code)
+    end
+  end
+
+private
+
+  def build_provider_hash(client_options)
+    @provider_hash = PROVIDER_HASHES[provider]
+    @provider_hash = client_options.delete(:client_id) if client_options[:client_id]
+    @provider_hash = client_options.delete(:client_secret) if client_options[:client_secret]
+  end
+
+  def exchange_with_google(code)
+    provider_hash = @provider_hash.dup
+
+    client_id = provider_hash.delete(:client_id)
+    client_secret = provider_hash.delete(:client_secret)
+    @client = OAuth2::Client.new(client_id, client_secret, provider_hash)
+
+    token = @client.auth_code.get_token(code)
+
+    # response = token.get('/api/resource', :params => { 'query_foo' => 'bar' })
+    # response.class.name
+    # => OAuth2::Response
+
+    token
+  end
+
+  def exchange_with_stub(_code)
+    @client = OAuth2::Client.new(
+        @provider_hash[:client_id],
+        @provider_hash[:client_secret],
+    )
+
+    OAuth2::AccessToken.new(
+        @client,
+        STUB_SAMPLE_TOKEN[:token],
+        refresh_token: STUB_SAMPLE_TOKEN[:refresh_token],
+        expires_in: STUB_SAMPLE_TOKEN[:expires_in],
+    )
+  end
+end
+# end

data/lib/authinator/version.rb

@@ -0,0 +1,3 @@
+module Authinator
+  VERSION = '0.0.1'
+end

data/spec/authinator/authinator_spec.rb

@@ -0,0 +1,89 @@
+require 'spec_helper'
+require 'json'
+
+describe AuthCodeExchanger do
+  before :all do
+    @token_hash = {
+      access_token: 'ya29.token',
+      refresh_token: '1/refresh',
+      expires_in: 3600,
+      token_type: 'Bearer',
+    }
+    @test_env = {
+      client_id: 'cl_id',
+      client_secret: 'cl_sec',
+      code: '4/code',
+      grant_type: 'authorization_code',
+    }
+
+    @req_headers = {
+      accept: '*/*',
+      content_type: 'application/x-www-form-urlencoded',
+      user_agent: 'Faraday v0.9.0',
+    }
+
+    @req_response = {
+      status: 200,
+      body: @token_hash.to_json,
+      headers: { content_type: 'application/json' },
+    }
+  end
+  it 'should correctly process a generic (stub) token' do
+    ace = AuthCodeExchanger.new(:stub)
+    stub_request(:post, ace.site_token_url).
+      with(body: @test_env,
+           headers: @req_headers).
+      to_return(@req_response)
+
+    result = ace.exchange(@test_env[:code])
+
+    expect(result.token).to eq @token_hash[:access_token]
+    expect(result.refresh_token).to eq @token_hash[:refresh_token]
+    expect(result.expires_in).to eq @token_hash[:expires_in]
+  end
+
+  it 'should return an AccessToken for each provider' do
+    klass = OAuth2::AccessToken
+
+    AuthCodeExchanger.valid_providers.each do |provider|
+      ace = AuthCodeExchanger.new(provider)
+      stub_request(:post, ace.site_token_url).
+        with(body: @test_env,
+             headers: @req_headers).
+        to_return(@req_response)
+
+      expect(ace.exchange(@test_env[:code])).to be_a klass
+    end
+  end
+
+  it 'should correctly process a google token' do
+    ace = AuthCodeExchanger.new(:google)
+    stub_request(:post, ace.site_token_url).
+      with(body: @test_env,
+           headers: @req_headers).
+      to_return(@req_response)
+
+    result = ace.exchange(@test_env[:code])
+
+    expect(result.token).to eq @token_hash[:access_token]
+    expect(result.refresh_token).to eq @token_hash[:refresh_token]
+    expect(result.expires_in).to eq @token_hash[:expires_in]
+  end
+
+  it 'should gracefully not allow unsupported providers' do
+    expect do
+      AuthCodeExchanger.new(:some_fake_provider)
+    end.to raise_error(ArgumentError)
+  end
+end
+
+describe 'ClientTokenIssuer' do
+  pending
+  it 'should accept valid-looking credentials from the client'
+  it 'should exchange client-provided credentials for auth codes'
+  it 'should return an error to the client if the credentials were invalid'
+  it 'should verify that the tokens belong to the provided email before returning them'
+  it 'should generate our own set of tokens for the client if the provided ones exchanged successfully'
+
+  it 'should all integrate to follow a standard flow to auth the api client'
+end

data/spec/spec_helper.rb

@@ -0,0 +1,31 @@
+require 'bundler/setup'
+Bundler.setup
+
+if RUBY_VERSION >= '1.9'
+  require 'simplecov'
+  require 'coveralls'
+
+  SimpleCov.formatters = [
+    SimpleCov::Formatter::HTMLFormatter,
+    Coveralls::SimpleCov::Formatter,
+  ]
+
+  SimpleCov.start do
+    minimum_coverage(76)
+  end
+end
+
+require 'rspec'
+require 'rack/test'
+require 'webmock/rspec'
+require 'authinator' # and any other gems you need
+
+RSpec.configure do |config|
+  config.expect_with :rspec do |c|
+    c.syntax = :expect
+  end
+  config.include Rack::Test::Methods
+  config.include WebMock::API
+
+  # some (optional) config here
+end

metadata

@@ -0,0 +1,146 @@
+--- !ruby/object:Gem::Specification
+name: authinator
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Alexander Bradner
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-12-21 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: oauth2
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: doorkeeper
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: 
+email:
+- alex@bradner.net
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- ".rubocop.yml"
+- ".ruby-gemset"
+- ".ruby-version"
+- ".travis.yml"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- authinator.gemspec
+- lib/authinator.rb
+- lib/authinator/auth_code_exchanger.rb
+- lib/authinator/version.rb
+- spec/authinator/authinator_spec.rb
+- spec/spec_helper.rb
+homepage: https://github.com/abradner/authinator
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.3
+signing_key: 
+specification_version: 4
+summary: Single-Sign-On for the front and rails backend of a Single-Page-App
+test_files:
+- spec/authinator/authinator_spec.rb
+- spec/spec_helper.rb