casino 0.0.1
Sign up to get free protection for your applications and to get access to all the features.
- data/.gitignore +23 -0
- data/.powrc +4 -0
- data/.rspec +1 -0
- data/.rvmrc +48 -0
- data/.travis.yml +3 -0
- data/Gemfile +2 -0
- data/Gemfile.lock +129 -0
- data/LICENSE.txt +20 -0
- data/README.md +72 -0
- data/Rakefile +14 -0
- data/app/assets/images/rails.png +0 -0
- data/app/assets/javascripts/casino/index.js +15 -0
- data/app/assets/javascripts/casino/sessions.js.coffee +15 -0
- data/app/assets/stylesheets/casino/index.css.scss +28 -0
- data/app/controllers/casino/api/v1/tickets_controller.rb +48 -0
- data/app/controllers/casino/application_controller.rb +19 -0
- data/app/controllers/casino/proxy_tickets_controller.rb +9 -0
- data/app/controllers/casino/service_tickets_controller.rb +9 -0
- data/app/controllers/casino/sessions_controller.rb +23 -0
- data/app/helpers/application_helper.rb +2 -0
- data/app/helpers/casino/sessions_helper.rb +5 -0
- data/app/helpers/service_tickets_helper.rb +2 -0
- data/app/mailers/.gitkeep +0 -0
- data/app/models/.gitkeep +0 -0
- data/app/views/casino/service_tickets/validate.text.erb +2 -0
- data/app/views/casino/sessions/index.html.erb +43 -0
- data/app/views/casino/sessions/logout.html.erb +8 -0
- data/app/views/casino/sessions/new.html.erb +12 -0
- data/app/views/layouts/application.html.erb +18 -0
- data/casino.gemspec +29 -0
- data/config/.gitignore +3 -0
- data/config/initializers/inflections.rb +19 -0
- data/config/initializers/mime_types.rb +5 -0
- data/config/initializers/wrap_parameters.rb +9 -0
- data/config/initializers/yaml.rb +1 -0
- data/config/locales/en.yml +10 -0
- data/config/routes.rb +82 -0
- data/db/seeds.rb +7 -0
- data/doc/README_FOR_APP +2 -0
- data/lib/assets/.gitkeep +0 -0
- data/lib/casino.rb +6 -0
- data/lib/casino/engine.rb +7 -0
- data/lib/casino/listener.rb +25 -0
- data/lib/casino/listener/legacy_validator.rb +11 -0
- data/lib/casino/listener/login_credential_acceptor.rb +28 -0
- data/lib/casino/listener/login_credential_requestor.rb +16 -0
- data/lib/casino/listener/logout.rb +8 -0
- data/lib/casino/listener/proxy_ticket_provider.rb +11 -0
- data/lib/casino/listener/session_destroyer.rb +11 -0
- data/lib/casino/listener/session_overview.rb +11 -0
- data/lib/casino/listener/ticket_validator.rb +11 -0
- data/lib/casino/version.rb +3 -0
- data/lib/generators/casino/install_generator.rb +37 -0
- data/lib/generators/casino/templates/README +28 -0
- data/lib/generators/casino/templates/cas.yml +44 -0
- data/lib/generators/casino/templates/casino.css +3 -0
- data/lib/generators/casino/templates/casino.js +1 -0
- data/lib/generators/casino/templates/casino_core.rb +1 -0
- data/lib/generators/casino/templates/database.yml +25 -0
- data/lib/tasks/.gitkeep +0 -0
- data/lib/tasks/login_tickets.rake +7 -0
- data/lib/tasks/service_tickets.rake +9 -0
- data/log/.gitkeep +0 -0
- data/public/404.html +26 -0
- data/public/422.html +26 -0
- data/public/500.html +25 -0
- data/public/favicon.ico +0 -0
- data/public/robots.txt +5 -0
- data/script/rails +8 -0
- data/spec/controllers/api/v1/tickets_controller_spec.rb +100 -0
- data/spec/controllers/listener/legacy_validator_spec.rb +22 -0
- data/spec/controllers/listener/login_credential_acceptor_spec.rb +62 -0
- data/spec/controllers/listener/login_credential_requestor_spec.rb +39 -0
- data/spec/controllers/listener/logout_spec.rb +21 -0
- data/spec/controllers/listener/proxy_ticket_provider_spec.rb +22 -0
- data/spec/controllers/listener/session_destroyer_spec.rb +25 -0
- data/spec/controllers/listener/session_overview_spec.rb +26 -0
- data/spec/controllers/listener/ticket_validator_spec.rb +22 -0
- data/spec/controllers/proxy_tickets_controller_spec.rb +25 -0
- data/spec/controllers/service_tickets_controller_spec.rb +25 -0
- data/spec/controllers/sessions_controller_spec.rb +52 -0
- data/spec/dummy/Rakefile +7 -0
- data/spec/dummy/app/assets/javascripts/application.js +16 -0
- data/spec/dummy/app/assets/stylesheets/application.css +14 -0
- data/spec/dummy/app/controllers/application_controller.rb +3 -0
- data/spec/dummy/app/helpers/application_helper.rb +2 -0
- data/spec/dummy/app/mailers/.gitkeep +0 -0
- data/spec/dummy/app/models/.gitkeep +0 -0
- data/spec/dummy/app/views/layouts/application.html.erb +14 -0
- data/spec/dummy/config.ru +4 -0
- data/spec/dummy/config/application.rb +59 -0
- data/spec/dummy/config/boot.rb +10 -0
- data/spec/dummy/config/cas.yml +29 -0
- data/spec/dummy/config/database.yml +25 -0
- data/spec/dummy/config/environment.rb +5 -0
- data/spec/dummy/config/environments/development.rb +37 -0
- data/spec/dummy/config/environments/production.rb +67 -0
- data/spec/dummy/config/environments/test.rb +37 -0
- data/spec/dummy/config/initializers/backtrace_silencers.rb +7 -0
- data/spec/dummy/config/initializers/casino_core.rb +1 -0
- data/spec/dummy/config/initializers/inflections.rb +15 -0
- data/spec/dummy/config/initializers/mime_types.rb +5 -0
- data/spec/dummy/config/initializers/secret_token.rb +7 -0
- data/spec/dummy/config/initializers/session_store.rb +8 -0
- data/spec/dummy/config/initializers/wrap_parameters.rb +14 -0
- data/spec/dummy/config/locales/en.yml +5 -0
- data/spec/dummy/config/routes.rb +4 -0
- data/spec/dummy/db/.gitkeep +0 -0
- data/spec/dummy/lib/assets/.gitkeep +0 -0
- data/spec/dummy/log/.gitkeep +0 -0
- data/spec/dummy/public/404.html +26 -0
- data/spec/dummy/public/422.html +26 -0
- data/spec/dummy/public/500.html +25 -0
- data/spec/dummy/public/favicon.ico +0 -0
- data/spec/dummy/script/rails +6 -0
- data/spec/spec_helper.rb +38 -0
- data/spec/support/.gitkeep +0 -0
- data/spec/support/sign_in.rb +11 -0
- data/vendor/assets/javascripts/.gitkeep +0 -0
- data/vendor/assets/stylesheets/.gitkeep +0 -0
- data/vendor/plugins/.gitkeep +0 -0
- metadata +351 -0
@@ -0,0 +1,19 @@
|
|
1
|
+
require 'casino'
|
2
|
+
require 'casino_core'
|
3
|
+
|
4
|
+
class CASino::ApplicationController < ::ApplicationController
|
5
|
+
layout 'application'
|
6
|
+
|
7
|
+
include ApplicationHelper
|
8
|
+
|
9
|
+
def cookies
|
10
|
+
super
|
11
|
+
end
|
12
|
+
|
13
|
+
protected
|
14
|
+
def processor(processor_name, listener_name = nil)
|
15
|
+
listener_name ||= processor_name
|
16
|
+
listener = CASino::Listener.const_get(listener_name).new(self)
|
17
|
+
@processor = CASinoCore::Processor.const_get(processor_name).new(listener)
|
18
|
+
end
|
19
|
+
end
|
@@ -0,0 +1,23 @@
|
|
1
|
+
class CASino::SessionsController < CASino::ApplicationController
|
2
|
+
include CASino::SessionsHelper
|
3
|
+
|
4
|
+
def index
|
5
|
+
processor(:SessionOverview).process(cookies, request.user_agent)
|
6
|
+
end
|
7
|
+
|
8
|
+
def new
|
9
|
+
processor(:LoginCredentialRequestor).process(params, cookies, request.user_agent)
|
10
|
+
end
|
11
|
+
|
12
|
+
def create
|
13
|
+
processor(:LoginCredentialAcceptor).process(params, cookies, request.user_agent)
|
14
|
+
end
|
15
|
+
|
16
|
+
def destroy
|
17
|
+
processor(:SessionDestroyer).process(params, cookies, request.user_agent)
|
18
|
+
end
|
19
|
+
|
20
|
+
def logout
|
21
|
+
processor(:Logout).process(params, cookies, request.user_agent)
|
22
|
+
end
|
23
|
+
end
|
File without changes
|
data/app/models/.gitkeep
ADDED
File without changes
|
@@ -0,0 +1,43 @@
|
|
1
|
+
<h1>Welcome</h1>
|
2
|
+
<p>
|
3
|
+
You are currently logged in as <strong><%= @ticket_granting_tickets[0].username %></strong>.
|
4
|
+
<%= link_to 'Logout', logout_path %>
|
5
|
+
</p>
|
6
|
+
<h2>Sessions</h2>
|
7
|
+
<p>
|
8
|
+
These are the web browsers currently logged in:
|
9
|
+
</p>
|
10
|
+
<table width="100%" class="tickets">
|
11
|
+
<thead>
|
12
|
+
<tr>
|
13
|
+
<th>Browser</th>
|
14
|
+
<th>Services</th>
|
15
|
+
<th>Most recent activity</th>
|
16
|
+
<th width="180"> </th>
|
17
|
+
</tr>
|
18
|
+
</thead>
|
19
|
+
<tbody>
|
20
|
+
<% @ticket_granting_tickets.each do |ticket_granting_ticket| %>
|
21
|
+
<tr class="<%= 'highlighted' if current_ticket_granting_ticket?(ticket_granting_ticket) %>">
|
22
|
+
<td>
|
23
|
+
<span title="<%= ticket_granting_ticket.user_agent %>">
|
24
|
+
<%= ticket_granting_ticket.browser_info %>
|
25
|
+
</span>
|
26
|
+
</td>
|
27
|
+
<td>
|
28
|
+
<%= ticket_granting_ticket.service_tickets.size %>
|
29
|
+
</td>
|
30
|
+
<td>
|
31
|
+
<%= distance_of_time_in_words_to_now(ticket_granting_ticket.updated_at) %> ago
|
32
|
+
</td>
|
33
|
+
<td>
|
34
|
+
<% if current_ticket_granting_ticket?(ticket_granting_ticket) %>
|
35
|
+
<strong>Current session</strong>
|
36
|
+
<% else %>
|
37
|
+
<%= link_to 'End session', session_path(ticket_granting_ticket.id), method: :delete %>
|
38
|
+
<% end %>
|
39
|
+
</td>
|
40
|
+
</tr>
|
41
|
+
<% end %>
|
42
|
+
</tbody>
|
43
|
+
</table>
|
@@ -0,0 +1,12 @@
|
|
1
|
+
<h1>Login</h1>
|
2
|
+
<%= form_tag(login_path, method: :post, id: 'login-form') do %>
|
3
|
+
<%= hidden_field_tag :lt, @login_ticket.ticket %>
|
4
|
+
<%= hidden_field_tag :service, params[:service] unless params[:service].nil? %>
|
5
|
+
<dl>
|
6
|
+
<dt><%= label_tag :username %></dt>
|
7
|
+
<dd><%= text_field_tag :username, params[:username] %></dd>
|
8
|
+
<dt><%= label_tag :password %></dt>
|
9
|
+
<dd><%= password_field_tag :password %></dd>
|
10
|
+
</dl>
|
11
|
+
<%= submit_tag "Login" %>
|
12
|
+
<% end %>
|
@@ -0,0 +1,18 @@
|
|
1
|
+
<!DOCTYPE html>
|
2
|
+
<html>
|
3
|
+
<head>
|
4
|
+
<title>CASino</title>
|
5
|
+
<%= stylesheet_link_tag "application", :media => "all" %>
|
6
|
+
<%= javascript_include_tag "application" %>
|
7
|
+
<%= csrf_meta_tags %>
|
8
|
+
</head>
|
9
|
+
<body>
|
10
|
+
<% flash.each do |name, msg| %>
|
11
|
+
<% if msg.is_a?(String) %>
|
12
|
+
<%= content_tag :div, msg, :id => "flash_#{name}" %>
|
13
|
+
<% end %>
|
14
|
+
<% end %>
|
15
|
+
<%= yield %>
|
16
|
+
|
17
|
+
</body>
|
18
|
+
</html>
|
data/casino.gemspec
ADDED
@@ -0,0 +1,29 @@
|
|
1
|
+
# -*- encoding: utf-8 -*-
|
2
|
+
$:.push File.expand_path('../lib', __FILE__)
|
3
|
+
require 'casino/version'
|
4
|
+
|
5
|
+
Gem::Specification.new do |s|
|
6
|
+
s.name = 'casino'
|
7
|
+
s.version = CASino::VERSION
|
8
|
+
s.authors = ['Nils Caspar']
|
9
|
+
s.email = ['ncaspar@me.com']
|
10
|
+
s.homepage = 'http://rbcas.org/'
|
11
|
+
s.license = 'MIT'
|
12
|
+
s.summary = 'A simple CAS server written in Ruby using the Rails framework.'
|
13
|
+
s.description = 'CASino is a simple CAS (Central Authentication Service) server using CASinoCore as its backend.'
|
14
|
+
|
15
|
+
s.files = `git ls-files`.split("\n")
|
16
|
+
s.test_files = `git ls-files -- {test,spec,features}/*`.split("\n")
|
17
|
+
s.executables = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
|
18
|
+
s.require_paths = ['lib']
|
19
|
+
|
20
|
+
s.add_development_dependency 'rake', '~> 10.0'
|
21
|
+
s.add_development_dependency 'rspec', '~> 2.12'
|
22
|
+
s.add_development_dependency 'rspec-rails', '~> 2.0'
|
23
|
+
s.add_development_dependency 'simplecov', '~> 0.7'
|
24
|
+
s.add_development_dependency 'sqlite3', '~> 1.3'
|
25
|
+
|
26
|
+
s.add_runtime_dependency 'rails', '~> 3.2.9'
|
27
|
+
s.add_runtime_dependency 'jquery-rails', '~> 2.1'
|
28
|
+
s.add_runtime_dependency 'casino_core', '~> 1.0'
|
29
|
+
end
|
data/config/.gitignore
ADDED
@@ -0,0 +1,19 @@
|
|
1
|
+
# Be sure to restart your server when you modify this file.
|
2
|
+
|
3
|
+
# Add new inflection rules using the following format
|
4
|
+
# (all these examples are active by default):
|
5
|
+
# ActiveSupport::Inflector.inflections do |inflect|
|
6
|
+
# inflect.plural /^(ox)$/i, '\1en'
|
7
|
+
# inflect.singular /^(ox)en/i, '\1'
|
8
|
+
# inflect.irregular 'person', 'people'
|
9
|
+
# inflect.uncountable %w( fish sheep )
|
10
|
+
# end
|
11
|
+
#
|
12
|
+
# These inflection rules are supported but not enabled by default:
|
13
|
+
# ActiveSupport::Inflector.inflections do |inflect|
|
14
|
+
# inflect.acronym 'RESTful'
|
15
|
+
# end
|
16
|
+
|
17
|
+
ActiveSupport::Inflector.inflections do |inflect|
|
18
|
+
inflect.acronym 'API'
|
19
|
+
end
|
@@ -0,0 +1,9 @@
|
|
1
|
+
# Be sure to restart your server when you modify this file.
|
2
|
+
#
|
3
|
+
# This file contains settings for ActionController::ParamsWrapper which
|
4
|
+
# is enabled by default.
|
5
|
+
|
6
|
+
# Enable parameter wrapping for JSON. You can disable this by setting :format to an empty array.
|
7
|
+
ActiveSupport.on_load(:action_controller) do
|
8
|
+
wrap_parameters format: [:json]
|
9
|
+
end
|
@@ -0,0 +1 @@
|
|
1
|
+
YAML::ENGINE.yamler = 'syck'
|
@@ -0,0 +1,10 @@
|
|
1
|
+
# Sample localization file for English. Add more files in this directory for other locales.
|
2
|
+
# See https://github.com/svenfuchs/rails-i18n/tree/master/rails%2Flocale for starting points.
|
3
|
+
|
4
|
+
en:
|
5
|
+
login_credential_acceptor:
|
6
|
+
invalid_login_ticket: "Your login request did not include a valid login ticket."
|
7
|
+
invalid_login_credentials: "Incorrect username or password."
|
8
|
+
logout:
|
9
|
+
logged_out_without_url: "You have successfully logged out."
|
10
|
+
logged_out_with_url: "The application you just logged out of has provided a link it would like you to follow:"
|
data/config/routes.rb
ADDED
@@ -0,0 +1,82 @@
|
|
1
|
+
CASino::Engine.routes.draw do
|
2
|
+
resources :sessions, only: [:index, :destroy]
|
3
|
+
get 'login' => 'sessions#new'
|
4
|
+
post 'login' => 'sessions#create'
|
5
|
+
get 'logout' => 'sessions#logout'
|
6
|
+
|
7
|
+
get 'validate' => 'service_tickets#validate'
|
8
|
+
get 'serviceValidate' => 'service_tickets#service_validate'
|
9
|
+
|
10
|
+
get 'proxyValidate' => 'proxy_tickets#proxy_validate'
|
11
|
+
get 'proxy' => 'proxy_tickets#create'
|
12
|
+
|
13
|
+
# api
|
14
|
+
scope '/cas' do
|
15
|
+
scope module: :api, as: :api do
|
16
|
+
namespace :v1 do
|
17
|
+
resources :tickets, only: [:create, :destroy] do
|
18
|
+
post :update, on: :member
|
19
|
+
end
|
20
|
+
end
|
21
|
+
end
|
22
|
+
end
|
23
|
+
|
24
|
+
root to: redirect('/login')
|
25
|
+
|
26
|
+
# The priority is based upon order of creation:
|
27
|
+
# first created -> highest priority.
|
28
|
+
|
29
|
+
# Sample of regular route:
|
30
|
+
# match 'products/:id' => 'catalog#view'
|
31
|
+
# Keep in mind you can assign values other than :controller and :action
|
32
|
+
|
33
|
+
# Sample of named route:
|
34
|
+
# match 'products/:id/purchase' => 'catalog#purchase', :as => :purchase
|
35
|
+
# This route can be invoked with purchase_url(:id => product.id)
|
36
|
+
|
37
|
+
# Sample resource route (maps HTTP verbs to controller actions automatically):
|
38
|
+
# resources :products
|
39
|
+
|
40
|
+
# Sample resource route with options:
|
41
|
+
# resources :products do
|
42
|
+
# member do
|
43
|
+
# get 'short'
|
44
|
+
# post 'toggle'
|
45
|
+
# end
|
46
|
+
#
|
47
|
+
# collection do
|
48
|
+
# get 'sold'
|
49
|
+
# end
|
50
|
+
# end
|
51
|
+
|
52
|
+
# Sample resource route with sub-resources:
|
53
|
+
# resources :products do
|
54
|
+
# resources :comments, :sales
|
55
|
+
# resource :seller
|
56
|
+
# end
|
57
|
+
|
58
|
+
# Sample resource route with more complex sub-resources
|
59
|
+
# resources :products do
|
60
|
+
# resources :comments
|
61
|
+
# resources :sales do
|
62
|
+
# get 'recent', :on => :collection
|
63
|
+
# end
|
64
|
+
# end
|
65
|
+
|
66
|
+
# Sample resource route within a namespace:
|
67
|
+
# namespace :admin do
|
68
|
+
# # Directs /admin/products/* to Admin::ProductsController
|
69
|
+
# # (app/controllers/admin/products_controller.rb)
|
70
|
+
# resources :products
|
71
|
+
# end
|
72
|
+
|
73
|
+
# You can have the root of your site routed with "root"
|
74
|
+
# just remember to delete public/index.html.
|
75
|
+
# root :to => 'welcome#index'
|
76
|
+
|
77
|
+
# See how all your routes lay out with "rake routes"
|
78
|
+
|
79
|
+
# This is a legacy wild controller route that's not recommended for RESTful applications.
|
80
|
+
# Note: This route will make all actions in every controller accessible via GET requests.
|
81
|
+
# match ':controller(/:action(/:id))(.:format)'
|
82
|
+
end
|
data/db/seeds.rb
ADDED
@@ -0,0 +1,7 @@
|
|
1
|
+
# This file should contain all the record creation needed to seed the database with its default values.
|
2
|
+
# The data can then be loaded with the rake db:seed (or created alongside the db with db:setup).
|
3
|
+
#
|
4
|
+
# Examples:
|
5
|
+
#
|
6
|
+
# cities = City.create([{ name: 'Chicago' }, { name: 'Copenhagen' }])
|
7
|
+
# Mayor.create(name: 'Emanuel', city: cities.first)
|
data/doc/README_FOR_APP
ADDED
data/lib/assets/.gitkeep
ADDED
File without changes
|
data/lib/casino.rb
ADDED
@@ -0,0 +1,25 @@
|
|
1
|
+
module CASino
|
2
|
+
class Listener
|
3
|
+
|
4
|
+
# include helpers to have the route path methods (like sessions_path)
|
5
|
+
include CASino::Engine.routes.url_helpers
|
6
|
+
|
7
|
+
autoload :LegacyValidator, 'casino/listener/legacy_validator.rb'
|
8
|
+
autoload :LoginCredentialAcceptor, 'casino/listener/login_credential_acceptor.rb'
|
9
|
+
autoload :LoginCredentialRequestor, 'casino/listener/login_credential_requestor.rb'
|
10
|
+
autoload :Logout, 'casino/listener/logout.rb'
|
11
|
+
autoload :ProxyTicketProvider, 'casino/listener/proxy_ticket_provider.rb'
|
12
|
+
autoload :SessionDestroyer, 'casino/listener/session_destroyer.rb'
|
13
|
+
autoload :SessionOverview, 'casino/listener/session_overview.rb'
|
14
|
+
autoload :TicketValidator, 'casino/listener/ticket_validator.rb'
|
15
|
+
|
16
|
+
def initialize(controller)
|
17
|
+
@controller = controller
|
18
|
+
end
|
19
|
+
|
20
|
+
protected
|
21
|
+
def assign(name, value)
|
22
|
+
@controller.instance_variable_set("@#{name}", value)
|
23
|
+
end
|
24
|
+
end
|
25
|
+
end
|
@@ -0,0 +1,11 @@
|
|
1
|
+
require 'casino/listener'
|
2
|
+
|
3
|
+
class CASino::Listener::LegacyValidator < CASino::Listener
|
4
|
+
def validation_failed(text)
|
5
|
+
@controller.render text: text, content_type: 'text/plain'
|
6
|
+
end
|
7
|
+
|
8
|
+
def validation_succeeded(text)
|
9
|
+
@controller.render text: text, content_type: 'text/plain'
|
10
|
+
end
|
11
|
+
end
|
@@ -0,0 +1,28 @@
|
|
1
|
+
require 'casino/listener'
|
2
|
+
|
3
|
+
class CASino::Listener::LoginCredentialAcceptor < CASino::Listener
|
4
|
+
def user_logged_in(url, ticket_granting_ticket)
|
5
|
+
@controller.cookies[:tgt] = ticket_granting_ticket
|
6
|
+
if url.nil?
|
7
|
+
@controller.redirect_to sessions_path, status: :see_other
|
8
|
+
else
|
9
|
+
@controller.redirect_to url, status: :see_other
|
10
|
+
end
|
11
|
+
end
|
12
|
+
|
13
|
+
def invalid_login_credentials(login_ticket)
|
14
|
+
@controller.flash.now[:error] = I18n.t('login_credential_acceptor.invalid_login_credentials')
|
15
|
+
rerender_login_page(login_ticket)
|
16
|
+
end
|
17
|
+
|
18
|
+
def invalid_login_ticket(login_ticket)
|
19
|
+
@controller.flash.now[:error] = I18n.t('login_credential_acceptor.invalid_login_ticket')
|
20
|
+
rerender_login_page(login_ticket)
|
21
|
+
end
|
22
|
+
|
23
|
+
private
|
24
|
+
def rerender_login_page(login_ticket)
|
25
|
+
assign(:login_ticket, login_ticket)
|
26
|
+
@controller.render 'new', status: 403
|
27
|
+
end
|
28
|
+
end
|