RubyGems - casino - Versions diffs - 3.0.4 → 4.0.0.pre.1 - Mend

casino 3.0.4 → 4.0.0.pre.1

Files changed (149) hide show

data/app/controllers/casino/api/v1/tickets_controller.rb DELETED

@@ -1,55 +0,0 @@
-class CASino::Api::V1::TicketsController < CASino::ApplicationController
-  # POST /cas/v1/tickets
-  def create
-    CASino::API::LoginCredentialAcceptorProcessor.new(self).process(params, request.user_agent)
-  end
-  # POST /cas/v1/tickets/{TGT id}
-  def update
-    CASino::API::ServiceTicketProviderProcessor.new(self).process(params[:id], params, request.user_agent)
-  end
-  # DELETE /cas/v1/tickets/TGT-fdsjfsdfjkalfewrihfdhfaie
-  def destroy
-    CASino::API::LogoutProcessor.new(self).process(params[:id], request.user_agent)
-  end
-  # callbacks
-  def user_logged_in_via_api(ticket_granting_ticket)
-    render nothing: true, status: 201, location: api_v1_ticket_url(ticket_granting_ticket)
-  end
-  def invalid_login_credentials_via_api
-    error_response
-  end
-  def granted_service_ticket_via_api(service_ticket)
-    render text: service_ticket, status: 200, content_type: Mime::TEXT
-  end
-  def invalid_ticket_granting_ticket_via_api
-    error_response
-  end
-  def no_service_provided_via_api
-    error_response
-  end
-  def service_not_allowed_via_api
-    error_response
-  end
-  def user_logged_out_via_api
-    render nothing: true, status: 200
-  end
-  private
-  def error_response
-    render nothing: true, status: 400
-  end
-end
-# Inflector alias
-CASino::API = CASino::Api

data/app/helpers/service_tickets_helper.rb DELETED

	@@ -1,2 +0,0 @@
1	- module ServiceTicketsHelper
2	- end

data/app/listeners/casino/legacy_validator_listener.rb DELETED

@@ -1,11 +0,0 @@
-require_relative 'listener'
-class CASino::LegacyValidatorListener < CASino::Listener
-  def validation_failed(text)
-    @controller.render text: text, content_type: 'text/plain'
-  end
-  def validation_succeeded(text)
-    @controller.render text: text, content_type: 'text/plain'
-  end
-end

data/app/listeners/casino/listener.rb DELETED

@@ -1,16 +0,0 @@
-module CASino
-  class Listener
-    # include helpers to have the route path methods (like sessions_path)
-    include CASino::Engine.routes.url_helpers
-    def initialize(controller)
-      @controller = controller
-    end
-    protected
-    def assign(name, value)
-      @controller.instance_variable_set("@#{name}", value)
-    end
-  end
-end

data/app/listeners/casino/login_credential_acceptor_listener.rb DELETED

@@ -1,38 +0,0 @@
-require_relative 'listener'
-class CASino::LoginCredentialAcceptorListener < CASino::Listener
-  def user_logged_in(url, ticket_granting_ticket, cookie_expiry_time = nil)
-    @controller.cookies[:tgt] = { value: ticket_granting_ticket, expires: cookie_expiry_time }
-    if url.nil?
-      @controller.redirect_to sessions_path, status: :see_other
-    else
-      @controller.redirect_to url, status: :see_other
-    end
-  end
-  def two_factor_authentication_pending(ticket_granting_ticket)
-    assign(:ticket_granting_ticket, ticket_granting_ticket)
-    @controller.render 'validate_otp'
-  end
-  def invalid_login_credentials(login_ticket)
-    @controller.flash.now[:error] = I18n.t('login_credential_acceptor.invalid_login_credentials')
-    rerender_login_page(login_ticket)
-  end
-  def invalid_login_ticket(login_ticket)
-    @controller.flash.now[:error] = I18n.t('login_credential_acceptor.invalid_login_ticket')
-    rerender_login_page(login_ticket)
-  end
-  def service_not_allowed(service)
-    assign(:service, service)
-    @controller.render 'service_not_allowed', status: 403
-  end
-  private
-  def rerender_login_page(login_ticket)
-    assign(:login_ticket, login_ticket)
-    @controller.render 'new', status: 403
-  end
-end

data/app/listeners/casino/login_credential_requestor_listener.rb DELETED

@@ -1,21 +0,0 @@
-require_relative 'listener'
-class CASino::LoginCredentialRequestorListener < CASino::Listener
-  def user_not_logged_in(login_ticket)
-    assign(:login_ticket, login_ticket)
-    @controller.cookies.delete :tgt
-  end
-  def service_not_allowed(service)
-    assign(:service, service)
-    @controller.render 'service_not_allowed', status: 403
-  end
-  def user_logged_in(url)
-    if url.nil?
-      @controller.redirect_to sessions_path
-    else
-      @controller.redirect_to url, status: :see_other
-    end
-  end
-end

data/app/listeners/casino/logout_listener.rb DELETED

@@ -1,12 +0,0 @@
-require_relative 'listener'
-class CASino::LogoutListener < CASino::Listener
-  def user_logged_out(url, redirect_immediately = false)
-    if redirect_immediately
-      @controller.redirect_to url, status: :see_other
-    else
-      assign(:url, url)
-    end
-    @controller.cookies.delete :tgt
-  end
-end

data/app/listeners/casino/other_sessions_destroyer_listener.rb DELETED

@@ -1,7 +0,0 @@
-require_relative 'listener'
-class CASino::OtherSessionsDestroyerListener < CASino::Listener
-  def other_sessions_destroyed(url)
-    @controller.redirect_to(url || sessions_path)
-  end
-end

data/app/listeners/casino/proxy_ticket_provider_listener.rb DELETED

@@ -1,11 +0,0 @@
-require_relative 'listener'
-class CASino::ProxyTicketProviderListener < CASino::Listener
-  def request_failed(xml)
-    @controller.render xml: xml
-  end
-  def request_succeeded(xml)
-    @controller.render xml: xml
-  end
-end

data/app/listeners/casino/second_factor_authentication_acceptor_listener.rb DELETED

@@ -1,26 +0,0 @@
-require_relative 'listener'
-class CASino::SecondFactorAuthenticationAcceptorListener < CASino::Listener
-  def user_not_logged_in
-    @controller.redirect_to login_path
-  end
-  def user_logged_in(url, ticket_granting_ticket, cookie_expiry_time = nil)
-    @controller.cookies[:tgt] = { value: ticket_granting_ticket, expires: cookie_expiry_time }
-    if url.nil?
-      @controller.redirect_to sessions_path, status: :see_other
-    else
-      @controller.redirect_to url, status: :see_other
-    end
-  end
-  def invalid_one_time_password
-    @controller.flash.now[:error] = I18n.t('validate_otp.invalid_otp')
-  end
-  def service_not_allowed(service)
-    assign(:service, service)
-    @controller.render 'service_not_allowed', status: 403
-  end
-end

data/app/listeners/casino/session_destroyer_listener.rb DELETED

@@ -1,11 +0,0 @@
-require_relative 'listener'
-class CASino::SessionDestroyerListener < CASino::Listener
-  def ticket_deleted
-    @controller.redirect_to(sessions_path)
-  end
-  def ticket_not_found
-    @controller.redirect_to(sessions_path)
-  end
-end

data/app/listeners/casino/session_overview_listener.rb DELETED

@@ -1,11 +0,0 @@
-require_relative 'listener'
-class CASino::SessionOverviewListener < CASino::Listener
-  def user_not_logged_in
-    @controller.redirect_to login_path
-  end
-  def ticket_granting_tickets_found(ticket_granting_tickets)
-    assign(:ticket_granting_tickets, ticket_granting_tickets)
-  end
-end

data/app/listeners/casino/ticket_validator_listener.rb DELETED

@@ -1,11 +0,0 @@
-require_relative 'listener'
-class CASino::TicketValidatorListener < CASino::Listener
-  def validation_failed(xml)
-    @controller.render xml: xml
-  end
-  def validation_succeeded(xml)
-    @controller.render xml: xml
-  end
-end

data/app/listeners/casino/two_factor_authenticator_activator_listener.rb DELETED

@@ -1,23 +0,0 @@
-require_relative 'listener'
-class CASino::TwoFactorAuthenticatorActivatorListener < CASino::Listener
-  def user_not_logged_in
-    @controller.redirect_to login_path
-  end
-  def two_factor_authenticator_activated
-    @controller.flash[:notice] = I18n.t('two_factor_authenticators.successfully_activated')
-    @controller.redirect_to sessions_path
-  end
-  def invalid_one_time_password(two_factor_authenticator)
-    @controller.flash.now[:error] = I18n.t('two_factor_authenticators.invalid_one_time_password')
-    assign(:two_factor_authenticator, two_factor_authenticator)
-    @controller.render 'new'
-  end
-  def invalid_two_factor_authenticator
-    @controller.flash[:error] = I18n.t('two_factor_authenticators.invalid_two_factor_authenticator')
-    @controller.redirect_to new_two_factor_authenticator_path
-  end
-end

data/app/listeners/casino/two_factor_authenticator_destroyer_listener.rb DELETED

@@ -1,16 +0,0 @@
-require_relative 'listener'
-class CASino::TwoFactorAuthenticatorDestroyerListener < CASino::Listener
-  def user_not_logged_in
-    @controller.redirect_to login_path
-  end
-  def two_factor_authenticator_destroyed
-    @controller.flash[:notice] = I18n.t('two_factor_authenticators.successfully_deleted')
-    @controller.redirect_to sessions_path
-  end
-  def invalid_two_factor_authenticator
-    @controller.redirect_to sessions_path
-  end
-end

data/app/listeners/casino/two_factor_authenticator_overview_listener.rb DELETED

@@ -1,11 +0,0 @@
-require_relative 'listener'
-class CASino::TwoFactorAuthenticatorOverviewListener < CASino::Listener
-  def user_not_logged_in
-    # nothing to do here
-  end
-  def two_factor_authenticators_found(two_factor_authenticators)
-    assign(:two_factor_authenticators, two_factor_authenticators)
-  end
-end

data/app/listeners/casino/two_factor_authenticator_registrator_listener.rb DELETED

@@ -1,11 +0,0 @@
-require_relative 'listener'
-class CASino::TwoFactorAuthenticatorRegistratorListener < CASino::Listener
-  def user_not_logged_in
-    @controller.redirect_to login_path
-  end
-  def two_factor_authenticator_registered(two_factor_authenticator)
-    assign(:two_factor_authenticator, two_factor_authenticator)
-  end
-end

data/app/processors/casino/api/login_credential_acceptor_processor.rb DELETED

@@ -1,46 +0,0 @@
-# This processor should be used for API calls: POST /cas/v1/tickets
-class CASino::API::LoginCredentialAcceptorProcessor < CASino::Processor
-  include CASino::ProcessorConcern::ServiceTickets
-  include CASino::ProcessorConcern::Authentication
-  include CASino::ProcessorConcern::TicketGrantingTickets
-  # Use this method to process the request. It expects the username in the parameter "username" and the password
-  # in "password".
-  #
-  # The method will call one of the following methods on the listener:
-  # * `#user_logged_in_via_api`: First and only argument is a String with the TGT-id
-  # * `#invalid_login_credentials_via_api`: No argument
-  #
-  # @param [Hash] login_data parameters supplied by user (username and password)
-  def process(login_data, user_agent = nil)
-    @login_data = login_data
-    @user_agent = user_agent
-    validate_login_data
-    unless @authentication_result.nil?
-      generate_ticket_granting_ticket
-      callback_user_logged_in
-    else
-      callback_invalid_login_credentials
-    end
-  end
-  private
-  def validate_login_data
-    @authentication_result = validate_login_credentials(@login_data[:username], @login_data[:password])
-  end
-  def callback_user_logged_in
-    @listener.user_logged_in_via_api @ticket_granting_ticket.ticket
-  end
-  def generate_ticket_granting_ticket
-    @ticket_granting_ticket = acquire_ticket_granting_ticket(@authentication_result, @user_agent)
-  end
-  def callback_invalid_login_credentials
-    @listener.invalid_login_credentials_via_api
-  end
-end

data/app/processors/casino/api/logout_processor.rb DELETED

@@ -1,17 +0,0 @@
-# The Logout processor should be used to process API DELETE requests to /cas/v1/tickets/<ticket_granting_ticket>
-class CASino::API::LogoutProcessor < CASino::Processor
-  include CASino::ProcessorConcern::TicketGrantingTickets
-  # This method will call `#user_logged_out_via_api` on the listener.
-  #
-  # @param [String] ticket_granting_ticket Ticket-granting ticket to logout
-  def process(ticket_granting_ticket, user_agent = nil)
-    remove_ticket_granting_ticket(ticket_granting_ticket, user_agent)
-    callback_user_logged_out
-  end
-  def callback_user_logged_out
-    @listener.user_logged_out_via_api
-  end
-end

data/app/processors/casino/api/service_ticket_provider_processor.rb DELETED

@@ -1,69 +0,0 @@
-# The ServiceTicketProvider processor should be used to handle API calls: POST requests to /cas/v1/tickets/<ticket_granting_ticket>
-class CASino::API::ServiceTicketProviderProcessor < CASino::Processor
-  include CASino::ProcessorConcern::ServiceTickets
-  include CASino::ProcessorConcern::TicketGrantingTickets
-  # Use this method to process the request.
-  #
-  # The method will call one of the following methods on the listener:
-  # * `#granted_service_ticket_via_api`: First and only argument is a String with the service ticket.
-  #   The service ticket (and nothing else) should be displayed.
-  # * `#invalid_ticket_granting_ticket_via_api`: No argument. The application should respond with status "400 Bad Request"
-  # * `#no_service_provided_via_api`: No argument. The application should respond with status "400 Bad Request"
-  # * `#service_not_allowed_via_api`: The user tried to access a service that this CAS server is not allowed to serve.
-  #
-  # @param [String] ticket_granting_ticket ticket_granting_ticket supplied by the user in the URL
-  # @param [Hash] parameters parameters supplied by user (`service` in particular)
-  # @param [String] user_agent user-agent delivered by the client
-  def process(ticket_granting_ticket, parameters = nil, user_agent = nil)
-    parameters ||= {}
-    @client_ticket_granting_ticket = ticket_granting_ticket
-    @service_url = parameters[:service]
-    @user_agent = user_agent
-    fetch_valid_ticket_granting_ticket
-    handle_ticket_granting_ticket
-  end
-  private
-  def fetch_valid_ticket_granting_ticket
-    @ticket_granting_ticket = find_valid_ticket_granting_ticket(@client_ticket_granting_ticket, @user_agent)
-  end
-  def handle_ticket_granting_ticket
-    case
-    when (@service_url and @ticket_granting_ticket)
-      begin
-        create_service_ticket
-        callback_granted_service_ticket
-      rescue ServiceNotAllowedError
-        callback_service_not_allowed
-      end
-    when (@service_url and not @ticket_granting_ticket)
-      callback_invalid_tgt
-    when (not @service_url and @ticket_granting_ticket)
-      callback_empty_service
-    end
-  end
-  def create_service_ticket
-    @service_ticket = acquire_service_ticket(@ticket_granting_ticket, @service_url)
-  end
-  def callback_granted_service_ticket
-    @listener.granted_service_ticket_via_api @service_ticket.ticket
-  end
-  def callback_invalid_tgt
-    @listener.invalid_ticket_granting_ticket_via_api
-  end
-  def callback_empty_service
-    @listener.no_service_provided_via_api
-  end
-  def callback_service_not_allowed
-    @listener.service_not_allowed_via_api(clean_service_url @service_url)
-  end
-end