concerto_cas_auth 0.0.3 → 0.0.4
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +4 -2
- data/app/controllers/concerto_cas_auth/application_controller.rb +35 -8
- data/app/controllers/concerto_cas_auth/omniauth_callback_controller.rb +1 -1
- data/app/views/concerto_cas_auth/omniauth_cas/_signin.html.erb +1 -1
- data/config/initializers/omniauth.rb +29 -9
- data/config/routes.rb +1 -1
- data/lib/concerto_cas_auth.rb +1 -1
- data/lib/concerto_cas_auth/engine.rb +5 -1
- data/lib/concerto_cas_auth/version.rb +1 -1
- data/lib/tasks/concerto_cas_auth_tasks.rake +0 -4
- metadata +2 -3
- data/config/concerto_cas_auth.yml.sample +0 -39
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 3223823ecc987e6217fd13a7b210aacd55d25310
|
4
|
+
data.tar.gz: 5097fa47e1a5963a8e40416e7252de5f9ce8ea41
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: b433079684eedd9afdc49e3f7fe86d0a4ef6a4b45b608bf7c7146c5926c06a63b321db991fb7859b0606206ae6938d08782f022fe31010bbbe41e7044eedc657
|
7
|
+
data.tar.gz: dc6814cf3b059692f5c8d7bd70b1ff081c677de71bb4e695b667f8ed254fb1217bf24a24f9c6a291f0ace606b0263c08fb95abfa680dfa65683cdb92717a6984
|
data/README.md
CHANGED
@@ -1,25 +1,42 @@
|
|
1
1
|
module ConcertoCasAuth
|
2
2
|
class ApplicationController < ::ApplicationController
|
3
3
|
|
4
|
+
# Used to map a user id with a corresponding authentication provider in the
|
5
|
+
# database (in this case it's CAS)
|
4
6
|
require 'concerto_identity'
|
5
7
|
|
8
|
+
# Find or create a new user based on values returned by the CAS callback
|
6
9
|
def find_from_omniauth(cas_hash)
|
7
|
-
# Get
|
10
|
+
# Get configuration options for customized CAS return value identifiers
|
8
11
|
omniauth_keys = ConcertoCasAuth::Engine.config.omniauth_keys
|
9
12
|
|
10
|
-
if identity
|
11
|
-
|
13
|
+
# Check if an identity records exists for the user attempting to sign in
|
14
|
+
if identity = ConcertoIdentity::Identity.find_by_user_id(
|
15
|
+
cas_hash[omniauth_keys["uid_key"]])
|
16
|
+
# Return the matching user record
|
12
17
|
return identity.user
|
13
18
|
else
|
14
19
|
# Add a new user via omniauth cas details
|
15
20
|
user = User.new
|
16
21
|
|
17
22
|
# Set user attributes
|
18
|
-
|
19
|
-
user
|
23
|
+
|
24
|
+
# First name is required for user validation
|
25
|
+
if !cas_hash[omniauth_keys["first_name_key"]].nil?
|
26
|
+
user.first_name = cas_hash[omniauth_keys["first_name_key"]]
|
27
|
+
else
|
28
|
+
user.first_name = cas_hash[omniauth_keys["uid_key"]]
|
29
|
+
end
|
30
|
+
|
31
|
+
# Email is required for user validation
|
20
32
|
user.email = cas_hash[omniauth_keys["email_key"]]
|
21
|
-
user.password, user.password_confirmation = Devise.friendly_token.first(8)
|
22
33
|
|
34
|
+
# Set user admin flag to false
|
35
|
+
user.is_admin = false
|
36
|
+
# Set user password and confirmation to random tokens
|
37
|
+
user.password,user.password_confirmation=Devise.friendly_token.first(8)
|
38
|
+
|
39
|
+
# Check if this is our application's first user
|
23
40
|
if !User.exists?
|
24
41
|
# First user is an admin
|
25
42
|
first_user_setup = true
|
@@ -37,13 +54,23 @@ module ConcertoCasAuth
|
|
37
54
|
|
38
55
|
# Create Concerto Admin Group
|
39
56
|
group = Group.where(:name => "Concerto Admins").first_or_create
|
40
|
-
membership = Membership.create(:user_id => user.id,
|
57
|
+
membership = Membership.create(:user_id => user.id,
|
58
|
+
:group_id => group.id,
|
59
|
+
:level => Membership::LEVELS[:leader])
|
41
60
|
end
|
42
61
|
|
62
|
+
# Attempt to save our new user
|
43
63
|
if user.save
|
44
|
-
|
64
|
+
# Create a matching identity to track our new user for future
|
65
|
+
# sessions and return our new user record
|
66
|
+
ConcertoIdentity::Identity.create(provider: "cas",
|
67
|
+
external_id: cash_hash[omniauth_keys["uid_key"]],
|
68
|
+
user_id: user.id)
|
45
69
|
return user
|
46
70
|
else
|
71
|
+
# User save failed, an error occurred
|
72
|
+
flash.notice = "Failed to sign in with CAS.
|
73
|
+
#{user.errors.full_messages.to_sentence}."
|
47
74
|
return nil
|
48
75
|
end
|
49
76
|
end
|
@@ -1 +1 @@
|
|
1
|
-
<%= link_to 'Log in', 'auth/cas/' %>
|
1
|
+
<%= link_to 'Log in', 'auth/cas/' %>
|
@@ -1,13 +1,33 @@
|
|
1
|
-
#
|
1
|
+
# Concerto Configs are created if they don't exist already
|
2
|
+
# these are used to initialize and configure omniauth-cas
|
3
|
+
ConcertoConfig.make_concerto_config("cas_url", "https://cas.example.org/cas",
|
4
|
+
:value_type => "string",
|
5
|
+
:value_default => "https://cas.example.org/cas",
|
6
|
+
:category => 'CAS User Authentication',
|
7
|
+
:seq_no => 1,
|
8
|
+
:description =>"Defines the url of your CAS server")
|
2
9
|
|
3
|
-
|
4
|
-
|
10
|
+
ConcertoConfig.make_concerto_config("cas_uid_key", "user",
|
11
|
+
:value_type => "string",
|
12
|
+
:value_default => "user",
|
13
|
+
:category => 'CAS User Authentication',
|
14
|
+
:seq_no => 2,
|
15
|
+
:description =>'The CAS field name containing user login names (uid, username,email,etc)')
|
5
16
|
|
6
|
-
|
7
|
-
|
8
|
-
|
9
|
-
|
10
|
-
|
17
|
+
ConcertoConfig.make_concerto_config("cas_email_key", "email",
|
18
|
+
:value_type => "string",
|
19
|
+
:value_default => "email",
|
20
|
+
:category => 'CAS User Authentication',
|
21
|
+
:seq_no => 3,
|
22
|
+
:description =>'The CAS field name containing user email addresses (email, uid,etc)')
|
23
|
+
|
24
|
+
# Store omniauth config values from main application's ConcertoConfig
|
25
|
+
omniauth_config = {
|
26
|
+
:host => URI.parse(ConcertoConfig[:cas_url]).host,
|
27
|
+
:url => ConcertoConfig[:cas_url],
|
28
|
+
:uid_key => ConcertoConfig[:cas_uid_key],
|
29
|
+
:email_key => ConcertoConfig[:cas_email_key]
|
30
|
+
}
|
11
31
|
|
12
32
|
# configure omniauth-cas gem based on specified yml configs
|
13
33
|
Rails.application.config.middleware.use OmniAuth::Builder do
|
@@ -18,4 +38,4 @@ end
|
|
18
38
|
# to reference any unique identifiers for extra CAS options
|
19
39
|
ConcertoCasAuth::Engine.configure do
|
20
40
|
config.omniauth_keys = omniauth_config
|
21
|
-
end
|
41
|
+
end
|
data/config/routes.rb
CHANGED
data/lib/concerto_cas_auth.rb
CHANGED
@@ -13,11 +13,15 @@ module ConcertoCasAuth
|
|
13
13
|
def plugin_info(plugin_info_class)
|
14
14
|
@plugin_info ||= plugin_info_class.new do
|
15
15
|
|
16
|
+
# Add our concerto_cas_auth route to the main application
|
16
17
|
add_route("concerto_cas_auth", ConcertoCasAuth::Engine)
|
17
18
|
|
18
|
-
|
19
|
+
# View hook to override Devise sign in links in the main application
|
20
|
+
add_view_hook "ApplicationController", :signin_hook,
|
21
|
+
:partial => "concerto_cas_auth/omniauth_cas/signin"
|
19
22
|
|
20
23
|
end
|
21
24
|
end
|
25
|
+
|
22
26
|
end
|
23
27
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: concerto_cas_auth
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.0.
|
4
|
+
version: 0.0.4
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Gabe Perez
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2014-
|
11
|
+
date: 2014-08-01 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: rails
|
@@ -65,7 +65,6 @@ files:
|
|
65
65
|
- app/controllers/concerto_cas_auth/omniauth_callback_controller.rb
|
66
66
|
- app/helpers/concerto_cas_auth/application_helper.rb
|
67
67
|
- app/views/concerto_cas_auth/omniauth_cas/_signin.html.erb
|
68
|
-
- config/concerto_cas_auth.yml.sample
|
69
68
|
- config/initializers/omniauth.rb
|
70
69
|
- config/routes.rb
|
71
70
|
- lib/concerto_cas_auth/engine.rb
|
@@ -1,39 +0,0 @@
|
|
1
|
-
# ============================================================
|
2
|
-
# THIS FILE GOES IN THE CONCERTO APPLICATION CONFIG/ DIRECTORY
|
3
|
-
# ============================================================
|
4
|
-
|
5
|
-
# Configuration options for omniauth-cas
|
6
|
-
# visit https://github.com/dlindahl/omniauth-cas
|
7
|
-
# for more details in README
|
8
|
-
|
9
|
-
# ----------------
|
10
|
-
# Required options
|
11
|
-
# ----------------
|
12
|
-
# host:
|
13
|
-
# url:
|
14
|
-
|
15
|
-
# -----------------------------------------------
|
16
|
-
# Configurable options for values returned by CAS
|
17
|
-
# -----------------------------------------------
|
18
|
-
# uid_key:
|
19
|
-
# name_key:
|
20
|
-
# email_key:
|
21
|
-
# first_name_key:
|
22
|
-
# last_name_key:
|
23
|
-
# location_key:
|
24
|
-
# image_key:
|
25
|
-
# phone_key:
|
26
|
-
|
27
|
-
# --------------------------
|
28
|
-
# Other configurable options
|
29
|
-
# --------------------------
|
30
|
-
# port:
|
31
|
-
# ssl:
|
32
|
-
# service_validate_url:
|
33
|
-
# logout_url:
|
34
|
-
# login_url:
|
35
|
-
# uid_field:
|
36
|
-
# ca_path:
|
37
|
-
# disable_ssl_verification:
|
38
|
-
# on_single_sign_out:
|
39
|
-
|