cosmos_authentication 0.0.1

data/.gitignore

@@ -0,0 +1,5 @@
+*.gem
+.bundle
+Gemfile.lock
+pkg/*
+.rvmrc

data/Gemfile

@@ -0,0 +1,3 @@
+source "http://rubygems.org"
+
+gemspec

data/Rakefile

@@ -0,0 +1 @@
+require "bundler/gem_tasks"

data/cosmos_authentication.gemspec

@@ -0,0 +1,22 @@
+# -*- encoding: utf-8 -*-
+$:.push File.expand_path("../lib", __FILE__)
+require "cosmos_authentication/version"
+
+Gem::Specification.new do |s|
+  s.name        = "cosmos_authentication"
+  s.version     = CosmosAuthentication::VERSION
+  s.authors     = ["Sebastian Edwards"]
+  s.email       = ["sebastian@uprise.co.nz"]
+  s.homepage    = "https://github.com/SebastianEdwards/cosmos_authentication"
+  s.summary     = %q{A client for the cosmos authentication service.}
+  s.description = s.summary
+
+  s.rubyforge_project = "cosmos_authentication"
+
+  s.files         = `git ls-files`.split("\n")
+  s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")
+  s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
+  s.require_paths = ["lib"]
+
+  s.add_dependency "cosmos"
+end

data/lib/cosmos_authentication/resource_owner.rb

@@ -0,0 +1,25 @@
+require "cosmos_authentication/stub"
+require "cosmos_authentication/resources"
+
+module Cosmos
+  module Authentication
+    class ResourceOwner
+      def initialize(client, collection)
+        @client = client
+        @collection = collection
+      end
+
+      def data
+        @data ||= @collection.items.first.data.inject({}) do |hash, data|
+          hash.merge!({data.name => data.value})
+        end
+      end
+
+      def resources
+        @resources ||= @collection.links.inject({}) do |hash, link|
+          hash.merge!({link.rel => Stub.new(@client, Resources, link.href)})
+        end
+      end
+    end
+  end
+end

data/lib/cosmos_authentication/resources.rb

@@ -0,0 +1,29 @@
+module Cosmos
+  module Authentication
+    class Resources
+      def initialize(client, collection)
+        @client = client
+        @collection = collection
+      end
+
+      def has_resource?(uri)
+        matches = @collection.items.select do |item|
+          item.href == uri
+        end.length > 0
+      end
+
+      def all
+        @collection.items.map do |item|
+          Stub.new(@client, Resource, item.href)
+        end
+      end
+    end
+
+    class Resource
+      def initialize(client, collection)
+        @client = client
+        @collection = collection
+      end
+    end
+  end
+end

data/lib/cosmos_authentication/service.rb

@@ -0,0 +1,71 @@
+require "cosmos/service"
+require "cosmos_authentication/resource_owner"
+
+module Cosmos
+  module Authentication
+    class Service < Cosmos::Service
+      attr_accessor :client_id, :client_secret
+
+      def client_with_credentials
+        raise "No credentials configured." unless client_id && client_secret
+        @client_with_credentials ||= client.dup.tap do |client|
+          client.params['client_id'] = client_id
+          client.params['client_secret'] = client_secret
+        end
+      end
+
+      def client_with_token(access_token)
+        client.dup.tap do |client|
+          client.headers['Authentication'] = "Bearer #{access_token}"
+        end
+      end
+
+      def get_token_with_code(code)
+        client = client_with_credentials
+        response = client.post token_link.href, {
+          grant_type:     'code',
+          code:           code
+        }
+        response.body
+      end
+
+      def get_token_with_refresh_token(refresh_token)
+        client = client_with_credentials
+        response = client.post token_link.href, {
+          :grant_type => 'refresh_token',
+          :refresh_token => refresh_token
+        }
+        response.body
+      end
+
+      def get_token_with_username_and_password(username, password, scope = '')
+        client = client_with_credentials
+        response = client.post token_link.href, {
+          :grant_type       => 'password',
+          :username         => username,
+          :password         => password,
+          :scope            => 'manage_companies'
+        }
+        response.body
+      end
+
+      def resource_owner(access_token, klass = ResourceOwner)
+        client = client_with_token(access_token)
+        href = endpoint.link('resource_owner').href
+        response = client.get(href).body
+        if response.items.length > 0
+          response = client.get(response.items.first.href).body
+          klass.new(client, response)
+        end
+      end
+
+      def token_link
+        endpoint.link('oauth2_token')
+      end
+
+      def use_for_warden_authentication
+        Cosmos::Authentication.warden_service self
+      end
+    end
+  end
+end

data/lib/cosmos_authentication/stub.rb

@@ -0,0 +1,22 @@
+module Cosmos
+  module Authentication
+    class Stub
+      attr_reader :href
+
+      def initialize(client, klass, href)
+        @client = client
+        @klass = klass
+        @href = href
+      end
+
+      def method_missing(method_sym, *args)
+        @object ||= @klass.new(@client, @client.get(href).body)
+        if @object.respond_to?(method_sym)
+          @object.send method_sym, *args
+        else
+          super
+        end
+      end
+    end
+  end
+end

data/lib/cosmos_authentication/version.rb

@@ -0,0 +1,3 @@
+module CosmosAuthentication
+  VERSION = "0.0.1"
+end

data/lib/cosmos_authentication/warden.rb

@@ -0,0 +1,28 @@
+module Cosmos
+  module Authentication
+    module Warden
+      module StrategyMixin
+        def service
+          Cosmos::Authentication.warden_service
+        end
+
+        def resource_owner(access_token)
+          service.resource_owner access_token
+        end
+
+        def find_user_by_access_token(access_token)
+          if ro = resource_owner(access_token)
+            success!(ro)
+          else
+            session[:access_token] = nil
+          end
+        end
+      end
+
+      require "cosmos_authentication/warden_strategies/access_token"
+      require "cosmos_authentication/warden_strategies/code"
+      require "cosmos_authentication/warden_strategies/password"
+      require "cosmos_authentication/warden_strategies/refresh_token"
+    end
+  end
+end

data/lib/cosmos_authentication/warden_strategies/access_token.rb

@@ -0,0 +1,17 @@
+module Cosmos
+  module Authentication
+    module Warden
+      ::Warden::Strategies.add(:access_token) do
+        include StrategyMixin
+
+        def valid?
+          session[:access_token]
+        end
+
+        def authenticate!
+          find_user_by_access_token(session[:access_token])
+        end
+      end
+    end
+  end
+end

data/lib/cosmos_authentication/warden_strategies/code.rb

@@ -0,0 +1,20 @@
+module Cosmos
+  module Authentication
+    module Warden
+      ::Warden::Strategies.add(:code) do
+        include StrategyMixin
+
+        def valid?
+          params[:code]
+        end
+
+        def authenticate!
+          if token = service.get_token_with_code(params[:code])
+            session[:refresh_token] = token['refresh_token']
+            session[:access_token] = token['access_token']
+          end
+        end
+      end
+    end
+  end
+end

data/lib/cosmos_authentication/warden_strategies/password.rb

@@ -0,0 +1,21 @@
+module Cosmos
+  module Authentication
+    module Warden
+      ::Warden::Strategies.add(:password) do
+        include StrategyMixin
+
+        def valid?
+          params[:username] && params[:password]
+        end
+
+        def authenticate!
+          args = [params[:username], params[:password]]
+          if token = service.get_token_with_username_and_password(*args)
+            session[:refresh_token] = token['refresh_token']
+            session[:access_token]  = token['access_token']
+          end
+        end
+      end
+    end
+  end
+end

data/lib/cosmos_authentication/warden_strategies/refresh_token.rb

@@ -0,0 +1,21 @@
+module Cosmos
+  module Authentication
+    module Warden
+      ::Warden::Strategies.add(:refresh_token) do
+        include StrategyMixin
+
+        def valid?
+          session[:refresh_token]
+        end
+
+        def authenticate!
+          if token = service.get_token_with_refresh_token(session[:refresh_token])
+            session[:refresh_token] = token['refresh_token']
+            session[:access_token]  = token['access_token']
+            find_user_by_access_token(session[:access_token])
+          end
+        end
+      end
+    end
+  end
+end

data/lib/cosmos_authentication.rb

@@ -0,0 +1,12 @@
+require "cosmos_authentication/version"
+require "cosmos_authentication/service"
+require "cosmos_authentication/warden" if Warden
+
+module Cosmos
+  module Authentication
+    def self.warden_service(service = nil)
+      @warden_service = service unless service.nil?
+      @warden_service || raise('No authentication service configured for warden.'.inspect)
+    end
+  end
+end

metadata

@@ -0,0 +1,71 @@
+--- !ruby/object:Gem::Specification
+name: cosmos_authentication
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+  prerelease: 
+platform: ruby
+authors:
+- Sebastian Edwards
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2012-04-22 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: cosmos
+  requirement: &70098052432800 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: *70098052432800
+description: A client for the cosmos authentication service.
+email:
+- sebastian@uprise.co.nz
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- Gemfile
+- Rakefile
+- cosmos_authentication.gemspec
+- lib/cosmos_authentication.rb
+- lib/cosmos_authentication/resource_owner.rb
+- lib/cosmos_authentication/resources.rb
+- lib/cosmos_authentication/service.rb
+- lib/cosmos_authentication/stub.rb
+- lib/cosmos_authentication/version.rb
+- lib/cosmos_authentication/warden.rb
+- lib/cosmos_authentication/warden_strategies/access_token.rb
+- lib/cosmos_authentication/warden_strategies/code.rb
+- lib/cosmos_authentication/warden_strategies/password.rb
+- lib/cosmos_authentication/warden_strategies/refresh_token.rb
+homepage: https://github.com/SebastianEdwards/cosmos_authentication
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: cosmos_authentication
+rubygems_version: 1.8.15
+signing_key: 
+specification_version: 3
+summary: A client for the cosmos authentication service.
+test_files: []