RubyGems - couchkeeper - Versions diffs - 0.6.7 - Mend

couchkeeper 0.6.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (240) hide show

data/.gitignore +14 -0
data/.rspec +1 -0
data/.travis.yml +28 -0
data/CHANGELOG.md +198 -0
data/Gemfile +32 -0
data/MIT-LICENSE +20 -0
data/README.md +290 -0
data/Rakefile +18 -0
data/app/assets/javascripts/doorkeeper/application.js +2 -0
data/app/assets/stylesheets/doorkeeper/application.css +18 -0
data/app/assets/stylesheets/doorkeeper/form.css +13 -0
data/app/controllers/doorkeeper/application_controller.rb +7 -0
data/app/controllers/doorkeeper/applications_controller.rb +60 -0
data/app/controllers/doorkeeper/authorizations_controller.rb +57 -0
data/app/controllers/doorkeeper/authorized_applications_controller.rb +12 -0
data/app/controllers/doorkeeper/token_info_controller.rb +12 -0
data/app/controllers/doorkeeper/tokens_controller.rb +20 -0
data/app/helpers/doorkeeper/form_errors_helper.rb +9 -0
data/app/validators/redirect_uri_validator.rb +23 -0
data/app/views/doorkeeper/applications/_form.html.erb +34 -0
data/app/views/doorkeeper/applications/edit.html.erb +13 -0
data/app/views/doorkeeper/applications/index.html.erb +29 -0
data/app/views/doorkeeper/applications/new.html.erb +13 -0
data/app/views/doorkeeper/applications/show.html.erb +26 -0
data/app/views/doorkeeper/authorizations/error.html.erb +6 -0
data/app/views/doorkeeper/authorizations/new.html.erb +37 -0
data/app/views/doorkeeper/authorizations/show.html.erb +4 -0
data/app/views/doorkeeper/authorized_applications/index.html.erb +25 -0
data/app/views/layouts/doorkeeper/application.html.erb +33 -0
data/config/locales/en.yml +68 -0
data/doorkeeper.gemspec +28 -0
data/lib/doorkeeper.rb +64 -0
data/lib/doorkeeper/config.rb +194 -0
data/lib/doorkeeper/doorkeeper_for.rb +76 -0
data/lib/doorkeeper/engine.rb +19 -0
data/lib/doorkeeper/errors.rb +15 -0
data/lib/doorkeeper/helpers/controller.rb +58 -0
data/lib/doorkeeper/helpers/filter.rb +38 -0
data/lib/doorkeeper/models/access_grant.rb +24 -0
data/lib/doorkeeper/models/access_token.rb +95 -0
data/lib/doorkeeper/models/accessible.rb +9 -0
data/lib/doorkeeper/models/active_record/access_grant.rb +5 -0
data/lib/doorkeeper/models/active_record/access_token.rb +21 -0
data/lib/doorkeeper/models/active_record/application.rb +20 -0
data/lib/doorkeeper/models/application.rb +33 -0
data/lib/doorkeeper/models/couchbase/access_grant.rb +10 -0
data/lib/doorkeeper/models/couchbase/access_token.rb +7 -0
data/lib/doorkeeper/models/couchbase/application.rb +35 -0
data/lib/doorkeeper/models/doorkeeper_access_grant/by_token/map.js +5 -0
data/lib/doorkeeper/models/doorkeeper_access_token/by_application_id/map.js +5 -0
data/lib/doorkeeper/models/doorkeeper_access_token/by_application_id_and_resource_owner_id/map.js +5 -0
data/lib/doorkeeper/models/doorkeeper_access_token/by_refresh_token/map.js +5 -0
data/lib/doorkeeper/models/doorkeeper_access_token/by_resource_owner_id/map.js +5 -0
data/lib/doorkeeper/models/doorkeeper_access_token/by_token/map.js +5 -0
data/lib/doorkeeper/models/doorkeeper_application/by_uid/map.js +5 -0
data/lib/doorkeeper/models/doorkeeper_application/by_uid_and_secret/map.js +5 -0
data/lib/doorkeeper/models/doorkeeper_application/show_all/map.js +6 -0
data/lib/doorkeeper/models/expirable.rb +21 -0
data/lib/doorkeeper/models/mongo_mapper/access_grant.rb +28 -0
data/lib/doorkeeper/models/mongo_mapper/access_token.rb +51 -0
data/lib/doorkeeper/models/mongo_mapper/application.rb +30 -0
data/lib/doorkeeper/models/mongo_mapper/revocable.rb +15 -0
data/lib/doorkeeper/models/mongoid/revocable.rb +15 -0
data/lib/doorkeeper/models/mongoid/scopes.rb +15 -0
data/lib/doorkeeper/models/mongoid2/access_grant.rb +22 -0
data/lib/doorkeeper/models/mongoid2/access_token.rb +41 -0
data/lib/doorkeeper/models/mongoid2/application.rb +22 -0
data/lib/doorkeeper/models/mongoid3/access_grant.rb +22 -0
data/lib/doorkeeper/models/mongoid3/access_token.rb +41 -0
data/lib/doorkeeper/models/mongoid3/application.rb +22 -0
data/lib/doorkeeper/models/ownership.rb +16 -0
data/lib/doorkeeper/models/scopes.rb +17 -0
data/lib/doorkeeper/oauth/authorization.rb +10 -0
data/lib/doorkeeper/oauth/authorization/code.rb +32 -0
data/lib/doorkeeper/oauth/authorization/token.rb +28 -0
data/lib/doorkeeper/oauth/authorization/uri_builder.rb +29 -0
data/lib/doorkeeper/oauth/authorization_code_request.rb +82 -0
data/lib/doorkeeper/oauth/client.rb +29 -0
data/lib/doorkeeper/oauth/client/credentials.rb +21 -0
data/lib/doorkeeper/oauth/client/methods.rb +18 -0
data/lib/doorkeeper/oauth/client_credentials/creator.rb +29 -0
data/lib/doorkeeper/oauth/client_credentials/issuer.rb +35 -0
data/lib/doorkeeper/oauth/client_credentials/validation.rb +33 -0
data/lib/doorkeeper/oauth/client_credentials_request.rb +47 -0
data/lib/doorkeeper/oauth/code_request.rb +28 -0
data/lib/doorkeeper/oauth/code_response.rb +37 -0
data/lib/doorkeeper/oauth/error.rb +9 -0
data/lib/doorkeeper/oauth/error_response.rb +44 -0
data/lib/doorkeeper/oauth/helpers/scope_checker.rb +18 -0
data/lib/doorkeeper/oauth/helpers/unique_token.rb +13 -0
data/lib/doorkeeper/oauth/helpers/uri_checker.rb +32 -0
data/lib/doorkeeper/oauth/password_access_token_request.rb +84 -0
data/lib/doorkeeper/oauth/pre_authorization.rb +62 -0
data/lib/doorkeeper/oauth/refresh_token_request.rb +58 -0
data/lib/doorkeeper/oauth/scopes.rb +60 -0
data/lib/doorkeeper/oauth/token.rb +36 -0
data/lib/doorkeeper/oauth/token_request.rb +28 -0
data/lib/doorkeeper/oauth/token_response.rb +29 -0
data/lib/doorkeeper/rails/routes.rb +90 -0
data/lib/doorkeeper/rails/routes/mapper.rb +28 -0
data/lib/doorkeeper/rails/routes/mapping.rb +39 -0
data/lib/doorkeeper/request.rb +33 -0
data/lib/doorkeeper/request/authorization_code.rb +23 -0
data/lib/doorkeeper/request/client_credentials.rb +23 -0
data/lib/doorkeeper/request/code.rb +24 -0
data/lib/doorkeeper/request/password.rb +23 -0
data/lib/doorkeeper/request/refresh_token.rb +23 -0
data/lib/doorkeeper/request/token.rb +24 -0
data/lib/doorkeeper/server.rb +54 -0
data/lib/doorkeeper/validations.rb +30 -0
data/lib/doorkeeper/version.rb +3 -0
data/lib/generators/doorkeeper/application_owner_generator.rb +15 -0
data/lib/generators/doorkeeper/install_generator.rb +12 -0
data/lib/generators/doorkeeper/migration_generator.rb +15 -0
data/lib/generators/doorkeeper/mongo_mapper/indexes_generator.rb +12 -0
data/lib/generators/doorkeeper/templates/README +44 -0
data/lib/generators/doorkeeper/templates/add_owner_to_application_migration.rb +7 -0
data/lib/generators/doorkeeper/templates/indexes.rb +3 -0
data/lib/generators/doorkeeper/templates/initializer.rb +67 -0
data/lib/generators/doorkeeper/templates/migration.rb +42 -0
data/lib/generators/doorkeeper/views_generator.rb +15 -0
data/script/rails +6 -0
data/script/run_all +14 -0
data/spec/controllers/applications_controller_spec.rb +18 -0
data/spec/controllers/authorizations_controller_spec.rb +154 -0
data/spec/controllers/protected_resources_controller_spec.rb +304 -0
data/spec/controllers/token_info_controller_spec.rb +54 -0
data/spec/controllers/tokens_controller_spec.rb +36 -0
data/spec/dummy/Rakefile +7 -0
data/spec/dummy/app/assets/javascripts/application.js +9 -0
data/spec/dummy/app/assets/stylesheets/application.css +7 -0
data/spec/dummy/app/controllers/application_controller.rb +3 -0
data/spec/dummy/app/controllers/custom_authorizations_controller.rb +7 -0
data/spec/dummy/app/controllers/full_protected_resources_controller.rb +12 -0
data/spec/dummy/app/controllers/home_controller.rb +17 -0
data/spec/dummy/app/controllers/metal_controller.rb +11 -0
data/spec/dummy/app/controllers/semi_protected_resources_controller.rb +11 -0
data/spec/dummy/app/helpers/application_helper.rb +5 -0
data/spec/dummy/app/models/user.rb +27 -0
data/spec/dummy/app/views/home/index.html.erb +0 -0
data/spec/dummy/app/views/layouts/application.html.erb +16 -0
data/spec/dummy/config.ru +4 -0
data/spec/dummy/config/application.rb +54 -0
data/spec/dummy/config/boot.rb +6 -0
data/spec/dummy/config/database.yml +15 -0
data/spec/dummy/config/environment.rb +5 -0
data/spec/dummy/config/environments/development.rb +30 -0
data/spec/dummy/config/environments/production.rb +60 -0
data/spec/dummy/config/environments/test.rb +39 -0
data/spec/dummy/config/initializers/backtrace_silencers.rb +7 -0
data/spec/dummy/config/initializers/doorkeeper.rb +56 -0
data/spec/dummy/config/initializers/secret_token.rb +9 -0
data/spec/dummy/config/initializers/session_store.rb +8 -0
data/spec/dummy/config/initializers/wrap_parameters.rb +14 -0
data/spec/dummy/config/locales/doorkeeper.en.yml +5 -0
data/spec/dummy/config/mongo.yml +11 -0
data/spec/dummy/config/mongoid2.yml +9 -0
data/spec/dummy/config/mongoid3.yml +18 -0
data/spec/dummy/config/routes.rb +38 -0
data/spec/dummy/db/migrate/20111122132257_create_users.rb +9 -0
data/spec/dummy/db/migrate/20120312140401_add_password_to_users.rb +5 -0
data/spec/dummy/db/migrate/20120524202412_create_doorkeeper_tables.rb +44 -0
data/spec/dummy/db/schema.rb +64 -0
data/spec/dummy/public/404.html +26 -0
data/spec/dummy/public/422.html +26 -0
data/spec/dummy/public/500.html +26 -0
data/spec/dummy/public/favicon.ico +0 -0
data/spec/dummy/script/rails +6 -0
data/spec/factories/access_grant.rb +9 -0
data/spec/factories/access_token.rb +7 -0
data/spec/factories/application.rb +6 -0
data/spec/generators/application_owner_generator_spec.rb +23 -0
data/spec/generators/install_generator_spec.rb +31 -0
data/spec/generators/migration_generator_spec.rb +20 -0
data/spec/generators/templates/routes.rb +3 -0
data/spec/generators/views_generator_spec.rb +27 -0
data/spec/lib/config_spec.rb +170 -0
data/spec/lib/models/expirable_spec.rb +51 -0
data/spec/lib/models/revocable_spec.rb +31 -0
data/spec/lib/models/scopes_spec.rb +32 -0
data/spec/lib/oauth/authorization/uri_builder_spec.rb +37 -0
data/spec/lib/oauth/authorization_code_request_spec.rb +80 -0
data/spec/lib/oauth/client/credentials_spec.rb +47 -0
data/spec/lib/oauth/client/methods_spec.rb +54 -0
data/spec/lib/oauth/client_credentials/creator_spec.rb +47 -0
data/spec/lib/oauth/client_credentials/issuer_spec.rb +57 -0
data/spec/lib/oauth/client_credentials/validation_spec.rb +29 -0
data/spec/lib/oauth/client_credentials_integration_spec.rb +27 -0
data/spec/lib/oauth/client_credentials_request_spec.rb +64 -0
data/spec/lib/oauth/client_spec.rb +39 -0
data/spec/lib/oauth/code_request_spec.rb +44 -0
data/spec/lib/oauth/error_response_spec.rb +40 -0
data/spec/lib/oauth/error_spec.rb +19 -0
data/spec/lib/oauth/helpers/scope_checker_spec.rb +74 -0
data/spec/lib/oauth/helpers/unique_token_spec.rb +20 -0
data/spec/lib/oauth/helpers/uri_checker_spec.rb +64 -0
data/spec/lib/oauth/password_access_token_request_spec.rb +65 -0
data/spec/lib/oauth/pre_authorization_spec.rb +80 -0
data/spec/lib/oauth/refresh_token_request_spec.rb +56 -0
data/spec/lib/oauth/scopes_spec.rb +115 -0
data/spec/lib/oauth/token_request_spec.rb +46 -0
data/spec/lib/oauth/token_response_spec.rb +52 -0
data/spec/lib/oauth/token_spec.rb +83 -0
data/spec/lib/server_spec.rb +24 -0
data/spec/models/doorkeeper/access_grant_spec.rb +36 -0
data/spec/models/doorkeeper/access_token_spec.rb +153 -0
data/spec/models/doorkeeper/application_spec.rb +162 -0
data/spec/requests/applications/applications_request_spec.rb +92 -0
data/spec/requests/applications/authorized_applications_spec.rb +30 -0
data/spec/requests/endpoints/authorization_spec.rb +47 -0
data/spec/requests/endpoints/token_spec.rb +46 -0
data/spec/requests/flows/authorization_code_errors_spec.rb +66 -0
data/spec/requests/flows/authorization_code_spec.rb +135 -0
data/spec/requests/flows/client_credentials_spec.rb +58 -0
data/spec/requests/flows/implicit_grant_errors_spec.rb +31 -0
data/spec/requests/flows/implicit_grant_spec.rb +19 -0
data/spec/requests/flows/password_spec.rb +78 -0
data/spec/requests/flows/refresh_token_spec.rb +71 -0
data/spec/requests/flows/skip_authorization_spec.rb +40 -0
data/spec/requests/protected_resources/metal_spec.rb +14 -0
data/spec/requests/protected_resources/private_api_spec.rb +50 -0
data/spec/routing/custom_controller_routes_spec.rb +44 -0
data/spec/routing/default_routes_spec.rb +32 -0
data/spec/spec_helper.rb +2 -0
data/spec/spec_helper_integration.rb +40 -0
data/spec/support/dependencies/factory_girl.rb +2 -0
data/spec/support/helpers/access_token_request_helper.rb +11 -0
data/spec/support/helpers/authorization_request_helper.rb +32 -0
data/spec/support/helpers/config_helper.rb +9 -0
data/spec/support/helpers/model_helper.rb +45 -0
data/spec/support/helpers/request_spec_helper.rb +72 -0
data/spec/support/helpers/url_helper.rb +51 -0
data/spec/support/orm/active_record.rb +11 -0
data/spec/support/orm/mongo_mapper.rb +26 -0
data/spec/support/orm/mongoid.rb +31 -0
data/spec/support/shared/controllers_shared_context.rb +60 -0
data/spec/support/shared/models_shared_examples.rb +60 -0
data/spec/validators/redirect_uri_validator_spec.rb +47 -0
data/vendor/assets/stylesheets/doorkeeper/bootstrap.min.css +356 -0
metadata +430 -0

data/spec/lib/oauth/error_spec.rb ADDED

@@ -0,0 +1,19 @@
+require 'spec_helper'
+require 'active_support/i18n'
+require 'doorkeeper/oauth/error'
+module Doorkeeper::OAuth
+  describe Error do
+    subject { Error.new(:some_error, :some_state) }
+    it { should respond_to(:name) }
+    it { should respond_to(:state) }
+    describe :description do
+      it 'is translated from translation messages' do
+        I18n.should_receive(:translate).with(:some_error, :scope => [:doorkeeper, :errors, :messages])
+        subject.description
+      end
+    end
+  end
+end

data/spec/lib/oauth/helpers/scope_checker_spec.rb ADDED

@@ -0,0 +1,74 @@
+require 'spec_helper'
+require 'active_support/core_ext/string'
+require 'doorkeeper/oauth/helpers/scope_checker'
+require 'doorkeeper/oauth/scopes'
+module Doorkeeper::OAuth::Helpers
+  describe ScopeChecker, ".matches?" do
+    def new_scope(*args)
+      Doorkeeper::OAuth::Scopes.from_array args
+    end
+    it "true if scopes matches" do
+      scopes = new_scope :public
+      scopes_to_match = new_scope :public
+      ScopeChecker.matches?(scopes, scopes_to_match).should be_true
+    end
+    it "is false when scopes differs" do
+      scopes = new_scope :public
+      scopes_to_match = new_scope :write
+      ScopeChecker.matches?(scopes, scopes_to_match).should be_false
+    end
+    it "is false when scope in array is missing" do
+      scopes = new_scope :public
+      scopes_to_match = new_scope :public, :write
+      ScopeChecker.matches?(scopes, scopes_to_match).should be_false
+    end
+    it "is false when scope in string is missing" do
+      scopes = new_scope :public, :write
+      scopes_to_match = new_scope :public
+      ScopeChecker.matches?(scopes, scopes_to_match).should be_false
+    end
+    it "is false when any of attributes is nil" do
+      ScopeChecker.matches?(nil, stub).should be_false
+      ScopeChecker.matches?(stub, nil).should be_false
+    end
+  end
+  describe ScopeChecker, ".valid?" do
+    let(:server_scopes) { Doorkeeper::OAuth::Scopes.new }
+    it "is valid if scope is present" do
+      server_scopes.add :scope
+      ScopeChecker.valid?("scope", server_scopes).should be_true
+    end
+    it "is invalid if includes tabs space" do
+      ScopeChecker.valid?("\tsomething", server_scopes).should be_false
+    end
+    it "is invalid if scope is not present" do
+      ScopeChecker.valid?(nil, server_scopes).should be_false
+    end
+    it "is invalid if scope is blank" do
+      ScopeChecker.valid?(" ", server_scopes).should be_false
+    end
+    it "is invalid if includes return space" do
+      ScopeChecker.valid?("scope\r", server_scopes).should be_false
+    end
+    it "is invalid if includes new lines" do
+      ScopeChecker.valid?("scope\nanother", server_scopes).should be_false
+    end
+    it "is invalid if any scope is not included in server scopes" do
+      ScopeChecker.valid?("scope another", server_scopes).should be_false
+    end
+  end
+end

data/spec/lib/oauth/helpers/unique_token_spec.rb ADDED

@@ -0,0 +1,20 @@
+require 'spec_helper'
+require 'doorkeeper/oauth/helpers/unique_token'
+module Doorkeeper::OAuth::Helpers
+  describe UniqueToken do
+    let :generator do
+      lambda { |size| "a" * size }
+    end
+    it "is able to customize the generator method" do
+      token = UniqueToken.generate(:generator => generator)
+      token.should == "a" * 32
+    end
+    it "is able to customize the size of the token" do
+      token = UniqueToken.generate(:generator => generator, :size => 2)
+      token.should == "aa"
+    end
+  end
+end

data/spec/lib/oauth/helpers/uri_checker_spec.rb ADDED

@@ -0,0 +1,64 @@
+require 'spec_helper'
+require 'uri'
+require 'doorkeeper/oauth/helpers/uri_checker'
+module Doorkeeper::OAuth::Helpers
+  describe URIChecker do
+    describe ".valid?" do
+      it "is valid for valid uris" do
+        uri = "http://app.co"
+        URIChecker.valid?(uri).should be_true
+      end
+      it "is valid if include path param" do
+        uri = "http://app.co/path"
+        URIChecker.valid?(uri).should be_true
+      end
+      it "is valid if include query param" do
+        uri = "http://app.co/?query=1"
+        URIChecker.valid?(uri).should be_true
+      end
+      it "is invalid if uri includes fragment" do
+        uri = "http://app.co/test#fragment"
+        URIChecker.valid?(uri).should be_false
+      end
+      it "is invalid if scheme is missing" do
+        uri = "app.co"
+        URIChecker.valid?(uri).should be_false
+      end
+      it "is invalid if is a relative uri" do
+        uri = "/abc/123"
+        URIChecker.valid?(uri).should be_false
+      end
+      it "is invalid if is not a url" do
+        uri = "http://"
+        URIChecker.valid?(uri).should be_false
+      end
+    end
+    describe ".matches?" do
+      it "is true if both url matches" do
+        uri = client_uri = 'http://app.co/aaa'
+        URIChecker.matches?(uri, client_uri).should be_true
+      end
+      it "ignores query parameter on comparsion" do
+        uri = 'http://app.co/?query=hello'
+        client_uri = 'http://app.co'
+        URIChecker.matches?(uri, client_uri).should be_true
+      end
+    end
+    describe ".valid_for_authorization?" do
+      it "is true if valid and matches" do
+        uri = client_uri = 'http://app.co/aaa'
+        URIChecker.valid_for_authorization?(uri, client_uri).should be_true
+      end
+    end
+  end
+end

data/spec/lib/oauth/password_access_token_request_spec.rb ADDED

@@ -0,0 +1,65 @@
+require 'spec_helper_integration'
+module Doorkeeper::OAuth
+  describe PasswordAccessTokenRequest do
+    let(:server) { mock :server, :default_scopes => Doorkeeper::OAuth::Scopes.new, :access_token_expires_in => 2.hours, :refresh_token_enabled? => false }
+    let(:client) { FactoryGirl.create(:application) }
+    let(:owner)  { mock :owner, :id => 99 }
+    subject do
+      PasswordAccessTokenRequest.new(server, client, owner)
+    end
+    it 'issues a new token for the client' do
+      expect do
+        subject.authorize
+      end.to change { client.access_tokens.count }.by(1)
+    end
+    it "requires the owner" do
+      subject.resource_owner = nil
+      subject.validate
+      subject.error.should == :invalid_resource_owner
+    end
+    it 'requires the client' do
+      subject.client = nil
+      subject.validate
+      subject.error.should == :invalid_client
+    end
+    it 'skips token creation if there is already one' do
+      FactoryGirl.create(:access_token, :application_id => client.id, :resource_owner_id => owner.id)
+      expect do
+        subject.authorize
+      end.to_not change { Doorkeeper::AccessToken.count }
+    end
+    it 'revokes old token if expired' do
+      token = FactoryGirl.create(:access_token, :application_id => client.id, :resource_owner_id => owner.id, :expires_in => -100)
+      expect do
+        subject.authorize
+      end.to change { token.reload.revoked? }
+    end
+    describe "with scopes" do
+      subject do
+        PasswordAccessTokenRequest.new(server, client, owner, :scope => 'public')
+      end
+      it 'validates the current scope' do
+        server.stub :scopes => Doorkeeper::OAuth::Scopes.from_string('another')
+        subject.validate
+        subject.error.should == :invalid_scope
+      end
+      it 'creates the token with scopes' do
+        server.stub :scopes => Doorkeeper::OAuth::Scopes.from_string("public")
+        expect {
+          subject.authorize
+        }.to change { Doorkeeper::AccessToken.count }.by(1)
+        Doorkeeper::AccessToken.last.scopes.should include(:public)
+      end
+    end
+  end
+end

data/spec/lib/oauth/pre_authorization_spec.rb ADDED

@@ -0,0 +1,80 @@
+require "spec_helper_integration"
+module Doorkeeper::OAuth
+  describe PreAuthorization do
+    let(:server) { mock :server, :default_scopes => Scopes.new, :scopes => Scopes.from_string('public') }
+    let(:client) { mock :client, :redirect_uri => 'http://tst.com/auth' }
+    let :attributes do
+      {
+        :response_type => 'code',
+        :redirect_uri => 'http://tst.com/auth',
+        :state => 'save-this'
+      }
+    end
+    subject do
+      PreAuthorization.new(server, client, attributes)
+    end
+    it 'is authorizable when request is valid' do
+      subject.should be_authorizable
+    end
+    it 'accepts code as response type' do
+      subject.response_type = 'code'
+      subject.should be_authorizable
+    end
+    it 'accepts token as response type' do
+      subject.response_type = 'token'
+      subject.should be_authorizable
+    end
+    it 'accepts valid scopes' do
+      subject.scope = 'public'
+      subject.should be_authorizable
+    end
+    it 'uses default scopes when none is required' do
+      server.stub :default_scopes => Scopes.from_string('default')
+      subject.scope = nil
+      subject.scope.should  == 'default'
+      subject.scopes.should == Scopes.from_string('default')
+    end
+    it 'accepts test uri' do
+      subject.redirect_uri = 'urn:ietf:wg:oauth:2.0:oob'
+      subject.should be_authorizable
+    end
+    it "matches the redirect uri against client's one" do
+      subject.redirect_uri = 'http://nothesame.com'
+      subject.should_not be_authorizable
+    end
+    it 'stores the state' do
+      subject.state.should == 'save-this'
+    end
+    it 'rejects if response type is not allowed' do
+      subject.response_type = 'whops'
+      subject.should_not be_authorizable
+    end
+    it 'requires an existing client' do
+      subject.client = nil
+      subject.should_not be_authorizable
+    end
+    it 'requires a redirect uri' do
+      subject.redirect_uri = nil
+      subject.should_not be_authorizable
+    end
+    it 'rejects non-valid scopes' do
+      subject.scope = 'invalid'
+      subject.should_not be_authorizable
+    end
+  end
+end

data/spec/lib/oauth/refresh_token_request_spec.rb ADDED

@@ -0,0 +1,56 @@
+require 'spec_helper_integration'
+module Doorkeeper::OAuth
+  describe RefreshTokenRequest do
+    let(:server)         { mock :server, :access_token_expires_in => 2.minutes }
+    let!(:refresh_token) { FactoryGirl.create(:access_token, :use_refresh_token => true) }
+    let(:client)         { refresh_token.application }
+    subject do
+      RefreshTokenRequest.new server, refresh_token, client
+    end
+    it 'issues a new token for the client' do
+      expect do
+        subject.authorize
+      end.to change { client.access_tokens.count }.by(1)
+    end
+    it 'revokes the previous token' do
+      expect do
+        subject.authorize
+      end.to change { refresh_token.revoked? }.from(false).to(true)
+    end
+    it 'requires the refresh token' do
+      subject.refresh_token = nil
+      subject.validate
+      subject.error.should == :invalid_request
+    end
+    it 'requires client' do
+      subject.client = nil
+      subject.validate
+      subject.error.should == :invalid_client
+    end
+    it "requires the token's client and current client to match" do
+      subject.client = FactoryGirl.create(:application)
+      subject.validate
+      subject.error.should == :invalid_client
+    end
+    it 'rejects revoked tokens' do
+      refresh_token.revoke
+      subject.validate
+      subject.error.should == :invalid_request
+    end
+    it 'accepts expired tokens' do
+      refresh_token.expires_in = -1
+      refresh_token.save
+      subject.validate
+      subject.should be_valid
+    end
+  end
+end

data/spec/lib/oauth/scopes_spec.rb ADDED

@@ -0,0 +1,115 @@
+require 'spec_helper'
+require 'active_support/core_ext/module/delegation'
+require 'active_support/core_ext/string'
+require 'doorkeeper/oauth/scopes'
+module Doorkeeper::OAuth
+  describe Scopes do
+    describe :add do
+      it 'allows you to add scopes with symbols' do
+        subject.add :public
+        subject.all.should == [:public]
+      end
+      it 'allows you to add scopes with strings' do
+        subject.add "public"
+        subject.all.should == [:public]
+      end
+      it 'do not add already included scopes' do
+        subject.add :public
+        subject.add :public
+        subject.all.should == [:public]
+      end
+    end
+    describe :exists do
+      before do
+        subject.add :public
+      end
+      it 'returns true if scope with given name is present' do
+        subject.exists?("public").should be_true
+      end
+      it 'returns false if scope with given name does not exist' do
+        subject.exists?("other").should be_false
+      end
+      it 'handles symbols' do
+        subject.exists?(:public).should be_true
+        subject.exists?(:other).should be_false
+      end
+    end
+    describe ".from_string" do
+      let(:string) { "public write" }
+      subject { Scopes.from_string(string) }
+      it { should be_a(Scopes) }
+      its(:all) { should == [:public, :write] }
+    end
+    describe :+ do
+      it "can add to another scope object" do
+        scopes = Scopes.from_string("public") + Scopes.from_string("admin")
+        scopes.all.should == [:public, :admin]
+      end
+      it "does not change the existing object" do
+        origin = Scopes.from_string("public")
+        new_scope = origin + Scopes.from_string("admin")
+        origin.to_s.should == "public"
+      end
+      it "raises an error if cannot handle addition" do
+        expect {
+          Scopes.from_string("public") + "admin"
+        }.to raise_error(NoMethodError)
+      end
+    end
+    describe :== do
+      it 'is equal to another set of scopes' do
+        Scopes.from_string("public").should == Scopes.from_string("public")
+      end
+      it 'is equal to another set of scopes with no particular order' do
+        Scopes.from_string("public write").should == Scopes.from_string("write public")
+      end
+      it 'differs from another set of scopes when scopes are not the same' do
+        Scopes.from_string("public write").should_not == Scopes.from_string("write")
+      end
+    end
+    describe :has_scopes? do
+      subject { Scopes.from_string("public admin") }
+      it "returns true when at least one scope is included" do
+        subject.has_scopes?(Scopes.from_string("public")).should be_true
+      end
+      it "returns true when all scopes are included" do
+        subject.has_scopes?(Scopes.from_string("public admin")).should be_true
+      end
+      it "is true if all scopes are included in any order" do
+        subject.has_scopes?(Scopes.from_string("admin public")).should be_true
+      end
+      it "is false if no scopes are included" do
+        subject.has_scopes?(Scopes.from_string("notexistent")).should be_false
+      end
+      it "returns false when any scope is not included" do
+        subject.has_scopes?(Scopes.from_string("public nope")).should be_false
+      end
+      it "is false if no scopes are included even for existing ones" do
+        subject.has_scopes?(Scopes.from_string("public admin notexistent")).should be_false
+      end
+    end
+  end
+end