couchkeeper 0.6.7

data/lib/doorkeeper/models/doorkeeper_application/by_uid/map.js

@@ -0,0 +1,5 @@
+function(doc) {
+  if(doc.type == "doorkeeper_application") {
+    emit([doc.id]);
+  }
+}

data/lib/doorkeeper/models/doorkeeper_application/by_uid_and_secret/map.js

@@ -0,0 +1,5 @@
+function(doc) {
+  if(doc.type == "doorkeeper_application") {
+    emit([doc.id, doc.secret]);
+  }
+}

data/lib/doorkeeper/models/doorkeeper_application/show_all/map.js

@@ -0,0 +1,6 @@
+function (doc, meta)
+{
+  if(doc.type == "doorkeeper_application") {
+    emit(null, [doc.name, doc.secret, doc.redirect_uri]);
+  }
+}

data/lib/doorkeeper/models/expirable.rb

@@ -0,0 +1,21 @@
+module Doorkeeper
+  module Models
+    module Expirable
+      def expired?
+        expires_in && Time.now > expired_time
+      end
+
+      def expired_time
+        created_at + expires_in.seconds
+      end
+
+      def expires_in_seconds
+        return nil if expires_in.nil?
+        expires = (created_at + expires_in.seconds) - Time.now
+        expires_sec = expires.seconds.round(0)
+        expires_sec > 0 ? expires_sec : 0  
+      end
+      private :expired_time
+    end
+  end
+end

data/lib/doorkeeper/models/mongo_mapper/access_grant.rb

@@ -0,0 +1,28 @@
+require 'doorkeeper/models/mongo_mapper/revocable'
+
+module Doorkeeper
+  class AccessGrant
+    include MongoMapper::Document
+    include Doorkeeper::Models::MongoMapper::Revocable
+    safe
+    timestamps!
+
+    set_collection_name "oauth_access_grants"
+
+    key :resource_owner_id, ObjectId
+    key :application_id,    ObjectId
+    key :token,             String
+    key :expires_in,        Integer
+    key :redirect_uri,      String
+    key :revoked_at,        DateTime
+    key :scopes,            String
+
+    def scopes=(value)
+      write_attribute :scopes, value if value.present?
+    end
+
+    def self.create_indexes
+      ensure_index :token, :unique => true
+    end
+  end
+end

data/lib/doorkeeper/models/mongo_mapper/access_token.rb

@@ -0,0 +1,51 @@
+require 'doorkeeper/models/mongo_mapper/revocable'
+
+module Doorkeeper
+  class AccessToken
+    include MongoMapper::Document
+    include Doorkeeper::Models::MongoMapper::Revocable
+    safe
+    timestamps!
+
+    set_collection_name "oauth_access_tokens"
+
+    key :resource_owner_id, ObjectId
+    key :token,             String
+    key :expires_in,        Integer
+    key :revoked_at,        DateTime
+    key :scopes,            String
+
+    def scopes=(value)
+      write_attribute :scopes, value if value.present?
+    end
+
+    def self.last
+      self.sort(:created_at).last
+    end
+
+    def self.delete_all_for(application_id, resource_owner)
+      delete_all(:application_id => application_id,
+                 :resource_owner_id => resource_owner.id)
+    end
+    private_class_method :delete_all_for
+
+    def self.last_authorized_token_for(application, resource_owner_id)
+      where(:application_id => application.id,
+            :resource_owner_id => resource_owner_id,
+            :revoked_at => nil).
+      sort(:created_at.desc).
+      limit(1).
+      first
+    end
+    private_class_method :last_authorized_token_for
+
+    def refresh_token
+      self[:refresh_token]
+    end
+
+    def self.create_indexes
+      ensure_index :token, :unique => true
+      ensure_index [[:refresh_token, 1]], :unique => true, :sparse => true
+    end
+  end
+end

data/lib/doorkeeper/models/mongo_mapper/application.rb

@@ -0,0 +1,30 @@
+module Doorkeeper
+  class Application
+    include MongoMapper::Document
+    safe
+    timestamps!
+
+    set_collection_name "oauth_applications"
+
+    many :authorized_tokens, :class_name => "Doorkeeper::AccessToken"
+
+    key :name,         String
+    key :uid,          String
+    key :secret,       String
+    key :redirect_uri, String
+    key :scopes,       String
+
+    def scopes=(value)
+      write_attribute :scopes, value if value.present?
+    end
+
+    def self.authorized_for(resource_owner)
+      ids = AccessToken.where(:resource_owner_id => resource_owner.id, :revoked_at => nil).map(&:application_id)
+      find(ids)
+    end
+
+    def self.create_indexes
+      ensure_index :uid, :unique => true
+    end
+  end
+end

data/lib/doorkeeper/models/mongo_mapper/revocable.rb

@@ -0,0 +1,15 @@
+module Doorkeeper
+  module Models
+    module MongoMapper
+      module Revocable
+        def self.included(base)
+          base.class_eval do
+            def update_column(attr, val)
+              update_attribute attr, val
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/doorkeeper/models/mongoid/revocable.rb

@@ -0,0 +1,15 @@
+module Doorkeeper
+  module Models
+    module Mongoid
+      module Revocable
+        def self.included(base)
+          base.class_eval do
+            def update_column(attr, val)
+              update_attribute attr, val
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/doorkeeper/models/mongoid/scopes.rb

@@ -0,0 +1,15 @@
+module Doorkeeper
+  module Models
+    module Mongoid
+      module Scopes
+        def self.included(base)
+          base.class_eval do
+            def scopes=(value)
+              write_attribute :scopes, value if value.present?
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/doorkeeper/models/mongoid2/access_grant.rb

@@ -0,0 +1,22 @@
+require 'doorkeeper/models/mongoid/revocable'
+require 'doorkeeper/models/mongoid/scopes'
+
+module Doorkeeper
+  class AccessGrant
+    include Mongoid::Document
+    include Mongoid::Timestamps
+    include Doorkeeper::Models::Mongoid::Revocable
+    include Doorkeeper::Models::Mongoid::Scopes
+
+    self.store_in :oauth_access_grants
+
+    field :resource_owner_id, :type => Integer
+    field :application_id, :type => Hash
+    field :token, :type => String
+    field :expires_in, :type => Integer
+    field :redirect_uri, :type => String
+    field :revoked_at, :type => DateTime
+
+    index :token, :unique => true
+  end
+end

data/lib/doorkeeper/models/mongoid2/access_token.rb

@@ -0,0 +1,41 @@
+require 'doorkeeper/models/mongoid/revocable'
+require 'doorkeeper/models/mongoid/scopes'
+
+module Doorkeeper
+  class AccessToken
+    include Mongoid::Document
+    include Mongoid::Timestamps
+    include Doorkeeper::Models::Mongoid::Revocable
+    include Doorkeeper::Models::Mongoid::Scopes
+
+    self.store_in :oauth_access_tokens
+
+    field :resource_owner_id, :type => Integer
+    field :token, :type => String
+    field :expires_in, :type => Integer
+    field :revoked_at, :type => DateTime
+
+    index :token, :unique => true
+    index :refresh_token, :unique => true, :sparse => true
+
+    def self.delete_all_for(application_id, resource_owner)
+      where(:application_id => application_id,
+            :resource_owner_id => resource_owner.id).delete_all
+    end
+    private_class_method :delete_all_for
+
+    def self.last_authorized_token_for(application, resource_owner_id)
+      where(:application_id => application.id,
+            :resource_owner_id => resource_owner_id,
+            :revoked_at => nil).
+      order_by([:created_at, :desc]).
+      limit(1).
+      first
+    end
+    private_class_method :last_authorized_token_for
+
+    def refresh_token
+      self[:refresh_token]
+    end
+  end
+end

data/lib/doorkeeper/models/mongoid2/application.rb

@@ -0,0 +1,22 @@
+module Doorkeeper
+  class Application
+    include Mongoid::Document
+    include Mongoid::Timestamps
+
+    self.store_in :oauth_applications
+
+    field :name, :type => String
+    field :uid, :type => String
+    field :secret, :type => String
+    field :redirect_uri, :type => String
+
+    index :uid, :unique => true
+
+    has_many :authorized_tokens, :class_name => "Doorkeeper::AccessToken"
+
+    def self.authorized_for(resource_owner)
+      ids = AccessToken.where(:resource_owner_id => resource_owner.id, :revoked_at => nil).map(&:application_id)
+      find(ids)
+    end
+  end
+end

data/lib/doorkeeper/models/mongoid3/access_grant.rb

@@ -0,0 +1,22 @@
+require 'doorkeeper/models/mongoid/revocable'
+require 'doorkeeper/models/mongoid/scopes'
+
+module Doorkeeper
+  class AccessGrant
+    include Mongoid::Document
+    include Mongoid::Timestamps
+    include Doorkeeper::Models::Mongoid::Revocable
+    include Doorkeeper::Models::Mongoid::Scopes
+
+    self.store_in collection: :oauth_access_grants
+
+    field :resource_owner_id, :type => Moped::BSON::ObjectId
+    field :application_id, :type => Hash
+    field :token, :type => String
+    field :expires_in, :type => Integer
+    field :redirect_uri, :type => String
+    field :revoked_at, :type => DateTime
+
+    index({ token: 1 }, { unique: true })
+  end
+end

data/lib/doorkeeper/models/mongoid3/access_token.rb

@@ -0,0 +1,41 @@
+require 'doorkeeper/models/mongoid/revocable'
+require 'doorkeeper/models/mongoid/scopes'
+
+module Doorkeeper
+  class AccessToken
+    include Mongoid::Document
+    include Mongoid::Timestamps
+    include Doorkeeper::Models::Mongoid::Revocable
+    include Doorkeeper::Models::Mongoid::Scopes
+
+    self.store_in collection: :oauth_access_tokens
+
+    field :resource_owner_id, :type => Moped::BSON::ObjectId
+    field :token, :type => String
+    field :expires_in, :type => Integer
+    field :revoked_at, :type => DateTime
+
+    index({ token: 1 }, { unique: true })
+    index({ refresh_token: 1 }, { unique: true, sparse: true })
+
+    def self.delete_all_for(application_id, resource_owner)
+      where(:application_id => application_id,
+            :resource_owner_id => resource_owner.id).delete_all
+    end
+    private_class_method :delete_all_for
+
+    def self.last_authorized_token_for(application, resource_owner_id)
+      where(:application_id => application.id,
+            :resource_owner_id => resource_owner_id,
+            :revoked_at => nil).
+      order_by([:created_at, :desc]).
+      limit(1).
+      first
+    end
+    private_class_method :last_authorized_token_for
+
+    def refresh_token
+      self[:refresh_token]
+    end
+  end
+end

data/lib/doorkeeper/models/mongoid3/application.rb

@@ -0,0 +1,22 @@
+module Doorkeeper
+  class Application
+    include Mongoid::Document
+    include Mongoid::Timestamps
+
+    self.store_in collection: :oauth_applications
+
+    field :name, :type => String
+    field :uid, :type => String
+    field :secret, :type => String
+    field :redirect_uri, :type => String
+
+    index({ uid: 1 }, { unique: true })
+
+    has_many :authorized_tokens, :class_name => "Doorkeeper::AccessToken"
+
+    def self.authorized_for(resource_owner)
+      ids = AccessToken.where(:resource_owner_id => resource_owner.id, :revoked_at => nil).map(&:application_id)
+      find(ids)
+    end
+  end
+end

data/lib/doorkeeper/models/ownership.rb

@@ -0,0 +1,16 @@
+module Doorkeeper
+  module Models
+    module Ownership
+      def validate_owner?
+        Doorkeeper.configuration.confirm_application_owner?
+      end    
+  
+      def self.included(base)
+        base.class_eval do
+          belongs_to :owner, :polymorphic => true
+          validates :owner, :presence => true, :if => :validate_owner?      
+        end
+      end
+    end
+  end
+end

data/lib/doorkeeper/models/scopes.rb

@@ -0,0 +1,17 @@
+module Doorkeeper
+  module Models
+    module Scopes
+      def self.included(base)
+        base.class_eval do
+          define_method :scopes do
+            Doorkeeper::OAuth::Scopes.from_string(self[:scopes])
+          end
+
+          define_method :scopes_string do
+            Doorkeeper::OAuth::Scopes.from_string(self[:scopes]).to_s
+          end
+        end
+      end
+    end
+  end
+end

data/lib/doorkeeper/oauth/authorization.rb

@@ -0,0 +1,10 @@
+module Doorkeeper
+  module OAuth
+    # TODO: move this to doorkeeper.rb
+    module Authorization
+      autoload :Code,       "doorkeeper/oauth/authorization/code"
+      autoload :Token,      "doorkeeper/oauth/authorization/token"
+      autoload :URIBuilder, "doorkeeper/oauth/authorization/uri_builder"
+    end
+  end
+end

data/lib/doorkeeper/oauth/authorization/code.rb

@@ -0,0 +1,32 @@
+module Doorkeeper
+  module OAuth
+    module Authorization
+      class Code
+        attr_accessor :pre_auth, :resource_owner, :token
+
+        def initialize(pre_auth, resource_owner)
+          @pre_auth       = pre_auth
+          @resource_owner = resource_owner
+        end
+
+        def issue_token
+          @token ||= AccessGrant.create!(
+            :application_id    => pre_auth.client.id,
+            :resource_owner_id => resource_owner.id,
+            #
+            # This is how we expire the document using couchbase
+            # Used to be :expires_in => configuration.authorization_code_expires_in
+            #
+            :ttl        => configuration.authorization_code_expires_in,
+            :redirect_uri      => pre_auth.redirect_uri,
+            :scopes            => pre_auth.scopes.to_s
+          )
+        end
+
+        def configuration
+          Doorkeeper.configuration
+        end
+      end
+    end
+  end
+end