currentuser-services 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 94878212c7bc434fdee19a6e540ccf1c4eaf9fd1
+  data.tar.gz: 4f4b78e39e7c871cc1e9c82f63026fa96c6dc49e
+SHA512:
+  metadata.gz: 5ac7cc36b8bb1e21fd296bda9a945927a70c1455bef48676ee20b89e0e266a7de73a21480e00f75df8dad88cbe0be002b64d8ff2109c26abd4af33a16da14640
+  data.tar.gz: 8c0220347aa8d37fbb551ccd780f1ee64ae0e76ef6f831aac0ca365614eeb712f0b964c2282be88896d09f556ceea8431539bd36ae312beeb33a25bac3595b5b

data/.document

@@ -0,0 +1,5 @@
+lib/**/*.rb
+bin/*
+- 
+features/**/*.feature
+LICENSE.txt

data/Gemfile

@@ -0,0 +1,19 @@
+source 'https://rubygems.org'
+
+# Add dependencies required to use your gem here.
+gem 'gem_config'
+gem 'encrypto_signo'
+gem 'rails', '~>4.0'
+
+# Add dependencies to develop your gem here.
+# Include everything needed to run rake, tests, features, etc.
+group :development do
+  gem 'awesome_print'
+  gem 'minitest-reporters'
+  gem 'dotenv'
+  gem 'bundler', '~> 1.0'
+  gem 'jeweler', '~> 2.0.1'
+  gem 'minitest-rails-capybara'
+  gem 'capybara-mechanize'
+  gem 'currentuser-data', path: '~/dev/currentuser-data-gem'
+end

data/LICENSE.txt

@@ -0,0 +1,20 @@
+Copyright (c) 2014 eric-currentuser
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,117 @@
+# currentuser-services
+
+Offsite sign up and sign in forms for [Currentuser.io](http://www.currentuser.io).
+
+If you want to manage your own sign_up, sign_in and sign_out actions you should use the gem `currentuser-data` instead.
+
+[![Gem Version](https://badge.fury.io/rb/currentuser-services.svg)](http://badge.fury.io/rb/currentuser-services)
+
+## Configuration
+
+Create your project on [Currentuser.io](http://www.currentuser.io).
+
+Add `currentuser-services` gem in your `Gemfile`:
+```ruby
+# Gemfile
+gem 'currentuser-services'
+```
+Add an initializer file:
+```ruby
+# config/initializers/currentuser.rb (the exact name of the file has no impact)
+Currentuser::Services.configure do |config|
+  config.project_id = 'your_project_id'
+end
+```
+Call `currentuser` in your routes definition:
+```ruby
+# config/routes.rb
+MyApplication::Application.routes.draw do
+  currentuser
+end
+```
+
+## Usage
+
+* Use `currentuser_sign_up_url`, `currentuser_sign_in_url` and `currentuser_sign_out_url`in your navigation to allow
+ visitor to sign up, in and out
+* Use `:require_currentuser` as `before_action` to protect your restricted actions
+* In any action or view, you can use `currentuser_id` to retrieve the id of the connected user (if any)
+
+That's all! Note that:
+
+* you don't need to generate and run migrations. Currentuser does NOT rely on your database
+* you don't need to generate, analyse and modify a complicated configuration file.
+
+### Example
+
+#### Routes
+
+```ruby
+# config/routes.rb
+MyApplication::Application.routes.draw do
+  root 'main#index'
+  get :restricted, to: 'main#restricted'
+  currentuser
+end
+```
+
+#### Controller
+
+```ruby
+class MainController < ApplicationController
+  before_action :require_currentuser, only: :restricted
+end
+```
+
+#### Views
+
+```haml
+-# views/home/index.html.haml
+= render 'shared/menu'
+
+%h1
+  Welcome!
+```
+
+```haml
+-# views/home/restricted.html.haml
+= render 'shared/menu'
+
+%h1
+  Welcome back to this restricted area, #{currentuser_id}
+```
+
+```haml
+-# views/shared/_menu.html.haml
+%ul
+  - if currentuser_id
+    %li
+      = link_to 'Home', :root
+    %li
+      = link_to 'Restricted', :restricted
+    %li
+      = link_to 'Sign out', currentuser_sign_out_url
+  - else
+    %li
+      = link_to 'Sign up', currentuser_sign_up_url
+    %li
+      = link_to 'Sign in', currentuser_sign_in_url
+```
+
+## Contributing to currentuser-services (not recommended yet)
+
+* Check out the latest master to make sure the feature hasn't been implemented or the bug hasn't been fixed yet.
+* Check out the issue tracker to make sure someone already hasn't requested it and/or contributed it.
+* Fork the project.
+* Start a feature/bugfix branch.
+* Commit and push until you are happy with your contribution.
+* Make sure to add tests for it. This is important so I don't break it in a future version unintentionally.
+* Please try not to mess with the Rakefile, version, or history. If you want to have your own version, or is otherwise necessary, that is fine, but please isolate to its own commit so I can cherry-pick around it.
+
+### Tests
+
+TBD
+
+## Copyright
+
+Copyright (c) 2014 eric-currentuser. See LICENSE.txt for further details.

data/Rakefile

@@ -0,0 +1,35 @@
+# encoding: utf-8
+
+require 'rubygems'
+require 'bundler'
+begin
+  Bundler.setup(:default, :development)
+rescue Bundler::BundlerError => e
+  $stderr.puts e.message
+  $stderr.puts 'Run `bundle install` to install missing gems'
+  exit e.status_code
+end
+require 'rake'
+
+require 'jeweler'
+Jeweler::Tasks.new do |gem|
+  # gem is a Gem::Specification... see http://guides.rubygems.org/specification-reference/ for more options
+  gem.name = 'currentuser-services'
+  gem.homepage = 'http://github.com/currentuser/currentuser-services-gem'
+  gem.license = 'MIT'
+  gem.summary = %Q{Offsite sign up and sign in forms for Currentuser.io}
+  gem.description = %Q{Offsite sign up and sign in forms for Currentuser.io}
+  gem.email = 'TBD'
+  gem.authors = ["eric-currentuser"]
+  # dependencies defined in Gemfile
+end
+Jeweler::RubygemsDotOrgTasks.new
+
+require 'rake/testtask'
+Rake::TestTask.new(:test) do |test|
+  test.libs << 'lib' << 'test'
+  test.pattern = 'test/**/*_test.rb'
+  test.verbose = true
+end
+
+task :default => :test

data/VERSION

@@ -0,0 +1 @@
+0.0.1

data/app/controllers/currentuser/services/sessions_controller.rb

@@ -0,0 +1,26 @@
+module Currentuser
+  module Services
+    class SessionsController < ActionController::Base
+
+      def sign_in
+        Services.check_authentication_params!(params)
+
+        # Log in
+        session[:currentuser_id] = params[:currentuser_id]
+
+        redirect_to '/'
+      end
+
+      def sign_out
+        session.delete(:currentuser_id)
+
+        redirect_to '/'
+      end
+
+      def available
+        head :ok
+      end
+    end
+  end
+
+end

data/config/currentuser-services_public_key.txt

@@ -0,0 +1,9 @@
+-----BEGIN PUBLIC KEY-----
+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7XrSJNBNHd+KgBCmMaKm
+cuN046QvNrtIRGtCglKmEzMUbjOeNGcC3jJsL1FVpmHD8+/FcOBwDN1DPagRYFL2
+jVMVs2bhCD0SyhWoStvPNSDJRIOxxKHdwvGlQ2vNRnA+SEmpSx7dGmXy5Zhe9z6P
+G7Nbtc3uxCJGzZmBQL3M+Qsi71RvmX9DmARCezOMI+iKkvo9XW8cTaRrAwsEySSX
+OmzcSOvkbThX3R6UY8exIZ/sqmPv5nnhdz91IkcIEP9UzId39ECavt7cYmNs9hz+
+oIaLRNosB2w5+5JH7r2UcEVnydjFeD/w+3ZH8+d47XBGgyR9jHB6c+EmjIEL5xp0
+swIDAQAB
+-----END PUBLIC KEY-----

data/config/routes.rb

@@ -0,0 +1,5 @@
+Currentuser::Services::Engine.routes.draw do
+  root 'sessions#available'
+  get :sign_in, to: 'sessions#sign_in'
+  get :sign_out, to: 'sessions#sign_out'
+end

data/currentuser-services.gemspec

@@ -0,0 +1,88 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run 'rake gemspec'
+# -*- encoding: utf-8 -*-
+# stub: currentuser-services 0.0.1 ruby lib
+
+Gem::Specification.new do |s|
+  s.name = "currentuser-services"
+  s.version = "0.0.1"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.require_paths = ["lib"]
+  s.authors = ["eric-currentuser"]
+  s.date = "2014-12-15"
+  s.description = "Offsite sign up and sign in forms for Currentuser.io"
+  s.email = "TBD"
+  s.extra_rdoc_files = [
+    "LICENSE.txt",
+    "README.md"
+  ]
+  s.files = [
+    ".document",
+    "Gemfile",
+    "LICENSE.txt",
+    "README.md",
+    "Rakefile",
+    "VERSION",
+    "app/controllers/currentuser/services/sessions_controller.rb",
+    "config/currentuser-services_public_key.txt",
+    "config/routes.rb",
+    "currentuser-services.gemspec",
+    "lib/currentuser/services.rb",
+    "lib/currentuser/services/controllers/authenticates.rb",
+    "lib/currentuser/services/engine.rb",
+    "test/currentuser/services/authenticates_test.rb",
+    "test/currentuser/services/integration_test.rb",
+    "test/currentuser/services_test.rb",
+    "test/helper.rb",
+    "test/test_application/application.rb"
+  ]
+  s.homepage = "http://github.com/currentuser/currentuser-services-gem"
+  s.licenses = ["MIT"]
+  s.rubygems_version = "2.2.2"
+  s.summary = "Offsite sign up and sign in forms for Currentuser.io"
+
+  if s.respond_to? :specification_version then
+    s.specification_version = 4
+
+    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
+      s.add_runtime_dependency(%q<gem_config>, [">= 0"])
+      s.add_runtime_dependency(%q<encrypto_signo>, [">= 0"])
+      s.add_runtime_dependency(%q<rails>, ["~> 4.0"])
+      s.add_development_dependency(%q<awesome_print>, [">= 0"])
+      s.add_development_dependency(%q<minitest-reporters>, [">= 0"])
+      s.add_development_dependency(%q<dotenv>, [">= 0"])
+      s.add_development_dependency(%q<bundler>, ["~> 1.0"])
+      s.add_development_dependency(%q<jeweler>, ["~> 2.0.1"])
+      s.add_development_dependency(%q<minitest-rails-capybara>, [">= 0"])
+      s.add_development_dependency(%q<capybara-mechanize>, [">= 0"])
+      s.add_development_dependency(%q<currentuser-data>, [">= 0"])
+    else
+      s.add_dependency(%q<gem_config>, [">= 0"])
+      s.add_dependency(%q<encrypto_signo>, [">= 0"])
+      s.add_dependency(%q<rails>, ["~> 4.0"])
+      s.add_dependency(%q<awesome_print>, [">= 0"])
+      s.add_dependency(%q<minitest-reporters>, [">= 0"])
+      s.add_dependency(%q<dotenv>, [">= 0"])
+      s.add_dependency(%q<bundler>, ["~> 1.0"])
+      s.add_dependency(%q<jeweler>, ["~> 2.0.1"])
+      s.add_dependency(%q<minitest-rails-capybara>, [">= 0"])
+      s.add_dependency(%q<capybara-mechanize>, [">= 0"])
+      s.add_dependency(%q<currentuser-data>, [">= 0"])
+    end
+  else
+    s.add_dependency(%q<gem_config>, [">= 0"])
+    s.add_dependency(%q<encrypto_signo>, [">= 0"])
+    s.add_dependency(%q<rails>, ["~> 4.0"])
+    s.add_dependency(%q<awesome_print>, [">= 0"])
+    s.add_dependency(%q<minitest-reporters>, [">= 0"])
+    s.add_dependency(%q<dotenv>, [">= 0"])
+    s.add_dependency(%q<bundler>, ["~> 1.0"])
+    s.add_dependency(%q<jeweler>, ["~> 2.0.1"])
+    s.add_dependency(%q<minitest-rails-capybara>, [">= 0"])
+    s.add_dependency(%q<capybara-mechanize>, [">= 0"])
+    s.add_dependency(%q<currentuser-data>, [">= 0"])
+  end
+end
+

data/lib/currentuser/services.rb

@@ -0,0 +1,45 @@
+require 'gem_config'
+require 'encrypto_signo'
+require 'rails'
+require 'currentuser/services/controllers/authenticates'
+require 'currentuser/services/engine'
+
+module Currentuser
+  module Services
+    include GemConfig::Base
+
+    with_configuration do
+      # Public API
+      has :project_id, classes: String
+
+      # Developer API
+      has :currentuser_services_host, classes: String
+      has :currentuser_services_public_key, classes: String
+      has :currentuser_project_id_for_tests, classes: String
+    end
+  end
+end
+
+Currentuser::Services.configure do |config|
+  config.currentuser_services_host = 'http://services.currentuser.io'
+  config.currentuser_services_public_key = File.read(
+    File.join(File.dirname(__FILE__), '..', '..', 'config', 'currentuser-services_public_key.txt')
+  )
+end
+
+module ActionController
+  class Base
+    include Currentuser::Services::Authenticates
+    helper_method :currentuser_id, :currentuser_sign_in_url, :currentuser_sign_up_url, :currentuser_sign_out_url
+  end
+end
+
+class ActionDispatch::Routing::Mapper
+  def currentuser
+    mount Currentuser::Services::Engine => '/currentuser'
+  end
+end
+
+# For an unclear reason, we have to require this file late in the process, otherwise using application have
+# problems on start up
+require 'controllers/currentuser/services/sessions_controller'

data/lib/currentuser/services/controllers/authenticates.rb

@@ -0,0 +1,65 @@
+module Currentuser
+  module Services
+    module Authenticates
+      def require_currentuser
+        return  if currentuser_id
+        redirect_to currentuser_sign_in_url
+      end
+
+      def currentuser_id
+        return @currentuser_id ||= session[:currentuser_id]
+      end
+
+      def currentuser_sign_in_url
+        return Services.currentuser_url(:sign_in)
+      end
+
+      def currentuser_sign_up_url
+        return Services.currentuser_url(:sign_up)
+      end
+
+      def currentuser_sign_out_url
+        return currentuser_services.sign_out_url
+      end
+    end
+
+    def self.check_authentication_params!(params)
+      raise unless params[:currentuser_id] && params[:timestamp] && params[:signature]
+
+      # Check timestamp
+      unless timestamp_recent?(params[:timestamp].to_i)
+        raise TimestampTooOld, 'Timestamp is more than 10 minutes old'
+      end
+
+      # Check signature
+      auth_string = [params[:currentuser_id], params[:timestamp]].join
+      unless signature_authentic?(params[:signature], auth_string)
+        raise SignatureNotAuthentic, 'Signature verification failed'
+      end
+    end
+
+    def self.currentuser_url(action)
+      return currentuser_url_for_project_id(configuration.project_id, action)
+    end
+
+    def self.currentuser_url_for_project_id(project_id, action)
+      host = configuration.currentuser_services_host
+      raise 'project_id should be set'  unless project_id
+      raise 'action should be :sign_up or :sign_in'  unless action.in?([:sign_up, :sign_in])
+      return "#{host}/#{project_id}/#{action}"
+    end
+
+    Error = Class.new(StandardError)
+    TimestampTooOld = Class.new(Error)
+    SignatureNotAuthentic = Class.new(Error)
+
+    def self.timestamp_recent?(timestamp)
+      return (Time.now - Time.at(timestamp)).abs < 10 * 60
+    end
+
+    def self.signature_authentic?(signature, auth_string)
+      public_key = Services.configuration.currentuser_services_public_key
+      return EncryptoSigno.verify(public_key, signature, auth_string)
+    end
+  end
+end

data/lib/currentuser/services/engine.rb

@@ -0,0 +1,5 @@
+module Currentuser::Services
+  class Engine < ::Rails::Engine
+    isolate_namespace Currentuser::Services
+  end
+end

data/test/currentuser/services/authenticates_test.rb

@@ -0,0 +1,68 @@
+require 'helper'
+
+module Currentuser
+  module Services
+
+    class TestAuthenticatesController <  ActionController::Base
+      before_action :require_currentuser
+
+      def test_action_requiring_user
+        head :ok
+      end
+    end
+
+    class AuthenticatesTest < ActionController::TestCase
+      tests TestAuthenticatesController
+
+      def get_with_route(action)
+        with_routing do |map|
+          map.draw do
+            namespace :currentuser do
+              namespace :services do
+                get '/any_path', to: 'test_authenticates#test_action_requiring_user'
+              end
+            end
+          end
+          get action
+        end
+      end
+
+      # require_currentuser
+
+      test 'execute action if currentuser_id is available' do
+        session[:currentuser_id] = 'user_id_1'
+
+        get_with_route :test_action_requiring_user
+        assert_response :ok
+      end
+
+      test 'redirects to sign_in URL if currentuser_id is not available' do
+        assert_nil session[:currentuser_id]
+
+        get_with_route :test_action_requiring_user
+        assert_response :redirect
+        assert_redirected_to Services.currentuser_url(:sign_in)
+      end
+
+      # currentuser_id
+
+      test 'currentuser_id returns currentuser ID' do
+        session[:currentuser_id] = 'user_id_1'
+
+        assert_equal 'user_id_1', @controller.currentuser_id
+      end
+
+      # sign_in_url
+
+      test 'sign_in_url returns the expected url' do
+        assert_equal "http://localhost:3001/#{Services.configuration.project_id}/sign_in", @controller.currentuser_sign_in_url
+      end
+
+      # sign_up_url
+
+      test 'sign_up_url returns the expected url' do
+        assert_equal "http://localhost:3001/#{Services.configuration.project_id}/sign_up", @controller.currentuser_sign_up_url
+      end
+    end
+  end
+end

data/test/currentuser/services/integration_test.rb

@@ -0,0 +1,82 @@
+require 'helper'
+
+# Apparently we need to require the routes. Not sure why.
+require_relative '../../../config/routes'
+
+# Load test application
+require 'rails/generators' # Not sure why we need that
+require 'test_application/application'
+
+require 'minitest/rails/capybara'
+require 'capybara/mechanize'
+
+require 'currentuser/data'
+require 'currentuser/data/test/helpers'
+
+#Rails.logger = Logger.new(STDOUT)
+Rails.logger = Logger.new('/dev/null')
+
+Currentuser::Data::BaseResource.site = ENV['CURRENTUSER_DATA_URL']
+Currentuser::Data::Test::UseReadApi.currentuser_project_id_for_tests =
+    Currentuser::Services.configuration.project_id
+
+module Currentuser
+  module Services
+    Capybara.current_driver = :mechanize
+    class IntegrationTest < ActionDispatch::IntegrationTest
+      include Capybara::DSL
+      include Currentuser::Data::Test::UseWriteApi
+
+      teardown do
+        Capybara.reset_sessions!    # Forget the (simulated) browser state
+      end
+
+      test 'one can visit public page' do
+
+        visit '/'
+        assert_equal '/', current_path
+        assert has_text? 'Public page'
+      end
+
+      test 'sign in and sign out' do
+        Currentuser::Data::User.create(email: 'email@example.org', password: 'password')
+        visit '/inside'
+        assert_match /sign_in/, current_path
+
+        fill_in 'Email', with: 'email@example.org'
+        fill_in 'Password', with: 'password'
+        click_button 'Sign In'
+
+        visit '/inside'
+        assert_equal '/inside', current_path
+        assert has_text? 'Private page'
+
+        visit 'currentuser/sign_out'
+        assert_equal '/', current_path
+
+        visit '/inside'
+        assert_match /sign_in/, current_path
+      end
+
+      test 'sign up' do
+        visit Services.currentuser_url(:sign_up)
+
+        fill_in 'Email', with: 'email@example.org'
+        fill_in 'Password', with: 'password'
+        click_button 'Sign Up'
+        assert_equal '/', current_path
+        assert has_text? 'Public page'
+
+        # Check user is connected
+        visit '/inside'
+        assert has_text? 'Private page'
+      end
+
+      test 'available' do
+        visit '/currentuser'
+
+        assert_equal 200, page.status_code
+      end
+    end
+  end
+end

data/test/currentuser/services_test.rb

@@ -0,0 +1,83 @@
+require 'helper'
+
+module Currentuser
+  module Services
+
+    class ServicesTest < ActiveSupport::TestCase
+
+      # timestamp_recent?
+
+      test 'timestamp_recent? returns the expected result' do
+        assert Services.timestamp_recent?(Time.now)
+        assert Services.timestamp_recent?(Time.now - 9 * 60)
+        assert Services.timestamp_recent?(Time.now + 9 * 60)
+        refute Services.timestamp_recent?(Time.now - 11 * 60)
+        refute Services.timestamp_recent?(Time.now + 11 * 60)
+      end
+
+      # signature_authentic?
+
+      test 'signature_authentic returns the expected result' do
+        timestamp = 100000
+        user_id = 'user_id_1'
+        signature = "RmYbwPNZc418905uSHHmrmkKcekj7OQw8zU372g6aEuMufOExuEJcSH3Zokq\nbJLFT89wxcF0/s9Ks2EV3cmuvoe5RQeanro7a0m+KpZskBt3IqxRiXFGr6sE\nvBfWrDQC24lJjKjIn76qMvwd/A6PmN0uyQz/QtE1FjXdNauYPq9xJoSPdL+T\nr3Y8uCnBkT8E1AwuiMC9zIjQVEBukmbR9LW8QNvg3+vdJfoxIsf4Gxxs5V6e\n0r7fk5Vz5uws3D/DmUWnfRaPaW9KYVB5VoOAD/P2TlGNZ7wurlYXuHPfK0QX\njkThXYrpFn6m5u2rVyFoNanroDTqIcndKxLDeXE0sg==\n"
+
+        assert Services.signature_authentic?(signature, "#{user_id}#{timestamp}")
+        refute Services.signature_authentic?(signature, "0#{user_id}#{timestamp}")
+        refute Services.signature_authentic?("0#{signature}", "#{user_id}#{timestamp}")
+      end
+
+      # check_authentication_params!
+
+      test 'can authenticate (stubbing :timestamp_recent?)' do
+
+        # These data have been prepare using current-services private key.
+        timestamp = 100000
+        user_id = 'user_id_1'
+        signature = "RmYbwPNZc418905uSHHmrmkKcekj7OQw8zU372g6aEuMufOExuEJcSH3Zokq\nbJLFT89wxcF0/s9Ks2EV3cmuvoe5RQeanro7a0m+KpZskBt3IqxRiXFGr6sE\nvBfWrDQC24lJjKjIn76qMvwd/A6PmN0uyQz/QtE1FjXdNauYPq9xJoSPdL+T\nr3Y8uCnBkT8E1AwuiMC9zIjQVEBukmbR9LW8QNvg3+vdJfoxIsf4Gxxs5V6e\n0r7fk5Vz5uws3D/DmUWnfRaPaW9KYVB5VoOAD/P2TlGNZ7wurlYXuHPfK0QX\njkThXYrpFn6m5u2rVyFoNanroDTqIcndKxLDeXE0sg==\n"
+
+        # As we use a fixed timestamp we have to simulate it is recent
+        Services.stub :timestamp_recent?, true do
+          Services.check_authentication_params! currentuser_id: user_id, timestamp: timestamp, signature: signature
+        end
+      end
+
+      test 'can authenticate (stubbing :signature_authentic?)' do
+
+        # Take a recent timestamp
+        timestamp = (Time.now - 60).to_i.to_s
+        user_id = 'user_id_1'
+        signature = 'any_signature'
+
+        # By pass signature checking
+        Services.stub :signature_authentic?, true do
+          Services.check_authentication_params! currentuser_id: user_id, timestamp: timestamp, signature: signature
+        end
+      end
+
+      test 'raises if timestamp too old' do
+
+        # Take an old timestamp (and an invalid signature, but this has no impact)
+        timestamp = (Time.now - 15 * 60).to_i.to_s
+        user_id = 'user_id_1'
+        signature = 'any_signature'
+
+        assert_raises Services::TimestampTooOld do
+          Services.check_authentication_params! currentuser_id: user_id, timestamp: timestamp, signature: signature
+        end
+      end
+
+      test 'raises if signature invalid' do
+
+        # Take a recent timestamp and an invalid signature
+        timestamp = (Time.now - 60).to_i.to_s
+        user_id = 'user_id_1'
+        signature = 'any_signature'
+
+        assert_raises Services::SignatureNotAuthentic do
+          Services.check_authentication_params! currentuser_id: user_id, timestamp: timestamp, signature: signature
+        end
+      end
+    end
+  end
+end

data/test/helper.rb

@@ -0,0 +1,26 @@
+require 'rubygems'
+require 'bundler'
+Bundler.setup(:default, :development)
+
+require 'minitest/autorun'
+require 'minitest/reporters'
+Minitest::Reporters.use!
+
+require 'awesome_print'
+require 'action_controller'
+require 'dotenv'
+Dotenv.load
+
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'app'))
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+require 'currentuser/services'
+
+Currentuser::Services.configure do |config|
+  config.project_id = ENV['CURRENTUSER_PROJECT_ID_FOR_TESTS']
+end
+
+Currentuser::Services.configure do |config|
+  config.currentuser_services_host = ENV['CURRENTUSER_SERVICES_HOST']
+  config.currentuser_services_public_key = ENV['CURRENTUSER_SERVICES_PUBLIC_KEY']
+end

data/test/test_application/application.rb

@@ -0,0 +1,23 @@
+module TestRailsApp
+  class Application < Rails::Application
+    config.secret_token = 'f6da1f7d3105c589bc3f36f3e78ee794'
+
+    routes.draw do
+      root 'test_rails_app/homes#outside'
+      currentuser
+      get '/inside' => 'test_rails_app/homes#inside'
+    end
+  end
+
+  class HomesController < ActionController::Base
+    before_action :require_currentuser, except: :outside
+
+    def outside
+      render text: 'Public page'
+    end
+
+    def inside
+      render text: 'Private page'
+    end
+  end
+end

metadata

@@ -0,0 +1,217 @@
+--- !ruby/object:Gem::Specification
+name: currentuser-services
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- eric-currentuser
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-12-15 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: gem_config
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: encrypto_signo
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '4.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '4.0'
+- !ruby/object:Gem::Dependency
+  name: awesome_print
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: minitest-reporters
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: dotenv
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: jeweler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.0.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.0.1
+- !ruby/object:Gem::Dependency
+  name: minitest-rails-capybara
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: capybara-mechanize
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: currentuser-data
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Offsite sign up and sign in forms for Currentuser.io
+email: TBD
+executables: []
+extensions: []
+extra_rdoc_files:
+- LICENSE.txt
+- README.md
+files:
+- .document
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- VERSION
+- app/controllers/currentuser/services/sessions_controller.rb
+- config/currentuser-services_public_key.txt
+- config/routes.rb
+- currentuser-services.gemspec
+- lib/currentuser/services.rb
+- lib/currentuser/services/controllers/authenticates.rb
+- lib/currentuser/services/engine.rb
+- test/currentuser/services/authenticates_test.rb
+- test/currentuser/services/integration_test.rb
+- test/currentuser/services_test.rb
+- test/helper.rb
+- test/test_application/application.rb
+homepage: http://github.com/currentuser/currentuser-services-gem
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.2
+signing_key: 
+specification_version: 4
+summary: Offsite sign up and sign in forms for Currentuser.io
+test_files: []