custom-adal 1.0.1

data/spec/support/fake_token_endpoint.rb

@@ -0,0 +1,108 @@
+#-------------------------------------------------------------------------------
+# Copyright (c) 2015 Micorosft Corporation
+#
+# Permission is hereby granted, free of charge, to any person obtaining a copy
+# of this software and associated documentation files (the "Software"), to deal
+# in the Software without restriction, including without limitation the rights
+# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+# copies of the Software, and to permit persons to whom the Software is
+# furnished to do so, subject to the following conditions:
+#
+# The above copyright notice and this permission notice shall be included in
+# all copies or substantial portions of the Software.
+#
+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+# OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+# THE SOFTWARE.
+#-------------------------------------------------------------------------------
+
+require_relative './fake_data'
+
+require 'json'
+require 'jwt'
+require 'sinatra/base'
+
+# A token endpoint that only recognizes one tenant and client id.
+class FakeTokenEndpoint < Sinatra::Base
+  include FakeData
+
+  # Taken from RFC 6749 4.1.2.1.
+  module ErrorResponseCodes
+    INVALID_REQUEST = 'invalid_request'
+    INVALID_CLIENT = 'invalid_client'
+    INVALID_GRANT = 'invalid_grant'
+    UNAUTHORIZED_CLIENT = 'unauthorized_client'
+    UNSUPPORTED_GRANT_TYPE = 'unsupported_grant_type'
+  end
+
+  DEFAULT_EXPIRATION = 3600
+  DEFAULT_ID_TOKEN = JWT.encode({ email: USERNAME }, '')
+  DEFAULT_TOKEN_TYPE = 'Bearer'
+
+  post '/:tenant/oauth2/token' do
+    if TENANT != params[:tenant] || CLIENT_ID != params[:client_id]
+      error_oauth_response(ErrorResponseCodes::INVALID_CLIENT)
+    elsif params.key?('code') && AUTH_CODE == params['code'] &&
+          REDIRECT_URI == params['redirect_uri']
+      successful_oauth_response
+    elsif params['code']
+      error_oauth_response(ErrorResponseCodes::INVALID_GRANT)
+    elsif params['refresh_token'] && REFRESH_TOKEN == params['refresh_token']
+      successful_oauth_response
+    elsif params['refresh_token']
+      error_oauth_response(ErrorResponseCodes::UNAUTHORIZED_CLIENT)
+    elsif params['client_secret'] && CLIENT_SECRET == params['client_secret']
+      successful_oauth_response
+    elsif params.key? 'client_secret'
+      error_oauth_response(ErrorResponseCodes::INVALID_CLIENT)
+    else
+      error_oauth_response(ErrorResponseCodes::INVALID_REQUEST)
+    end
+  end
+
+  private
+
+  def error_oauth_response(code, description = 'Error from fake endpoint')
+    { error: code, error_description: description }.to_json
+  end
+
+  def oauth_response(tenant)
+    { access_token: 'test_access_token',
+      token_type: 'BEARER',
+      tenant: tenant
+    }
+  end
+
+  def successful_oauth_response(opts = {})
+    res = { access_token: opts[:access_token] || RETURNED_TOKEN,
+            token_type: opts[:token_type] || DEFAULT_TOKEN_TYPE,
+            id_token: opts[:id_token] || DEFAULT_ID_TOKEN,
+            resource: params[:resource],
+            expires_in: opts[:expires_in] || DEFAULT_EXPIRATION }
+    res[:refresh_token] = opts[:refresh_token] if opts.key? :refresh_token
+    res.to_json
+  end
+
+  def try_auth_code(data, params)
+    return unless params.key? 'code'
+    if (data['codes'].key? params[:code]) &&
+       data['codes'][params['code']] == params[:redirect_uri]
+      successful_oauth_response
+    else
+      error_oauth_response(ErrorResponseCodes::INVALID_GRANT)
+    end
+  end
+
+  def try_client_secret(data, params)
+    return unless params.key? 'client_secret'
+    if data['client_secret'] == params[:client_secret]
+      successful_oauth_response
+    else
+      error_oauth_response(ErrorResponseCodes::INVALID_CLIENT)
+    end
+  end
+end

metadata

@@ -0,0 +1,264 @@
+--- !ruby/object:Gem::Specification
+name: custom-adal
+version: !ruby/object:Gem::Version
+  version: 1.0.1
+platform: ruby
+authors:
+- Microsoft Corporation
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2024-05-09 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.7.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.7.0
+- !ruby/object:Gem::Dependency
+  name: nokogiri
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+- !ruby/object:Gem::Dependency
+  name: uri_template
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.4'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.4'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.3'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.32'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.32'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.10'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.10'
+- !ruby/object:Gem::Dependency
+  name: sinatra
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.4'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.4'
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.21'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.21'
+description: Windows Azure Active Directory authentication client library
+email: nugetaad@microsoft.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rubocop.yml"
+- ".travis.yml"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- adal.gemspec
+- contributing.md
+- lib/adal.rb
+- lib/adal/authentication_context.rb
+- lib/adal/authentication_parameters.rb
+- lib/adal/authority.rb
+- lib/adal/cache_driver.rb
+- lib/adal/cached_token_response.rb
+- lib/adal/client_assertion.rb
+- lib/adal/client_assertion_certificate.rb
+- lib/adal/client_credential.rb
+- lib/adal/core_ext.rb
+- lib/adal/core_ext/hash.rb
+- lib/adal/jwt_parameters.rb
+- lib/adal/logger.rb
+- lib/adal/logging.rb
+- lib/adal/memory_cache.rb
+- lib/adal/mex_request.rb
+- lib/adal/mex_response.rb
+- lib/adal/noop_cache.rb
+- lib/adal/oauth_request.rb
+- lib/adal/request_parameters.rb
+- lib/adal/self_signed_jwt_factory.rb
+- lib/adal/templates/rst.13.xml.erb
+- lib/adal/templates/rst.2005.xml.erb
+- lib/adal/token_request.rb
+- lib/adal/token_response.rb
+- lib/adal/user_assertion.rb
+- lib/adal/user_credential.rb
+- lib/adal/user_identifier.rb
+- lib/adal/user_information.rb
+- lib/adal/util.rb
+- lib/adal/version.rb
+- lib/adal/wstrust_request.rb
+- lib/adal/wstrust_response.rb
+- lib/adal/xml_namespaces.rb
+- samples/authorization_code_example/README.md
+- samples/authorization_code_example/web_app.rb
+- samples/client_assertion_certificate_example/README.md
+- samples/client_assertion_certificate_example/app.rb
+- samples/on_behalf_of_example/README.md
+- samples/on_behalf_of_example/native_app.rb
+- samples/on_behalf_of_example/web_api.rb
+- samples/user_credentials_example/README.md
+- samples/user_credentials_example/app.rb
+- spec/adal/authentication_context_spec.rb
+- spec/adal/authentication_parameters_spec.rb
+- spec/adal/authority_spec.rb
+- spec/adal/cache_driver_spec.rb
+- spec/adal/cached_token_response_spec.rb
+- spec/adal/client_assertion_certificate_spec.rb
+- spec/adal/client_assertion_spec.rb
+- spec/adal/core_ext/hash_spec.rb
+- spec/adal/logging_spec.rb
+- spec/adal/memory_cache_spec.rb
+- spec/adal/mex_request_spec.rb
+- spec/adal/mex_response_spec.rb
+- spec/adal/self_signed_jwt_factory_spec.rb
+- spec/adal/token_request_spec.rb
+- spec/adal/token_response_spec.rb
+- spec/adal/user_credential_spec.rb
+- spec/adal/user_identifier_spec.rb
+- spec/adal/wstrust_request_spec.rb
+- spec/adal/wstrust_response_spec.rb
+- spec/fixtures/mex/insecureaddress.xml
+- spec/fixtures/mex/invalid_namespaces.xml
+- spec/fixtures/mex/malformed.xml
+- spec/fixtures/mex/microsoft.xml
+- spec/fixtures/mex/multiple_endpoints.xml
+- spec/fixtures/mex/no_matching_bindings.xml
+- spec/fixtures/mex/no_username_token_policies.xml
+- spec/fixtures/mex/no_wstrust_endpoints.xml
+- spec/fixtures/mex/only_13.xml
+- spec/fixtures/mex/only_2005.xml
+- spec/fixtures/oauth/error.json
+- spec/fixtures/oauth/success.json
+- spec/fixtures/oauth/success_with_id_token.json
+- spec/fixtures/wstrust/error.xml
+- spec/fixtures/wstrust/invalid_namespaces.xml
+- spec/fixtures/wstrust/missing_security_tokens.xml
+- spec/fixtures/wstrust/success.xml
+- spec/fixtures/wstrust/token.xml
+- spec/fixtures/wstrust/too_many_security_tokens.xml
+- spec/fixtures/wstrust/unrecognized_token_type.xml
+- spec/fixtures/wstrust/wstrust.13.xml
+- spec/fixtures/wstrust/wstrust.2005.xml
+- spec/spec_helper.rb
+- spec/support/fake_data.rb
+- spec/support/fake_token_endpoint.rb
+homepage: https://github.com/dhamkur/custom-adal
+licenses:
+- MIT
+metadata: {}
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.1.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.3.7
+signing_key:
+specification_version: 4
+summary: ADAL for Ruby
+test_files: []