devise_cas_authenticatable 1.3.8 → 1.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +4 -0
  3. data/README.md +7 -2
  4. data/devise_cas_authenticatable.gemspec +1 -1
  5. data/lib/devise_cas_authenticatable.rb +5 -1
  6. data/lib/devise_cas_authenticatable/model.rb +19 -2
  7. data/spec/model_spec.rb +57 -0
  8. metadata +4 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 5b1bd33da3b198cecce4b3171a7196919f392228
4
- data.tar.gz: 00269482f2b15ceca12481571bd8a7c60f7aaebf
3
+ metadata.gz: 5045437ac67c0de59651c56e17ef93d148d0c3ce
4
+ data.tar.gz: 8e103d5ea3b58c6920d7f913e495686389358c16
5
5
  SHA512:
6
- metadata.gz: 3b2a3f29488dbdc223ad2c05c66541d8928d8186612f17e3e5aeb4ccd8614ce0ded09fc31ff5e29b98aa314f65abe0b6adbc27fba9b2502ca1e4b982bc35b8ac
7
- data.tar.gz: d8dcb99e7567345dc6ebeba7a84d139444a7ac9d5177cba311496801e9db8312828716a62e685ff7730d5661eaaa2be6d1053c3acac52c115020177992a09012
6
+ metadata.gz: 33ca2e7317e10bfcba93ab009c24466f63cf16b58848c73af13682988e1b216864cc81aa9290f397340f22e82431fa5117643ec8cb24e9e023b690167da9ccca
7
+ data.tar.gz: 051b51fd7c164a1f3fde624a43c3272d840845ca2f6c53f4f0c588e70fe88f836895320a33d4b807158999792e8bb7ecb89617f8d89102b4dde3f4865041aa82
data/CHANGELOG.md CHANGED
@@ -1,5 +1,9 @@
1
1
  # Changelog for devise\_cas\_authenticatable
2
2
 
3
+ ## Version 1.4.0 - May 8, 2015
4
+
5
+ * Allow changing the CAS response field used as the unique key for finding users (thanks once again to @gmoore!)
6
+
3
7
  ## Version 1.3.8 - April 24, 2015
4
8
 
5
9
  * Remove a deprecated dependency (thanks to @gmoore)
data/README.md CHANGED
@@ -13,7 +13,7 @@ using [rubycas-server](http://github.com/gunark/rubycas-server)).
13
13
  Requirements
14
14
  ------------
15
15
 
16
- - Rails 2.3 or greater (works with 3.x versions as well)
16
+ - Rails 2.3 or greater (works with 3.x and 4.x versions as well)
17
17
  - Devise 1.0 or greater
18
18
  - rubycas-client
19
19
 
@@ -81,7 +81,7 @@ to tell your app how to talk to your CAS server:
81
81
  # You can specify the name of the destination argument with the following option.
82
82
  # e.g. the following option will change it from 'destination' to 'url'
83
83
  # config.cas_destination_logout_param_name = 'url'
84
-
84
+
85
85
  # By default, devise_cas_authenticatable will create users. If you would rather
86
86
  # require user records to already exist locally before they can authenticate via
87
87
  # CAS, uncomment the following line.
@@ -89,6 +89,11 @@ to tell your app how to talk to your CAS server:
89
89
 
90
90
  # You can enable Single Sign Out, which by default is disabled.
91
91
  # config.cas_enable_single_sign_out = true
92
+
93
+ # If you don't want to use the username returned from your CAS server as the unique
94
+ # identifier, but some other field passed in cas_extra_attributes, you can specify
95
+ # the field name here.
96
+ # config.cas_user_identifier = nil
92
97
 
93
98
  # If you want to use the Devise Timeoutable module with single sign out,
94
99
  # uncommenting this will redirect timeouts to the logout url, so that the CAS can
data/devise_cas_authenticatable.gemspec CHANGED
@@ -2,7 +2,7 @@
2
2
 
3
3
  Gem::Specification.new do |s|
4
4
  s.name = %q{devise_cas_authenticatable}
5
- s.version = "1.3.8"
5
+ s.version = "1.4.0"
6
6
 
7
7
  s.required_rubygems_version = Gem::Requirement.new("> 1.3.1") if s.respond_to? :required_rubygems_version=
8
8
  s.authors = ["Nat Budin", "Jeremy Haile"]
data/lib/devise_cas_authenticatable.rb CHANGED
@@ -66,6 +66,10 @@ module Devise
66
66
  # The model attribute used for query conditions. Should be the same as
67
67
  # the rubycas-server username_column. :username by default
68
68
  @@cas_username_column = :username
69
+
70
+ # The CAS reponse value used to find users in the local database
71
+ # it is required that this field be in cas_extra_attributes
72
+ @@cas_user_identifier = nil
69
73
 
70
74
  # Name of the parameter passed in the logout query
71
75
  @@cas_destination_logout_param_name = nil
@@ -73,7 +77,7 @@ module Devise
73
77
  # Additional options for CAS client object
74
78
  @@cas_client_config_options = {}
75
79
 
76
- mattr_accessor :cas_base_url, :cas_login_url, :cas_logout_url, :cas_validate_url, :cas_destination_url, :cas_follow_url, :cas_logout_url_param, :cas_create_user, :cas_destination_logout_param_name, :cas_username_column, :cas_enable_single_sign_out, :cas_single_sign_out_mapping_strategy, :cas_client_config_options
80
+ mattr_accessor :cas_base_url, :cas_login_url, :cas_logout_url, :cas_validate_url, :cas_destination_url, :cas_follow_url, :cas_logout_url_param, :cas_create_user, :cas_destination_logout_param_name, :cas_username_column, :cas_enable_single_sign_out, :cas_single_sign_out_mapping_strategy, :cas_user_identifier, :cas_client_config_options
77
81
 
78
82
  def self.cas_create_user?
79
83
  cas_create_user
data/lib/devise_cas_authenticatable/model.rb CHANGED
@@ -19,7 +19,24 @@ module Devise
19
19
  ::Devise.cas_client.validate_service_ticket(ticket) unless ticket.has_been_validated?
20
20
 
21
21
  if ticket.is_valid?
22
- conditions = {::Devise.cas_username_column => ticket.respond_to?(:user) ? ticket.user : ticket.response.user}
22
+ identifier = nil
23
+ ticket_response = ticket.respond_to?(:user) ? ticket : ticket.response
24
+
25
+ if ::Devise.cas_user_identifier.blank?
26
+ identifier = ticket_response.user
27
+ else
28
+ identifier = ticket_response.extra_attributes[::Devise.cas_user_identifier]
29
+ end
30
+
31
+ # If cas_user_identifier isn't in extra_attributes, or the value is blank, then we're done here
32
+ if identifier.nil?
33
+ logger.warn("Could not find a value for [#{::Devise.cas_user_identifier}] in cas_extra_attributes so we cannot find the User.")
34
+ logger.warn("Make sure config.cas_user_identifier is set to a field that appears in cas_extra_attributes")
35
+ return nil
36
+ end
37
+
38
+ logger.debug("Using conditions {#{::Devise.cas_username_column} => #{identifier}} to find the User")
39
+ conditions = {::Devise.cas_username_column => identifier}
23
40
  # We don't want to override Devise 1.1's find_for_authentication
24
41
  resource = if respond_to?(:find_for_authentication)
25
42
  find_for_authentication(conditions)
@@ -31,7 +48,7 @@ module Devise
31
48
  return nil unless resource
32
49
 
33
50
  if resource.respond_to? :cas_extra_attributes=
34
- resource.cas_extra_attributes = ticket.respond_to?(:extra_attributes) ? ticket.extra_attributes : ticket.response.extra_attributes
51
+ resource.cas_extra_attributes = ticket_response.extra_attributes
35
52
  end
36
53
  resource.save
37
54
  resource
data/spec/model_spec.rb ADDED
@@ -0,0 +1,57 @@
1
+ require 'spec_helper'
2
+
3
+ describe Devise::Models::CasAuthenticatable do
4
+
5
+ describe "When the user lookup is by something other than username" do
6
+ before(:each) do
7
+ @ticket = CASClient::ServiceTicket.new("ST-test", nil)
8
+ @ticket.extra_attributes = {:id => 10}
9
+ @ticket.success = true
10
+ @ticket.user = "testusername"
11
+
12
+ Devise.cas_create_user = false
13
+
14
+ #
15
+ # We needed to stub :find_for_authentication to return false
16
+ # but wanted to allow other respond_to? calls to function
17
+ # normally
18
+ #
19
+ User.stubs(:respond_to?) do |arg|
20
+ if arg == :find_for_authentication
21
+ return false
22
+ else
23
+ return User.respond_to? arg
24
+ end
25
+ end
26
+ end
27
+
28
+ it "should authenticate using whatever is specified in config.cas_user_identifier" do
29
+ Devise.cas_user_identifier = :id
30
+ Devise.cas_username_column = :id
31
+
32
+ User.expects(:find).with(:first, {:conditions => {:id => 10}})
33
+
34
+ User.authenticate_with_cas_ticket(@ticket)
35
+
36
+ #Reset this otherwise it'll blow up other specs
37
+ Devise.cas_user_identifier = nil
38
+ end
39
+
40
+ it "should authenticate as normal is config.cas_user_identifier is not set" do
41
+ Devise.cas_user_identifier = nil
42
+ Devise.cas_username_column = :username
43
+ User.expects(:find).with(:first, {:conditions => {:username => @ticket.user}})
44
+ User.authenticate_with_cas_ticket(@ticket)
45
+ end
46
+
47
+ it "should return nil if cas_user_identifier is not in cas_extra_attributes" do
48
+ Devise.cas_user_identifier = :unknown_ticket_field
49
+ Devise.cas_username_column = :username
50
+ User.expects(:find).never
51
+ User.authenticate_with_cas_ticket(@ticket).should be_nil
52
+
53
+ #Reset this otherwise it'll blow up other specs
54
+ Devise.cas_user_identifier = nil
55
+ end
56
+ end
57
+ end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: devise_cas_authenticatable
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.3.8
4
+ version: 1.4.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Nat Budin
@@ -9,7 +9,7 @@ authors:
9
9
  autorequire:
10
10
  bindir: bin
11
11
  cert_chain: []
12
- date: 2015-04-24 00:00:00.000000000 Z
12
+ date: 2015-05-08 00:00:00.000000000 Z
13
13
  dependencies:
14
14
  - !ruby/object:Gem::Dependency
15
15
  name: devise
@@ -234,6 +234,7 @@ files:
234
234
  - lib/devise_cas_authenticatable/strategy.rb
235
235
  - rails/init.rb
236
236
  - spec/config_spec.rb
237
+ - spec/model_spec.rb
237
238
  - spec/routes_spec.rb
238
239
  - spec/scenario/.gitignore
239
240
  - spec/scenario/app/controllers/application_controller.rb
@@ -296,6 +297,7 @@ specification_version: 4
296
297
  summary: CAS authentication module for Devise
297
298
  test_files:
298
299
  - spec/config_spec.rb
300
+ - spec/model_spec.rb
299
301
  - spec/routes_spec.rb
300
302
  - spec/scenario/.gitignore
301
303
  - spec/scenario/app/controllers/application_controller.rb