devise_google_authenticator 0.2.0 → 0.3.0

data/LICENSE.txt

@@ -1,4 +1,4 @@
-Copyright (c) 2011 Christian Frichot
+Copyright (c) 2012 Christian Frichot
 
 Permission is hereby granted, free of charge, to any person obtaining
 a copy of this software and associated documentation files (the

data/README.rdoc

@@ -4,14 +4,65 @@ This is a devise[https://github.com/plataformatec/devise] extension to allow you
 
 == Changes
 * Version 0.1 - initial release, just to push it up, is still very early and requires a bit work
+* Version 0.2 - tidied up some of the code - changed the references to AsteriskLabs
+* Version 0.3 - first working version! With working generators, tests, and doesnt require changes to Devise's Sign In view
+
+== Installation
+
+Add the gem to your Gemfile (don't forget devise too):
+
+* gem 'devise', '~> 1.5.3'
+* gem 'devise_google_authenticator', '0.3.0'
+
+Don't forget to "bundle install"
+
+=== Automatic Installation (Lets assume this is a bare bones app)
+
+Run the following generator to add the necessary configuration options to Devise's config file:
+
+* rails g devise_google_authenticator:install
+
+After you've created your Devise user models (which is usually done with a "rails g devise MODEL"), set up your Google Authenticator additions:
+
+* rails g devise_google_authenticator MODEL
+
+Don't forget to migrate:
+
+* rake db:migrate
+
+== Configuration Options
+
+The install generator adds some options to the end of your Devise config file (config/initializers/devise.rb)
+
+* config.ga_timeout - how long should the user be able to authenticate with their Google Authenticator token
+* config.ga_timedrift - a multiplier which provides for drift between a user's clock (and therefore their OTP) and the system clock. This should be fine at 3.
+
+== Custom Views
+
+If you want to customise your views (which you likely will want to, as they're pretty ugly right now), you can use the generator:
+
+* rails g devise_google_authenticator:views
 
 == Usage
-* After getting devise working with your rails app, add a 'require devise_google_authenticator' line.
-* Modify your user model (through a migration) and add t.gauth_secret and t.gauth_enabled
-* Modify your user model (through its model file) and include :google_authenticatable to your 'devise' line
-* Modify your user model (through its model file) and include :gauth_enabled into your model's attr_accessible
-* Ensure you've installed devise's views, and modify the sessions .. #CF TODO
-* Migrate your db
+
+With this extension enabled, the following is expected behaviour:
+
+* When a user registers, they are forwarded onto the Display QR page. This allows them to add their new "token" to their mobile device, and enable, or disable, the functionality.
+* If users can't self-register, they're still able to visit this page by visiting /MODEL/displayqr (eg: /users/displayqr).
+* If the function is enabled (for that user), when they sign in, they'll be prompted for their password (as per normal), but then redirected into the Check QR page. They have to enter their token (from their device) to then successfully authenticate.
+
+== I18n
+
+The install generator also installs an english copy of a Devise Google Authenticator i18n file. This can be modified (or used to create other language versions) and is located at: config/locales/devise.google_authenticator.en.yml
+
+== Thanks (and unknown contributors)
+
+This extension would not exist without the following other projects and associated authors (Whom I have turned to for inspiration and definitely have helped contributing by providing awesome Devise extensions. A lot of this code has been refactored from various sources, in particular these - in particular Sergio and Devise_invitable for his excellent unit test code):
+
+* Devise (José Valim, Carlos Antônio da Silva, Rodrigo Flores) https://github.com/plataformatec/devise
+* Devise_invitable (Sergio Cambra) https://github.com/scambra/devise_invitable
+* Devise_openid_authenticatable (Nat Budin) https://github.com/nbudin/devise_openid_authenticatable
+* Devise_security_extension (Team Phatworx, Marco Scholl, Alexander Dreher) https://github.com/phatworx/devise_security_extension
 
 
 == Contributing to devise_google_authenticator
@@ -26,6 +77,6 @@ This is a devise[https://github.com/plataformatec/devise] extension to allow you
 
 == Copyright
 
-Copyright (c) 2011 Christian Frichot. See LICENSE.txt for
+Copyright (c) 2012 Christian Frichot. See LICENSE.txt for
 further details.
 

data/app/controllers/devise/checkga_controller.rb

@@ -3,11 +3,29 @@ class Devise::CheckgaController < Devise::SessionsController
   include Devise::Controllers::InternalHelpers
   
   def show
-    render_with_scope :show
+    @tmpid = params[:id]
+    if @tmpid.nil?
+      redirect_to :root
+    else
+      render_with_scope :show
+    end
   end
   
   def update
-    sign_in(resource_name, resource)
-    respond_with resource, :location => redirect_location(resource_name, resource)
+    resource = resource_class.find_by_gauth_tmp(params[resource_name]['tmpid'])
+
+    if not resource.nil?
+
+      if resource.validate_token(params[resource_name]['token'].to_i)
+        set_flash_message(:notice, :signed_in) if is_navigational_format?
+        sign_in(resource_name,resource)
+        respond_with resource, :location => redirect_location(resource_name, resource)
+      else
+        redirect_to :root
+      end
+
+    else
+      redirect_to :root
+    end
   end
 end

data/app/views/devise/checkga/show.html.erb

@@ -1,6 +1,7 @@
-<h2>Submit QR Code</h2>
+<h2><%= I18n.t('submit_token_title', {:scope => 'devise'}) %></h2>
 
 <%= form_for(resource, :as => resource_name, :url => [resource_name, :checkga], :html => { :method => :put }) do |f| %>
-	
-	<p><%= f.submit "Continue.." %></p>
+	<%= f.hidden_field :tmpid, {:value => @tmpid} %>
+	<%= f.text_field :token, :autocomplete => :off%>
+	<p><%= f.submit I18n.t('submit_token', {:scope => 'devise'}) %></p>
 <% end %>

data/app/views/devise/displayqr/show.html.erb

@@ -1,12 +1,12 @@
-<h2>Your QR Code</h2>
+<h2><%= I18n.t('title', {:scope => 'devise.registration'}) %></h2>
 
 <%= google_authenticator_qrcode(resource) %>
 
 <%= form_for(resource, :as => resource_name, :url => [resource_name, :displayqr], :html => { :method => :put }) do |f| %>
 	<%= devise_error_messages! %>
-	<h3>Would you like to enable Google Authenticator?</h3>
-	<p><%= f.label :gauth_enabled, "Google Authenticator Status" %><br />
+	<h3><%= I18n.t('nice_request', {:scope => 'devise.registration'}) %></h3>
+	<p><%= f.label :gauth_enabled, I18n.t('qrstatus', {:scope => 'devise.registration'}) %><br />
 	<%= f.check_box :gauth_enabled %></p>
 	
-	<p><%= f.submit "Continue.." %></p>
+	<p><%= f.submit I18n.t('submit', {:scope => 'devise.registration'}) %></p>
 <% end %>

data/config/locales/en.yml

@@ -0,0 +1,9 @@
+en:
+  devise:
+    submit_token: "Check Token"
+    submit_token_title: "Please enter your Google Authenticator token:"
+    registration:
+      title: "Your QR Code:"
+      nice_request: "Would you like to enable Google Authenticator?"
+      qrstatus: "Google Authenticator Status:"
+      submit: "Continue..."

data/lib/devise_google_authenticatable/models/google_authenticatable.rb

@@ -1,5 +1,4 @@
 require 'rotp'
-#require 'devise_google_authenticatable/hooks/google_authenticatable'
 
 module Devise # :nodoc:
   module Models # :nodoc:
@@ -23,9 +22,31 @@ module Devise # :nodoc:
         def set_gauth_enabled(param)
           self.update_without_password(param)
         end
-        
-        def login_phase_one
-          return "yep"
+
+        def assign_tmp
+          self.update_attributes(:gauth_tmp => ROTP::Base32.random_base32, :gauth_tmp_datetime => DateTime.now)
+          self.gauth_tmp
+        end
+
+        def validate_token(token)
+          return false if self.gauth_tmp_datetime.nil?
+          if self.gauth_tmp_datetime < self.class.ga_timeout.ago
+            return false
+          else
+
+            valid_vals = []
+            valid_vals << ROTP::TOTP.new(self.get_qr).at(Time.now)
+            (1..self.class.ga_timedrift).each do |cc|
+              valid_vals << ROTP::TOTP.new(self.get_qr).at(Time.now.ago(30*cc))
+              valid_vals << ROTP::TOTP.new(self.get_qr).at(Time.now.in(30*cc))
+            end
+            
+            if valid_vals.include?(token.to_i)
+              return true
+            else
+              return false
+            end
+          end
         end
 
         private
@@ -33,11 +54,14 @@ module Devise # :nodoc:
         def assign_auth_secret
           self.gauth_secret = ROTP::Base32.random_base32
         end
-        
+
       end
 
       module ClassMethods # :nodoc:
-        #Something here?
+        def find_by_gauth_tmp(gauth_tmp)
+          find(:first, :conditions => {:gauth_tmp => gauth_tmp})
+        end
+        ::Devise::Models.config(self, :ga_timeout, :ga_timedrift)
       end
     end
   end

data/lib/devise_google_authenticatable/patches/check_ga.rb

@@ -6,85 +6,26 @@ module DeviseGoogleAuthenticator::Patches
     # here the patch
 
       alias_method :create_original, :create
-      
-      #Below is trial 1 .. over-writing most of the create method
-      #Whilst this works, I wish it was about a gazillion times cleaner
-      
+
       define_method :create do
-        #Okay, firstly we grab the resource, if the user stuffs up anything, this dies immediately.
-        #This actually authenticates their password
+
         resource = warden.authenticate!(:scope => resource_name, :recall => "#{controller_path}#new")
 
-        #Okay, check that the resource model includes the get_qr method
-        if resource.respond_to?(:get_qr) #Therefore we can quiz for a QR
+        if resource.respond_to?(:get_qr) and resource.gauth_enabled.to_i != 0 #Therefore we can quiz for a QR
+          tmpid = resource.assign_tmp #assign a temporary key and fetch it
+          warden.logout #log the user out
 
-          # Okay, we have the method to get the qr secret, lets check if the user has gauth enabled
-          if resource.gauth_enabled.to_i != 0 #gauth_enabled is not set to zero, therefore it's ON!
-            
-            # Orite, At this point the user model includes the extension stuff
-            # PLUS, gauth_enabled is ON, so lets try and authenticate .. but first
-            
-            # Lets check if the "POST" includes the gauth_submit parameter
-            if params.fetch(resource_name).include?("gauth_submit") #Yep, the browser submitted the gauth_submit - OTP
-              
-              #Okay, lets get what they submitted in the form, crunch it into an int
-              submitted_value = params.fetch(resource_name).fetch("gauth_submit").to_i
-              
-              #By default, gauth is not successful
-              gauth_successful = false
-              
-              if submitted_value == 0 #We have a field, but they've left it blank..
-                #Nothing, they left the field blank, and therefore will not sign in, gauth_successfull remains false
-              else
-                #Okay, they submitted something into the OTP field
-              
-                #Lets account for the fact the timing may not always be accurate, so go backwards, current and forwards
-                #If the submitted OTP matches, then gauth_successful is true - YAY for you! .. Yay for you indeed.
-                
-                #CF TODO: Do some checking here, how late can these codes be??
-                if submitted_value == ROTP::TOTP.new(resource.get_qr).at(Time.now.ago(30))
-                  gauth_successful = true
-                elsif submitted_value == ROTP::TOTP.new(resource.get_qr).at(Time.now)
-                  gauth_successful = true
-                elsif submitted_value == ROTP::TOTP.new(resource.get_qr).at(Time.now.in(30))
-                  gauth_successful = true
-                end
-              end
-              
-              if gauth_successful == true #That means the OTP actually worked, lets log 'em in
-                set_flash_message(:notice, :signed_in) if is_navigational_format?
-                sign_in(resource_name, resource)
-                respond_with resource, :location => redirect_location(resource_name, resource)
-              else #That means that, the OTP did NOT line up properly, lets kick 'em back to the start
-                signed_in = signed_in?(resource_name)
-                Devise.sign_out_all_scopes ? sign_out : sign_out(resource_name)
-                resource = build_resource
-                clean_up_passwords(resource)
-                respond_with resource, :location => {:controller => 'sessions', :action => 'new'}
-              end
-              
-            else #Okay, this is odd, the user is all set to go, but the browser did NOT include the OTP, tampering occurred
-              # OR - the developer did NOT modify the "sessions" view to include 
-              # TODO: What should they put in the view again?
-              
-              #At this point, we're going to log them back out and send them back to the start
-              signed_in = signed_in?(resource_name)
-              Devise.sign_out_all_scopes ? sign_out : sign_out(resource_name)
-              resource = build_resource
-              clean_up_passwords(resource)
-              respond_with resource, :location => {:controller => 'sessions', :action => 'new'}
-            end
-          else #gauth_enabled must have been set to zero, therefore it's off .. lets just continue with the original sign in process
-            set_flash_message(:notice, :signed_in) if is_navigational_format?
-            sign_in(resource_name, resource)
-            respond_with resource, :location => redirect_location(resource_name, resource)
-          end
-        else #It looks like the model did NOT include the get_qr method .. lets just continue with the original sign in process
+          #we head back into the checkga controller with the temporary id
+          respond_with resource, :location => { :controller => 'checkga', :action => 'show', :id => tmpid}
+
+        else #It's not using, or not enabled for Google 2FA - carry on, nothing to see here.
           set_flash_message(:notice, :signed_in) if is_navigational_format?
           sign_in(resource_name, resource)
           respond_with resource, :location => redirect_location(resource_name, resource)
         end
+
       end
+      
     end
   end
 end

data/lib/devise_google_authenticatable/schema.rb

@@ -26,5 +26,13 @@ module DeviseGoogleAuthenticator
       apply_devise_schema :gauth_enabled, Integer, {:default => 0}
     end
 
+    def gauth_tmp
+        apply_devise_schema :gauth_tmp, String
+    end
+
+    def gauth_tmp_datetime
+        apply_devise_schema :gauth_tmp_datetime, Datetime
+    end
+
   end
 end

data/lib/devise_google_authenticator.rb

@@ -5,14 +5,18 @@ require 'active_support/ordered_hash'
 require 'active_support/concern'
 require 'devise'
 
+module Devise # :nodoc:
+	mattr_accessor :ga_timeout
+	@@ga_timeout = 3.minutes
+
+	mattr_accessor :ga_timedrift
+	@@ga_timedrift = 3
+end
+
 # a security extension for devise
 module DeviseGoogleAuthenticator
   autoload :Schema, 'devise_google_authenticatable/schema'
   autoload :Patches, 'devise_google_authenticatable/patches'
-  
-#  module Controllers # :nodoc:
-#    autoload :Helpers, 'devise_google_authenticatable/controllers/helpers'
-#  end
 end
 
 

data/lib/generators/active_record/devise_google_authenticator_generator.rb

@@ -0,0 +1,13 @@
+require 'rails/generators/active_record'
+
+module ActiveRecord
+  module Generators
+    class DeviseGoogleAuthenticatorGenerator < ActiveRecord::Generators::Base
+      source_root File.expand_path("../templates", __FILE__)
+
+      def copy_devise_migration
+        migration_template "migration.rb", "db/migrate/devise_google_authenticator_add_to_#{table_name}"
+      end
+    end
+  end
+end

data/lib/generators/active_record/templates/migration.rb

@@ -0,0 +1,17 @@
+class DeviseGoogleAuthenticatorAddTo<%= table_name.camelize %> < ActiveRecord::Migration
+  def self.up
+    change_table :<%= table_name %> do |t|
+      t.string  :gauth_secret
+      t.string  :gauth_enabled, :default => "f"
+      t.string  :gauth_tmp
+      t.datetime  :gauth_tmp_datetime
+    end
+
+  end
+  
+  def self.down
+    change_table :<%= table_name %> do |t|
+      t.remove :gauth_secret, :gauth_enabled, :gauth_tmp, :gauth_tmp_datetime
+    end
+  end
+end

data/lib/generators/devise_google_authenticator/devise_google_authenticator_generator.rb

@@ -0,0 +1,19 @@
+module DeviseGoogleAuthenticator
+	module Generators
+		class DeviseGoogleAuthenticatorGenerator < Rails::Generators::NamedBase
+
+			namespace "devise_google_authenticator"
+
+			desc "Add :google_authenticatable directive in the given model, plus accessors. Also generate migration for ActiveRecord"
+
+			def inject_devise_google_authenticator_content
+				path = File.join("app","models","#{file_path}.rb")
+				inject_into_file(path, "google_authenticatable, :", :after => "devise :") if File.exists?(path)
+				inject_into_file(path, "gauth_enabled, :gauth_tmp, :gauth_tmp_datetime, :", :after => "attr_accessible :") if File.exists?(path)
+			end
+
+			hook_for :orm
+
+		end
+	end
+end

data/lib/generators/devise_google_authenticator/install_generator.rb

@@ -0,0 +1,23 @@
+module DeviseGoogleAuthenticator
+  module Generators # :nodoc:
+    # Install Generator
+    class InstallGenerator < Rails::Generators::Base
+      source_root File.expand_path("../../templates", __FILE__)
+
+      desc "Install the devise google authenticator extension"
+
+      def add_configs
+        inject_into_file "config/initializers/devise.rb", "\n  # ==> Devise Google Authenticator Extension\n  # Configure extension for devise\n\n" +
+        "  # How long should the user have to enter their token. To change the default, uncomment and change the below:\n" +
+        "  # config.ga_timeout = 3.minutes\n\n" +
+        "  # Change time drift settings for valid token values. To change the default, uncomment and change the below:\n" +
+        "  # config.ga_timedrift = 3\n\n" +
+        "\n", :before => /end[ |\n|]+\Z/
+      end
+
+      def copy_locale
+        copy_file "../../../config/locales/en.yml", "config/locales/devise.google_authenticator.en.yml"
+      end
+    end
+  end
+end

data/lib/generators/devise_google_authenticator/views_generator.rb

@@ -0,0 +1,19 @@
+require 'generators/devise/views_generator'
+
+module DeviseGoogleAuthenticator
+  module Generators
+    class ViewsGenerator < Rails::Generators::Base
+      desc 'Copies all Devise Google Authenticator views to your application.'
+
+      argument :scope, :required => false, :default => nil,
+                       :desc => "The scope to copy views to"
+
+      include ::Devise::Generators::ViewPathTemplates
+      source_root File.expand_path("../../../../app/views/devise", __FILE__)
+      def copy_views
+        view_directory :checkga
+        view_directory :displayqr
+      end
+    end
+  end
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: devise_google_authenticator
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.3.0
   prerelease: 
 platform: ruby
 authors:
@@ -9,85 +9,58 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2011-11-22 00:00:00.000000000Z
+date: 2012-01-29 00:00:00.000000000Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: rails
-  requirement: &70110996098120 !ruby/object:Gem::Requirement
+  name: bundler
+  requirement: &70215350254940 !ruby/object:Gem::Requirement
     none: false
     requirements:
-    - - ! '>='
+    - - ~>
       - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
+        version: 1.0.7
+  type: :development
   prerelease: false
-  version_requirements: *70110996098120
+  version_requirements: *70215350254940
 - !ruby/object:Gem::Dependency
-  name: devise
-  requirement: &70110996096960 !ruby/object:Gem::Requirement
+  name: rails
+  requirement: &70215350251860 !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
       - !ruby/object:Gem::Version
-        version: '0'
-  type: :runtime
-  prerelease: false
-  version_requirements: *70110996096960
-- !ruby/object:Gem::Dependency
-  name: rotp
-  requirement: &70110996095860 !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ! '>='
+        version: 3.0.0
+    - - <
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '3.2'
   type: :runtime
   prerelease: false
-  version_requirements: *70110996095860
-- !ruby/object:Gem::Dependency
-  name: shoulda
-  requirement: &70110996094140 !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ~>
-      - !ruby/object:Gem::Version
-        version: 2.11.3
-  type: :development
-  prerelease: false
-  version_requirements: *70110996094140
+  version_requirements: *70215350251860
 - !ruby/object:Gem::Dependency
-  name: bundler
-  requirement: &70110996093400 !ruby/object:Gem::Requirement
+  name: devise
+  requirement: &70215350226540 !ruby/object:Gem::Requirement
     none: false
     requirements:
-    - - ~>
+    - - ! '>='
       - !ruby/object:Gem::Version
-        version: 1.0.0
-  type: :development
-  prerelease: false
-  version_requirements: *70110996093400
-- !ruby/object:Gem::Dependency
-  name: jeweler
-  requirement: &70110996092680 !ruby/object:Gem::Requirement
-    none: false
-    requirements:
-    - - ~>
+        version: 1.4.6
+    - - <
       - !ruby/object:Gem::Version
-        version: 1.6.4
-  type: :development
+        version: '1.6'
+  type: :runtime
   prerelease: false
-  version_requirements: *70110996092680
+  version_requirements: *70215350226540
 - !ruby/object:Gem::Dependency
-  name: rcov
-  requirement: &70110996091360 !ruby/object:Gem::Requirement
+  name: rotp
+  requirement: &70215350224940 !ruby/object:Gem::Requirement
     none: false
     requirements:
-    - - ! '>='
+    - - <
       - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
+        version: 1.3.2
+  type: :runtime
   prerelease: false
-  version_requirements: *70110996091360
+  version_requirements: *70215350224940
 description: Devise Google Authenticator Extension, for adding Google's OTP to your
   Rails apps!
 email: xntrik@gmail.com
@@ -97,29 +70,28 @@ extra_rdoc_files:
 - LICENSE.txt
 - README.rdoc
 files:
-- .document
-- Gemfile
-- Gemfile.lock
-- LICENSE.txt
-- README.rdoc
-- Rakefile
-- VERSION
 - app/controllers/devise/checkga_controller.rb
 - app/controllers/devise/displayqr_controller.rb
 - app/views/devise/checkga/show.html.erb
 - app/views/devise/displayqr/show.html.erb
-- devise_google_authenticator.gemspec
+- config/locales/en.yml
 - lib/devise_google_authenticatable/controllers/helpers.rb
-- lib/devise_google_authenticatable/hooks/google_authenticatable.rb
 - lib/devise_google_authenticatable/models/google_authenticatable.rb
 - lib/devise_google_authenticatable/orm/active_record.rb
-- lib/devise_google_authenticatable/patches.rb
 - lib/devise_google_authenticatable/patches/check_ga.rb
 - lib/devise_google_authenticatable/patches/display_qr.rb
+- lib/devise_google_authenticatable/patches.rb
 - lib/devise_google_authenticatable/rails.rb
 - lib/devise_google_authenticatable/routes.rb
 - lib/devise_google_authenticatable/schema.rb
 - lib/devise_google_authenticator.rb
+- lib/generators/active_record/devise_google_authenticator_generator.rb
+- lib/generators/active_record/templates/migration.rb
+- lib/generators/devise_google_authenticator/devise_google_authenticator_generator.rb
+- lib/generators/devise_google_authenticator/install_generator.rb
+- lib/generators/devise_google_authenticator/views_generator.rb
+- LICENSE.txt
+- README.rdoc
 homepage: http://github.com/AsteriskLabs/devise_google_authenticator
 licenses:
 - MIT
@@ -132,16 +104,13 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ! '>='
     - !ruby/object:Gem::Version
-      version: '0'
-      segments:
-      - 0
-      hash: 157752787018540220
+      version: 1.8.6
 required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
   requirements:
   - - ! '>='
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.6
 requirements: []
 rubyforge_project: 
 rubygems_version: 1.8.10

data/.document

@@ -1,5 +0,0 @@
-lib/**/*.rb
-bin/*
-- 
-features/**/*.feature
-LICENSE.txt

data/Gemfile

@@ -1,16 +0,0 @@
-source "http://rubygems.org"
-# Add dependencies required to use your gem here.
-# Example:
-#   gem "activesupport", ">= 2.3.5"
-gem "rails"
-gem "devise"
-gem "rotp"
-
-# Add dependencies to develop your gem here.
-# Include everything needed to run rake, tests, features, etc.
-group :development do
-  gem "shoulda", ">= 0"
-  gem "bundler", "~> 1.0.0"
-  gem "jeweler", "~> 1.6.4"
-  gem "rcov", ">= 0"
-end

data/Gemfile.lock

@@ -1,109 +0,0 @@
-GEM
-  remote: http://rubygems.org/
-  specs:
-    actionmailer (3.1.1)
-      actionpack (= 3.1.1)
-      mail (~> 2.3.0)
-    actionpack (3.1.1)
-      activemodel (= 3.1.1)
-      activesupport (= 3.1.1)
-      builder (~> 3.0.0)
-      erubis (~> 2.7.0)
-      i18n (~> 0.6)
-      rack (~> 1.3.2)
-      rack-cache (~> 1.1)
-      rack-mount (~> 0.8.2)
-      rack-test (~> 0.6.1)
-      sprockets (~> 2.0.2)
-    activemodel (3.1.1)
-      activesupport (= 3.1.1)
-      builder (~> 3.0.0)
-      i18n (~> 0.6)
-    activerecord (3.1.1)
-      activemodel (= 3.1.1)
-      activesupport (= 3.1.1)
-      arel (~> 2.2.1)
-      tzinfo (~> 0.3.29)
-    activeresource (3.1.1)
-      activemodel (= 3.1.1)
-      activesupport (= 3.1.1)
-    activesupport (3.1.1)
-      multi_json (~> 1.0)
-    arel (2.2.1)
-    bcrypt-ruby (3.0.1)
-    builder (3.0.0)
-    devise (1.4.9)
-      bcrypt-ruby (~> 3.0)
-      orm_adapter (~> 0.0.3)
-      warden (~> 1.0.3)
-    erubis (2.7.0)
-    git (1.2.5)
-    hike (1.2.1)
-    i18n (0.6.0)
-    jeweler (1.6.4)
-      bundler (~> 1.0)
-      git (>= 1.2.5)
-      rake
-    json (1.6.1)
-    mail (2.3.0)
-      i18n (>= 0.4.0)
-      mime-types (~> 1.16)
-      treetop (~> 1.4.8)
-    mime-types (1.17.2)
-    multi_json (1.0.3)
-    orm_adapter (0.0.5)
-    polyglot (0.3.3)
-    rack (1.3.5)
-    rack-cache (1.1)
-      rack (>= 0.4)
-    rack-mount (0.8.3)
-      rack (>= 1.0.0)
-    rack-ssl (1.3.2)
-      rack
-    rack-test (0.6.1)
-      rack (>= 1.0)
-    rails (3.1.1)
-      actionmailer (= 3.1.1)
-      actionpack (= 3.1.1)
-      activerecord (= 3.1.1)
-      activeresource (= 3.1.1)
-      activesupport (= 3.1.1)
-      bundler (~> 1.0)
-      railties (= 3.1.1)
-    railties (3.1.1)
-      actionpack (= 3.1.1)
-      activesupport (= 3.1.1)
-      rack-ssl (~> 1.3.2)
-      rake (>= 0.8.7)
-      rdoc (~> 3.4)
-      thor (~> 0.14.6)
-    rake (0.9.2.2)
-    rcov (0.9.11)
-    rdoc (3.11)
-      json (~> 1.4)
-    rotp (1.3.2)
-    shoulda (2.11.3)
-    sprockets (2.0.3)
-      hike (~> 1.2)
-      rack (~> 1.0)
-      tilt (~> 1.1, != 1.3.0)
-    thor (0.14.6)
-    tilt (1.3.3)
-    treetop (1.4.10)
-      polyglot
-      polyglot (>= 0.3.1)
-    tzinfo (0.3.31)
-    warden (1.0.6)
-      rack (>= 1.0)
-
-PLATFORMS
-  ruby
-
-DEPENDENCIES
-  bundler (~> 1.0.0)
-  devise
-  jeweler (~> 1.6.4)
-  rails
-  rcov
-  rotp
-  shoulda

data/Rakefile

@@ -1,53 +0,0 @@
-# encoding: utf-8
-
-require 'rubygems'
-require 'bundler'
-begin
-  Bundler.setup(:default, :development)
-rescue Bundler::BundlerError => e
-  $stderr.puts e.message
-  $stderr.puts "Run `bundle install` to install missing gems"
-  exit e.status_code
-end
-require 'rake'
-
-require 'jeweler'
-Jeweler::Tasks.new do |gem|
-  # gem is a Gem::Specification... see http://docs.rubygems.org/read/chapter/20 for more options
-  gem.name = "devise_google_authenticator"
-  gem.homepage = "http://github.com/xntrik/devise_google_authenticator"
-  gem.license = "MIT"
-  gem.summary = %Q{Devise Google Authenticator Extension}
-  gem.description = %Q{Devise Google Authenticator Extension, for adding Google's OTP to your Rails apps!}
-  gem.email = "xntrik@gmail.com"
-  gem.authors = ["Christian Frichot"]
-  # dependencies defined in Gemfile
-end
-Jeweler::RubygemsDotOrgTasks.new
-
-require 'rake/testtask'
-Rake::TestTask.new(:test) do |test|
-  test.libs << 'lib' << 'test'
-  test.pattern = 'test/**/test_*.rb'
-  test.verbose = true
-end
-
-require 'rcov/rcovtask'
-Rcov::RcovTask.new do |test|
-  test.libs << 'test'
-  test.pattern = 'test/**/test_*.rb'
-  test.verbose = true
-  test.rcov_opts << '--exclude "gems/*"'
-end
-
-task :default => :test
-
-require 'rake/rdoctask'
-Rake::RDocTask.new do |rdoc|
-  version = File.exist?('VERSION') ? File.read('VERSION') : ""
-
-  rdoc.rdoc_dir = 'rdoc'
-  rdoc.title = "devise_google_authenticator #{version}"
-  rdoc.rdoc_files.include('README*')
-  rdoc.rdoc_files.include('lib/**/*.rb')
-end

data/VERSION

@@ -1 +0,0 @@
-0.1.0

data/devise_google_authenticator.gemspec

@@ -1,80 +0,0 @@
-# Generated by jeweler
-# DO NOT EDIT THIS FILE DIRECTLY
-# Instead, edit Jeweler::Tasks in Rakefile, and run 'rake gemspec'
-# -*- encoding: utf-8 -*-
-
-Gem::Specification.new do |s|
-  s.name = "devise_google_authenticator"
-  s.version = "0.2.0"
-
-  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
-  s.authors = ["Christian Frichot"]
-  s.date = "2011-11-22"
-  s.description = "Devise Google Authenticator Extension, for adding Google's OTP to your Rails apps!"
-  s.email = "xntrik@gmail.com"
-  s.extra_rdoc_files = [
-    "LICENSE.txt",
-    "README.rdoc"
-  ]
-  s.files = [
-    ".document",
-    "Gemfile",
-    "Gemfile.lock",
-    "LICENSE.txt",
-    "README.rdoc",
-    "Rakefile",
-    "VERSION",
-    "app/controllers/devise/checkga_controller.rb",
-    "app/controllers/devise/displayqr_controller.rb",
-    "app/views/devise/checkga/show.html.erb",
-    "app/views/devise/displayqr/show.html.erb",
-    "devise_google_authenticator.gemspec",
-    "lib/devise_google_authenticatable/controllers/helpers.rb",
-    "lib/devise_google_authenticatable/hooks/google_authenticatable.rb",
-    "lib/devise_google_authenticatable/models/google_authenticatable.rb",
-    "lib/devise_google_authenticatable/orm/active_record.rb",
-    "lib/devise_google_authenticatable/patches.rb",
-    "lib/devise_google_authenticatable/patches/check_ga.rb",
-    "lib/devise_google_authenticatable/patches/display_qr.rb",
-    "lib/devise_google_authenticatable/rails.rb",
-    "lib/devise_google_authenticatable/routes.rb",
-    "lib/devise_google_authenticatable/schema.rb",
-    "lib/devise_google_authenticator.rb"
-  ]
-  s.homepage = "http://github.com/AsteriskLabs/devise_google_authenticator"
-  s.licenses = ["MIT"]
-  s.require_paths = ["lib"]
-  s.rubygems_version = "1.8.10"
-  s.summary = "Devise Google Authenticator Extension"
-
-  if s.respond_to? :specification_version then
-    s.specification_version = 3
-
-    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
-      s.add_runtime_dependency(%q<rails>, [">= 0"])
-      s.add_runtime_dependency(%q<devise>, [">= 0"])
-      s.add_runtime_dependency(%q<rotp>, [">= 0"])
-      s.add_development_dependency(%q<shoulda>, ["~> 2.11.3"])
-      s.add_development_dependency(%q<bundler>, ["~> 1.0.0"])
-      s.add_development_dependency(%q<jeweler>, ["~> 1.6.4"])
-      s.add_development_dependency(%q<rcov>, [">= 0"])
-    else
-      s.add_dependency(%q<rails>, [">= 0"])
-      s.add_dependency(%q<devise>, [">= 0"])
-      s.add_dependency(%q<rotp>, [">= 0"])
-      s.add_dependency(%q<shoulda>, ["~> 2.11.3"])
-      s.add_dependency(%q<bundler>, ["~> 1.0.0"])
-      s.add_dependency(%q<jeweler>, ["~> 1.6.4"])
-      s.add_dependency(%q<rcov>, [">= 0"])
-    end
-  else
-    s.add_dependency(%q<rails>, [">= 0"])
-    s.add_dependency(%q<devise>, [">= 0"])
-    s.add_dependency(%q<rotp>, [">= 0"])
-    s.add_dependency(%q<shoulda>, ["~> 2.11.3"])
-    s.add_dependency(%q<bundler>, ["~> 1.0.0"])
-    s.add_dependency(%q<jeweler>, ["~> 1.6.4"])
-    s.add_dependency(%q<rcov>, [">= 0"])
-  end
-end
-

data/lib/devise_google_authenticatable/hooks/google_authenticatable.rb

@@ -1,9 +0,0 @@
-Warden::Manager.after_set_user do |record, warden, options|
-  if record.respond_to?(:login_phase_one)
-    if warden.session(options[:scope]).fetch(:gauth_phase_one,"nope") == "nope"
-      redirect_to :controller => 'checkga', :action => 'show'
-    end
-    #warden.session(options[:scope])[:gauth_phase_one] 
-  #respond_with record, :location => {:controller => 'checkga', :action => 'show'}
-  end
-end