devise_oauth2_providable 0.3.4 → 0.3.5

data/config/routes.rb

@@ -1,5 +1,4 @@
-require 'token_endpoint'
-Rails.application.routes.draw do |map|
+Rails.application.routes.draw do
   scope '/oauth2', :name_prefix => 'oauth2' do
     resources :authorizations, :controller => 'oauth2/authorizations', :only => :create
     resource :token, :controller => 'oauth2/tokens', :only => :create

data/lib/devise_oauth2_providable/version.rb

@@ -1,5 +1,5 @@
 module Devise
   module Oauth2Providable
-    VERSION = "0.3.4"
+    VERSION = "0.3.5"
   end
 end

metadata

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification 
 name: devise_oauth2_providable
 version: !ruby/object:Gem::Version 
-  hash: 27
+  hash: 25
   prerelease: 
   segments: 
   - 0
   - 3
-  - 4
-  version: 0.3.4
+  - 5
+  version: 0.3.5
 platform: ruby
 authors: 
 - Ryan Sonnek
@@ -123,7 +123,6 @@ files:
 - lib/devise_oauth2_providable/strategy.rb
 - lib/devise_oauth2_providable/version.rb
 - lib/expirable_token.rb
-- lib/token_endpoint.rb
 - spec/devise_oauth2_providable_spec.rb
 - spec/rails_app/.gitignore
 - spec/rails_app/.rspec

data/lib/token_endpoint.rb

@@ -1,57 +0,0 @@
-class TokenEndpoint
-  class InvalidGrantType < StandardError; end
-  def call(env)
-    authenticator.call(env)
-  end
-
-  private
-
-  def authenticator
-    Rack::OAuth2::Server::Token.new do |req, res|
-      client = Client.find_by_identifier(req.client_id)
-      req.invalid_client! unless client && client.secret == req.client_secret
-      begin
-        res.access_token = access_token(req, client).to_bearer_token
-      rescue => e
-        puts e.inspect
-        req.invalid_grant!
-      end
-    end
-  end
-
-  def access_token(req, client)
-    refresh_token = find_refresh_token(req, client)
-    refresh_token.access_tokens.create!(:client => client, :user => refresh_token.user)
-  end
-
-  # NOTE: extended assertion grant_types are not supported yet.
-  # NOTE: client_credentials grant_types are not yet supported
-  def find_refresh_token(req, client)
-    case req.grant_type
-    when :authorization_code
-      code = AuthorizationCode.valid.find_by_token(req.code)
-      raise InvalidGrantType.new('invalid authorization code') unless code && code.valid_request?(req)
-      client.refresh_tokens.create! :user => code.user
-    when :password
-      resource = mapping.to.find_for_authentication(mapping.to.authentication_keys.first => req.username)
-      raise InvalidGrantType.new('user not found') unless resource
-      raise InvalidGrantType.new('user does not support password authentication') unless resource.respond_to?(:valid_password?)
-      valid = resource.valid_for_authentication? { resource.valid_password?(req.password) }
-      raise InvalidGrantType.new("authentication failed: #{valid}") unless valid.is_a?(TrueClass)
-      client.refresh_tokens.create! :user => resource
-    when :refresh_token
-      refresh_token = client.refresh_tokens.valid.find_by_token(req.refresh_token)
-      raise InvalidGrantType.new('refresh token not found') unless refresh_token
-      refresh_token
-    else
-      raise InvalidGrantType.new('invalid grant type')
-    end
-  end
-  def mapping
-    Devise.mappings[scope]
-  end
-  #TODO: allow configurable mapping to other resources
-  def scope
-    :user
-  end
-end