devise_pam_authenticatable 1.0.0

data/.rvmrc

@@ -0,0 +1 @@
+rvm 1.8.7@lithium18

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2010 [name of plugin creator]
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,50 @@
+Devise - PAM Authentication
+===========================
+
+devise_pam_authenticatable is a Devise (http://github.com/plataformatec/devise) 
+extension for authenticating using PAM (Pluggable Authentication Modulues) 
+via the rpam gem. 
+
+This allows you to authenticate against the local hosts authentication
+system including local account usernames and passwords.
+
+There are obvious security risks with using PAM authentication via a
+web-based application. Make sure you at least use SSL to keep usernames and
+passwords encrypted via HTTPS. 
+
+Installation
+------------
+
+In the Gemfile for your application:
+
+    gem "devise_pam_authenticatable", :git => "git://github.com/jwilson511/devise_pam_authenticatable.git"
+
+Setup
+-----
+
+The devise_pam_authenticatable extension required the use of 'username' as
+the login credential (not email). Make sure your Devise model is using
+'username' and not 'email'. 
+
+In your Devise model, ensure the following is present:
+
+    class User < ActiveRecord::Base
+
+      devise :pam_authenticatable
+
+      # Setup accessible (or protected) attributes for your model
+      attr_accessible :username, :password
+
+    end
+
+
+References
+----------
+
+* [Devise](http://github.com/plataformatec/devise)
+* [Warden](http://github.com/hassox/warden)
+
+
+Released under the MIT license
+
+Copyright (c) 2011 James Wilson, LithiumCorp Pty Ltd

data/Rakefile

@@ -0,0 +1,40 @@
+require 'rake'
+require 'rake/testtask'
+require 'rake/rdoctask'
+
+desc 'Default: run unit tests.'
+task :default => :test
+
+desc 'Test the devise_pam_authenticatable plugin.'
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'lib'
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = true
+end
+
+desc 'Generate documentation for the devise_pam_authenticatable plugin.'
+Rake::RDocTask.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'DevisePAMAuthenticatable'
+  rdoc.options << '--line-numbers' << '--inline-source'
+  rdoc.rdoc_files.include('README')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+begin
+  require 'jeweler'
+  Jeweler::Tasks.new do |gemspec|
+    gemspec.name = "devise_pam_authenticatable"
+    gemspec.summary = "Devise PAM authentication module using rpam"
+    gemspec.description = "For authenticating against PAM (Pluggable Authentication Modules)"
+    gemspec.email = "jwilson@lithiumcorp.com"
+    gemspec.homepage = "http://github.com/jwilson511/devise_pam_authenticatable"
+    gemspec.authors = ["James Wilson"]
+    gemspec.add_runtime_dependency "devise", "> 1.1.0"
+    gemspec.add_runtime_dependency "rpam"
+  end
+  Jeweler::GemcutterTasks.new
+rescue LoadError
+  puts "Jeweler (or a dependency) not available. Install it with: gem install jeweler"
+end

data/VERSION

@@ -0,0 +1 @@
+1.0.0

data/devise_pam_authenticatable.gemspec

@@ -0,0 +1,52 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run 'rake gemspec'
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{devise_pam_authenticatable}
+  s.version = "1.0.0"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["James Wilson"]
+  s.date = %q{2011-01-13}
+  s.description = %q{For authenticating against PAM (Pluggable Authentication Modules)}
+  s.email = %q{jwilson@lithiumcorp.com}
+  s.extra_rdoc_files = [
+    "README.md"
+  ]
+  s.files = [
+    ".rvmrc",
+    "MIT-LICENSE",
+    "README.md",
+    "Rakefile",
+    "VERSION",
+    "devise_pam_authenticatable.gemspec",
+    "lib/devise_pam_authenticatable.rb",
+    "lib/devise_pam_authenticatable/model.rb",
+    "lib/devise_pam_authenticatable/pam_adapter.rb",
+    "lib/devise_pam_authenticatable/routes.rb",
+    "lib/devise_pam_authenticatable/strategy.rb",
+    "rails/init.rb"
+  ]
+  s.homepage = %q{http://github.com/jwilson511/devise_pam_authenticatable}
+  s.require_paths = ["lib"]
+  s.rubygems_version = %q{1.4.1}
+  s.summary = %q{Devise PAM authentication module using rpam}
+
+  if s.respond_to? :specification_version then
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
+      s.add_runtime_dependency(%q<devise>, ["> 1.1.0"])
+      s.add_runtime_dependency(%q<rpam>, [">= 0"])
+    else
+      s.add_dependency(%q<devise>, ["> 1.1.0"])
+      s.add_dependency(%q<rpam>, [">= 0"])
+    end
+  else
+    s.add_dependency(%q<devise>, ["> 1.1.0"])
+    s.add_dependency(%q<rpam>, [">= 0"])
+  end
+end
+

data/lib/devise_pam_authenticatable.rb

@@ -0,0 +1,10 @@
+require 'devise'
+
+$: << File.expand_path("..", __FILE__)
+
+require 'devise_pam_authenticatable/model'
+require 'devise_pam_authenticatable/strategy'
+require 'devise_pam_authenticatable/routes'
+require 'devise_pam_authenticatable/pam_adapter'
+
+Devise.add_module(:pam_authenticatable, :strategy => true, :model => "devise_pam_authenticatable/model", :route => true)

data/lib/devise_pam_authenticatable/model.rb

@@ -0,0 +1,43 @@
+require 'devise_pam_authenticatable/strategy'
+
+module Devise
+  module Models
+   module PamAuthenticatable
+
+     def self.included(base)
+       base.class_eval do
+         extend ClassMethods
+
+         attr_accessor :password
+       end
+     end
+     
+     # Set password to nil
+     def clean_up_passwords
+       self.password = nil
+     end
+
+     # Checks if a resource is valid upon authentication.
+     def valid_pam_authentication?(password)
+       Devise::PamAdapter.valid_credentials?(self.username, password)
+     end
+     
+     module ClassMethods
+       def authenticate_with_pam(attributes={})
+         return nil unless attributes[:username].present?
+
+         resource = new
+         resource[:username] = attributes[:username]
+         resource[:password] = attributes[:password]
+
+         if resource.try(:valid_pam_authentication?, attributes[:password])
+           resource.save if resource.new_record?
+           return resource
+         else
+           return nil
+         end
+       end
+     end
+   end
+  end
+end

data/lib/devise_pam_authenticatable/pam_adapter.rb

@@ -0,0 +1,14 @@
+require 'rpam' 
+include Rpam
+
+module Devise
+
+  module PamAdapter
+
+    def self.valid_credentials?(username, password)
+      authpam(username, password)
+    end
+
+  end
+
+end

data/lib/devise_pam_authenticatable/routes.rb

@@ -0,0 +1,4 @@
+ActionController::Routing::Mapper.class_eval do
+  protected
+    alias_method :devise_pam_authenticatable, :devise_session
+end

data/lib/devise_pam_authenticatable/strategy.rb

@@ -0,0 +1,37 @@
+require 'devise/strategies/base'
+
+module Devise
+  module Strategies
+    class PamAuthenticatable < Base
+      
+      def valid?
+        puts "Asked if valid"
+        valid_controller? && valid_params? && mapping.to.respond_to?(:authenticate_with_pam)
+      end
+      
+      def authenticate!
+        puts "Asked to authenticate"
+        if resource = mapping.to.authenticate_with_pam(params[scope])
+          success!(resource)
+        else
+          fail(:invalid)
+        end
+      end
+      
+      protected
+
+        def valid_controller?
+          puts "Controller is #{params[:controller]}"
+          params[:controller] == 'devise/sessions'
+        end
+
+        def valid_params?
+          puts "Scope is #{params[scope]}"
+          params[scope] && params[scope][:password].present?
+        end
+
+    end
+  end
+end
+
+Warden::Strategies.add(:pam_authenticatable, Devise::Strategies::PamAuthenticatable)

data/rails/init.rb

@@ -0,0 +1,5 @@
+require 'devise'
+
+$: << File.expand_path("..", __FILE__)
+
+require 'lib/devise_pam_authenticatable'

metadata

@@ -0,0 +1,107 @@
+--- !ruby/object:Gem::Specification 
+name: devise_pam_authenticatable
+version: !ruby/object:Gem::Version 
+  hash: 23
+  prerelease: 
+  segments: 
+  - 1
+  - 0
+  - 0
+  version: 1.0.0
+platform: ruby
+authors: 
+- James Wilson
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2011-01-13 00:00:00 +11:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: devise
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">"
+      - !ruby/object:Gem::Version 
+        hash: 19
+        segments: 
+        - 1
+        - 1
+        - 0
+        version: 1.1.0
+  type: :runtime
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: rpam
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id002
+description: For authenticating against PAM (Pluggable Authentication Modules)
+email: jwilson@lithiumcorp.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- README.md
+files: 
+- .rvmrc
+- MIT-LICENSE
+- README.md
+- Rakefile
+- VERSION
+- devise_pam_authenticatable.gemspec
+- lib/devise_pam_authenticatable.rb
+- lib/devise_pam_authenticatable/model.rb
+- lib/devise_pam_authenticatable/pam_adapter.rb
+- lib/devise_pam_authenticatable/routes.rb
+- lib/devise_pam_authenticatable/strategy.rb
+- rails/init.rb
+has_rdoc: true
+homepage: http://github.com/jwilson511/devise_pam_authenticatable
+licenses: []
+
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.4.1
+signing_key: 
+specification_version: 3
+summary: Devise PAM authentication module using rpam
+test_files: []
+