RubyGems - doorkeeper-openid_connect - Versions diffs - 1.0.0 → 1.0.1 - Mend

doorkeeper-openid_connect 1.0.0 → 1.0.1

Files changed (6) hide show

checksums.yaml +4 -4
data/README.md +16 -2
data/lib/doorkeeper/openid_connect/config.rb +3 -1
data/lib/doorkeeper/openid_connect/version.rb +1 -1
data/spec/lib/doorkeeper/openid_connect/config_spec.rb +10 -0
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 4a7c3aedaa20bdd3901db1b929c3c3bb99657741
-  data.tar.gz: 87ac0f39c66b33ddbbf37507f3aed1d1982077b7
+  metadata.gz: ae67f5718e8a89e0ebca2879c0e160d85b605f05
+  data.tar.gz: eb28b2f5e753cd4844830358b7cca3c81ef4de6f
 SHA512:
-  metadata.gz: 0a9d2fc390e85c552b1cfe7bd316864b5d86973044233f276e46dd442ce4fc566ff55e7b5132c671b04c045c761ffcedbe35419c5f3d70b1e30852300c1ab13b
-  data.tar.gz: ae08481f8d98779741c9cd7daaceaea8825b178c8591e3d33423f9cb6bcfc399fa0331e899e776c4481a71bf8b384e7af7dbb77f980140d0d4c199aa342f585b
+  metadata.gz: 20967d5bcc944e7afd6a0788c67b4618d8c250e97afa180f8a11b27aef970e917d64229866feccfbb6900fd01c44ee0b0c2b6697186af96ef1f48cbacb518346
+  data.tar.gz: 57f7f47f3dcdbf6a6e226ad7416c4dbb75912d7bc2ab8dfe73002d4e969780e8cbb8190e27eaabd8f2682006afe8f09952dc173cbbb0ac9ea0ac3b370c9805d5

data/README.md CHANGED Viewed

@@ -42,12 +42,21 @@ Add the following to your config/initializers/doorkeeper_openid_connect.rb:
     -----END RSA PUBLIC KEY-----
     eol
+      resource_owner_from_access_token do |access_token|
+        # Example implementation:
+        # User.find_by(id: access_token.resource_owner_id)
+      end
       issuer 'issuer string'
       subject do |resource_owner|
-        resource_owner.key
+        # Example implementation:
+        # resource_owner.key
       end
+      # Expiration time on or after which the ID Token MUST NOT be accepted for processing. (default 120 seconds).
+      # expiration 600
       claims do
         claim :_foo_ do |resource_owner|
           resource_owner.foo
@@ -66,13 +75,18 @@ The following configurations are required:
 * jws_private_key - private key for JSON Web Signature(https://tools.ietf.org/html/draft-ietf-jose-json-web-signature-31)
 * jws_public_key  - public key for JSON Web Signature(https://tools.ietf.org/html/draft-ietf-jose-json-web-signature-31)
-* issuer - Issuer Identifier for the Issuer of the response. The iss value is a case sensitive URL using the https scheme that contains scheme, host, and optionally, port number and path components and no query or fragment components.
 * resource_owner_from_access_token - defines how to translate the doorkeeper access_token to a resource owner model
 Given a resource owner, the following claims are required:
+* issuer - REQUIRED. Issuer Identifier for the Issuer of the response. The iss value is a case sensitive URL using the https scheme that contains scheme, host, and optionally, port number and path components and no query or fragment components.
 * subject - REQUIRED. Subject Identifier. A locally unique and never reassigned identifier within the Issuer for the End-User, which is intended to be consumed by the Client, e.g., 24400320 or AItOawmwtWwcT0k51BayewNvutrJUqsvl6qs7A4. It MUST NOT exceed 255 ASCII characters in length. The sub value is a case sensitive string.
+Exp claim can optionally be specified by expiration configuration.
+* exp - REQUIRED. Expiration time on or after which the ID Token MUST NOT be accepted for processing. The processing of this parameter requires that the current date/time MUST be before the expiration date/time listed in the value. Implementers MAY provide for some small leeway, usually no more than a few minutes, to account for clock skew. Its value is a JSON number representing the number of seconds from 1970-01-01T0:0:0Z as measured in UTC until the date/time. See RFC 3339 [RFC3339] for details regarding date/times in general and UTC in particular.
+    * Default 120 seconds
 Custom claims can optionally be specified in a `claims` block.  The following claim types are currently supported:
 * normal_claim - Normal claims (http://openid.net/specs/openid-connect-core-1_0.html#NormalClaims) - specify claim name and a block using resource_owner to determine the claim value.

data/lib/doorkeeper/openid_connect/config.rb CHANGED Viewed

@@ -119,7 +119,9 @@ module Doorkeeper
                nil
              end)
+      option :expiration, default: 120
       option :claims, builder_class: ClaimsBuilder
     end
   end
-end
+end

data/lib/doorkeeper/openid_connect/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Doorkeeper
   module OpenidConnect
-    VERSION = '1.0.0'
+    VERSION = '1.0.1'
   end
 end

data/spec/lib/doorkeeper/openid_connect/config_spec.rb CHANGED Viewed

@@ -53,6 +53,16 @@ describe Doorkeeper::OpenidConnect, 'configuration' do
     end
   end
+  describe 'expiration' do
+    it 'sets the value that is accessible via expiration' do
+      value = ''
+      Doorkeeper::OpenidConnect.configure do
+        expiration value
+      end
+      expect(subject.expiration).to eq(value)
+    end
+  end
   describe 'claims' do
     it 'sets the claims configuration that is accessible via claims' do
       Doorkeeper::OpenidConnect.configure do

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: doorkeeper-openid_connect
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.0.1
 platform: ruby
 authors:
 - Sam Dengler
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2015-03-24 00:00:00.000000000 Z
+date: 2015-05-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: railties