doorkeeper-openid_connect 1.0.0

data/spec/dummy/config.ru

@@ -0,0 +1,4 @@
+# This file is used by Rack-based servers to start the application.
+
+require ::File.expand_path('../config/environment',  __FILE__)
+run Dummy::Application

data/spec/dummy/config/application.rb

@@ -0,0 +1,55 @@
+require File.expand_path('../boot', __FILE__)
+
+require 'action_controller/railtie'
+require 'active_support/core_ext/numeric'
+require 'sprockets/railtie'
+
+Bundler.require :default
+
+# orm = if [:mongoid2, :mongoid3, :mongoid4].include?(DOORKEEPER_ORM)
+#         Mongoid.load!(File.join(File.dirname(File.expand_path(__FILE__)), "#{DOORKEEPER_ORM}.yml"))
+#         :mongoid
+#       else
+#         DOORKEEPER_ORM
+#       end
+#
+# require "#{orm}/railtie"
+
+module Dummy
+  class Application < Rails::Application
+    # Settings in config/environments/* take precedence over those specified here.
+    # Application configuration should go into files in config/initializers
+    # -- all .rb files in that directory are automatically loaded.
+
+    # Only load the plugins named here, in the order given (default is alphabetical).
+    # :all can be used as a placeholder for all plugins not explicitly named.
+    # config.plugins = [ :exception_notification, :ssl_requirement, :all ]
+
+    # Activate observers that should always be running.
+    # config.active_record.observers = :cacher, :garbage_collector, :forum_observer
+
+    # if defined?(ActiveRecord) && Rails.version.to_i < 4
+    #   config.active_record.whitelist_attributes = true
+    # end
+
+    # Set Time.zone default to the specified zone and make Active Record auto-convert to this zone.
+    # Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC.
+    # config.time_zone = 'Central Time (US & Canada)'
+
+    # The default locale is :en and all translations from config/locales/*.rb,yml are auto loaded.
+    config.i18n.load_path += Dir[Rails.root.join('../../', 'config/locales', '*.{rb,yml}').to_s]
+    # config.i18n.default_locale = :en
+
+    # Configure the default encoding used in templates for Ruby 1.9.
+    config.encoding = 'utf-8'
+
+    # Configure sensitive parameters which will be filtered from the log file.
+    config.filter_parameters += [:password]
+
+    # Enable the asset pipeline
+    config.assets.enabled = true
+
+    # Version of your assets, change this if you want to expire all your assets
+    config.assets.version = '1.0'
+  end
+end

data/spec/dummy/config/boot.rb

@@ -0,0 +1,6 @@
+require 'rubygems'
+require 'bundler/setup'
+
+DOORKEEPER_ORM = (ENV['orm'] || :active_record).to_sym unless defined?(DOORKEEPER_ORM)
+
+$LOAD_PATH.unshift File.expand_path('../../../../lib', __FILE__)

data/spec/dummy/config/database.yml

@@ -0,0 +1,15 @@
+development:
+  adapter: sqlite3
+  database: db/development.sqlite3
+  pool: 5
+  timeout: 5000
+
+test:
+  adapter: sqlite3
+  database: ":memory:"
+  timeout: 500
+
+production:
+  adapter: sqlite3
+  database: ":memory:"
+  timeout: 500

data/spec/dummy/config/environment.rb

@@ -0,0 +1,5 @@
+# Load the rails application
+require File.expand_path('../application', __FILE__)
+
+# Initialize the rails application
+Dummy::Application.initialize!

data/spec/dummy/config/environments/development.rb

@@ -0,0 +1,29 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # In the development environment your application's code is reloaded on
+  # every request.  This slows down response time but is perfect for development
+  # since you don't have to restart the web server when you make code changes.
+  config.cache_classes = false
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Don't care if the mailer can't send
+  # config.action_mailer.raise_delivery_errors = false
+
+  # Print deprecation notices to the Rails logger
+  config.active_support.deprecation = :log
+
+  # Only use best-standards-support built into browsers
+  config.action_dispatch.best_standards_support = :builtin
+
+  # Do not compress assets
+  config.assets.compress = false
+
+  # Expands the lines which load the assets
+  config.assets.debug = true
+
+  config.eager_load = false
+end

data/spec/dummy/config/environments/production.rb

@@ -0,0 +1,62 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # Code is not reloaded between requests
+  config.cache_classes = true
+
+  # Full error reports are disabled and caching is turned on
+  config.consider_all_requests_local       = false
+  config.action_controller.perform_caching = true
+
+  # Disable Rails's static asset server (Apache or nginx will already do this)
+  config.serve_static_assets = false
+
+  # Compress JavaScripts and CSS
+  config.assets.compress = true
+
+  # Don't fallback to assets pipeline if a precompiled asset is missed
+  config.assets.compile = false
+
+  # Generate digests for assets URLs
+  config.assets.digest = true
+
+  # Defaults to Rails.root.join("public/assets")
+  # config.assets.manifest = YOUR_PATH
+
+  # Specifies the header that your server uses for sending files
+  # config.action_dispatch.x_sendfile_header = "X-Sendfile" # for apache
+  # config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for nginx
+
+  # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies.
+  # config.force_ssl = true
+
+  # See everything in the log (default is :info)
+  # config.log_level = :debug
+
+  # Use a different logger for distributed setups
+  # config.logger = SyslogLogger.new
+
+  # Use a different cache store in production
+  # config.cache_store = :mem_cache_store
+
+  # Enable serving of images, stylesheets, and JavaScripts from an asset server
+  # config.action_controller.asset_host = "http://assets.example.com"
+
+  # Precompile additional assets (application.js, application.css, and all non-JS/CSS are already added)
+  # config.assets.precompile += %w( search.js )
+
+  # Disable delivery errors, bad email addresses will be ignored
+  # config.action_mailer.raise_delivery_errors = false
+
+  # Enable threaded mode
+  # config.threadsafe!
+
+  # Enable locale fallbacks for I18n (makes lookups for any locale fall back to
+  # the I18n.default_locale when a translation can not be found)
+  config.i18n.fallbacks = true
+
+  # Send deprecation notices to registered listeners
+  config.active_support.deprecation = :notify
+
+  config.eager_load = true
+end

data/spec/dummy/config/environments/test.rb

@@ -0,0 +1,56 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # The test environment is used exclusively to run your application's
+  # test suite.  You never need to work with it otherwise.  Remember that
+  # your test database is "scratch space" for the test suite and is wiped
+  # and recreated between test runs.  Don't rely on the data there!
+  config.cache_classes = true
+
+  # Configure static asset server for tests with Cache-Control for performance
+  config.serve_static_assets = true
+  config.static_cache_control = 'public, max-age=3600'
+
+  if Rails.version.to_i < 4
+    # Log error messages when you accidentally call methods on nil
+    config.whiny_nils = true
+  end
+
+  if Rails.version.to_i >= 4
+    # Do not eager load code on boot. This avoids loading your whole application
+    # just for the purpose of running a single test. If you are using a tool that
+    # preloads Rails for running tests, you may have to set it to true.
+    config.eager_load = false
+    config.i18n.enforce_available_locales = true
+  end
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Raise exceptions instead of rendering exception templates
+  config.action_dispatch.show_exceptions = false
+
+  # Disable request forgery protection in test environment
+  config.action_controller.allow_forgery_protection    = false
+
+  # Tell Action Mailer not to deliver emails to the real world.
+  # The :test delivery method accumulates sent emails in the
+  # ActionMailer::Base.deliveries array.
+  # config.action_mailer.delivery_method = :test
+
+  # Use SQL instead of Active Record's schema dumper when creating the test database.
+  # This is necessary if your schema can't be completely dumped by the schema dumper,
+  # like if you have constraints or database-specific column types
+  # config.active_record.schema_format = :sql
+
+  # Print deprecation notices to the stderr
+  config.active_support.deprecation = :stderr
+
+  config.eager_load = true
+
+  # if DOORKEEPER_ORM == :active_record
+  #   config.active_record.table_name_prefix = TABLE_NAME_PREFIX.to_s
+  #   config.active_record.table_name_suffix = TABLE_NAME_SUFFIX.to_s
+  # end
+end

data/spec/dummy/config/initializers/backtrace_silencers.rb

@@ -0,0 +1,7 @@
+# Be sure to restart your server when you modify this file.
+
+# You can add backtrace silencers for libraries that you're using but don't wish to see in your backtraces.
+# Rails.backtrace_cleaner.add_silencer { |line| line =~ /my_noisy_library/ }
+
+# You can also remove all the silencers if you're trying to debug a problem that might stem from framework code.
+# Rails.backtrace_cleaner.remove_silencers!

data/spec/dummy/config/initializers/doorkeeper.rb

@@ -0,0 +1,59 @@
+# Doorkeeper.configure do
+#   # Change the ORM that doorkeeper will use
+#   # Currently supported options are :active_record, :mongoid2, :mongoid3, :mongo_mapper
+#   orm DOORKEEPER_ORM
+#
+#   # This block will be called to check whether the
+#   # resource owner is authenticated or not
+#   resource_owner_authenticator do
+#     # Put your resource owner authentication logic here.
+#     # e.g. User.find_by_id(session[:user_id]) || redirect_to(new_user_session_url)
+#     User.where(id: session[:user_id]).first || redirect_to(root_url, alert: 'Needs sign in.')
+#   end
+#
+#   # If you want to restrict the access to the web interface for
+#   # adding oauth authorized applications you need to declare the
+#   # block below
+#   # admin_authenticator do
+#   #   # Put your admin authentication logic here.
+#   #   Admin.find_by_id(session[:admin_id]) || redirect_to(new_admin_session_url)
+#   # end
+#
+#   # Authorization Code expiration time (default 10 minutes).
+#   # access_token_expires_in 10.minutes
+#
+#   # Access token expiration time (default 2 hours)
+#   # If you want to disable expiration, set this to nil.
+#   # access_token_expires_in 2.hours
+#
+#   # Issue access tokens with refresh token (disabled by default)
+#   use_refresh_token
+#
+#   # Define access token scopes for your provider
+#   # For more information go to
+#   # https://github.com/doorkeeper-gem/doorkeeper/wiki/Using-Scopes
+#   default_scopes  :public
+#   optional_scopes :write, :update
+#
+#   # Change the way client credentials are retrieved from the request object.
+#   # By default it retrieves first from `HTTP_AUTHORIZATION` header and
+#   # fallsback to `:client_id` and `:client_secret` from `params` object
+#   # Check out the wiki for mor information on customization
+#   # client_credentials :from_basic, :from_params
+#
+#   # Change the way access token is authenticated from the request object.
+#   # By default it retrieves first from `HTTP_AUTHORIZATION` header and
+#   # fallsback to `:access_token` or `:bearer_token` from `params` object
+#   # Check out the wiki for mor information on customization
+#   # access_token_methods :from_bearer_authorization, :from_access_token_param, :from_bearer_param
+#
+#   # Change the native redirect uri for client apps
+#   # When clients register with the following redirect uri, they won't be redirected to any server and the authorization code will be displayed within the provider
+#   # The value can be any string. Use nil to disable this feature. When disabled, clients must provide a valid URL
+#   # (Similar behaviour: https://developers.google.com/accounts/docs/OAuth2InstalledApp#choosingredirecturi)
+#   #
+#   # native_redirect_uri 'urn:ietf:wg:oauth:2.0:oob'
+#
+#   # WWW-Authenticate Realm (default 'Doorkeeper').
+#   realm 'Doorkeeper'
+# end

data/spec/dummy/config/initializers/secret_token.rb

@@ -0,0 +1,9 @@
+# Be sure to restart your server when you modify this file.
+
+# Your secret key for verifying the integrity of signed cookies.
+# If you change this key, all old signed cookies will become invalid!
+# Make sure the secret is at least 30 characters and all random,
+# no regular words or you'll be exposed to dictionary attacks.
+Dummy::Application.config.secret_key_base =
+  Dummy::Application.config.secret_token =
+  'c00157b5a1bb6181792f0f4a8a080485de7bab9987e6cf159dc74c4f0573345c1bfa713b5d756e1491fc0b098567e8a619e2f8d268eda86a20a720d05d633780'

data/spec/dummy/config/initializers/session_store.rb

@@ -0,0 +1,8 @@
+# Be sure to restart your server when you modify this file.
+
+Dummy::Application.config.session_store :cookie_store, key: '_dummy_session'
+
+# Use the database for sessions instead of the cookie-based default,
+# which shouldn't be used to store highly confidential information
+# (create the session table with "rails generate session_migration")
+# Dummy::Application.config.session_store :active_record_store

data/spec/dummy/config/initializers/wrap_parameters.rb

@@ -0,0 +1,14 @@
+# Be sure to restart your server when you modify this file.
+#
+# This file contains settings for ActionController::ParamsWrapper which
+# is enabled by default.
+
+# Enable parameter wrapping for JSON. You can disable this by setting :format to an empty array.
+ActiveSupport.on_load(:action_controller) do
+  wrap_parameters format: [:json]
+end
+
+# Disable root element in JSON by default.
+ActiveSupport.on_load(:active_record) do
+  self.include_root_in_json = false
+end

data/spec/dummy/config/locales/doorkeeper.en.yml

@@ -0,0 +1,5 @@
+en:
+  doorkeeper:
+    scopes:
+      public: "Access your public data"
+      write:  "Update your data"

data/spec/dummy/config/mongo.yml

@@ -0,0 +1,11 @@
+defaults: &defaults
+  host: 127.0.0.1
+  port: 27017
+
+development:
+  <<: *defaults
+  database: doorkeeper-mongomapper-development
+
+test:
+  <<: *defaults
+  database: doorkeeper-mongomapper-test-suite

data/spec/dummy/config/mongoid2.yml

@@ -0,0 +1,9 @@
+development:
+  database: doorkeeper-development
+  persist_in_safe_mode: true
+  autocreate_indexes: true
+
+test:
+  database: doorkeeper-mongoid2-test
+  persist_in_safe_mode: true
+  autocreate_indexes: true

data/spec/dummy/config/mongoid3.yml

@@ -0,0 +1,18 @@
+development:
+  sessions:
+    default:
+      database: doorkeeper-mongoid3-development
+      hosts:
+        - localhost:27017
+      options:
+        consistency: :strong
+        safe: true
+test:
+  sessions:
+    default:
+      database: doorkeeper-mongoid3-test
+      hosts:
+        - localhost:27017
+      options:
+        consistency: :strong
+        safe: true

data/spec/dummy/config/mongoid4.yml

@@ -0,0 +1,19 @@
+development:
+  sessions:
+    default:
+      database: doorkeeper-mongoid4-development
+      hosts:
+        - localhost:27017
+      options:
+        write:
+          w: 1
+
+test:
+  sessions:
+    default:
+      database: doorkeeper-mongoid4-test
+      hosts:
+        - localhost:27017
+      options:
+        write:
+          w: 1

data/spec/dummy/config/routes.rb

@@ -0,0 +1,52 @@
+Rails.application.routes.draw do
+  use_doorkeeper
+  use_doorkeeper scope: 'scope'
+
+  scope 'inner_space' do
+    use_doorkeeper scope: 'scope' do
+      controllers authorizations: 'custom_authorizations',
+                  tokens: 'custom_authorizations',
+                  applications: 'custom_authorizations',
+                  token_info: 'custom_authorizations'
+
+      as authorizations: 'custom_auth',
+         tokens: 'custom_token',
+         token_info: 'custom_token_info'
+    end
+  end
+
+  scope 'space' do
+    use_doorkeeper do
+      controllers authorizations: 'custom_authorizations',
+                  tokens: 'custom_authorizations',
+                  applications: 'custom_authorizations',
+                  token_info: 'custom_authorizations'
+
+      as authorizations: 'custom_auth',
+         tokens: 'custom_token',
+         token_info: 'custom_token_info'
+    end
+  end
+
+  scope 'outer_space' do
+    use_doorkeeper do
+      controllers authorizations: 'custom_authorizations',
+                  tokens: 'custom_authorizations',
+                  token_info: 'custom_authorizations'
+
+      as authorizations: 'custom_auth',
+         tokens: 'custom_token',
+         token_info: 'custom_token_info'
+
+      skip_controllers :tokens, :applications, :token_info
+    end
+  end
+
+  get 'metal.json' => 'metal#index'
+
+  get '/callback', to: 'home#callback'
+  get '/sign_in',  to: 'home#sign_in'
+  resources :semi_protected_resources
+  resources :full_protected_resources
+  root to: 'home#index'
+end