RubyGems - doorkeeper - Versions diffs - 2.1.4 → 3.1.0 - Mend

doorkeeper 2.1.4 → 3.1.0

Potentially problematic release.

This version of doorkeeper might be problematic. Click here for more details.

Files changed (135) hide show

checksums.yaml +4 -4
data/.hound.yml +4 -0
data/.travis.yml +5 -24
data/CONTRIBUTING.md +23 -13
data/Gemfile +3 -7
data/{CHANGELOG.md → NEWS.md} +137 -42
data/README.md +60 -46
data/RELEASING.md +5 -3
data/app/assets/stylesheets/doorkeeper/admin/application.css +1 -5
data/app/controllers/doorkeeper/applications_controller.rb +2 -2
data/app/helpers/doorkeeper/dashboard_helper.rb +1 -1
data/app/validators/redirect_uri_validator.rb +1 -1
data/app/views/doorkeeper/applications/_form.html.erb +13 -2
data/app/views/doorkeeper/applications/show.html.erb +3 -2
data/app/views/doorkeeper/authorizations/new.html.erb +1 -1
data/app/views/layouts/doorkeeper/admin.html.erb +5 -2
data/config/locales/en.yml +4 -32
data/doorkeeper.gemspec +4 -8
data/lib/doorkeeper/config.rb +20 -29
data/lib/doorkeeper/engine.rb +7 -1
data/lib/doorkeeper/errors.rb +12 -0
data/lib/doorkeeper/grape/helpers.rb +1 -1
data/lib/doorkeeper/helpers/controller.rb +6 -0
data/lib/doorkeeper/models/access_grant_mixin.rb +3 -2
data/lib/doorkeeper/models/access_token_mixin.rb +12 -4
data/lib/doorkeeper/models/application_mixin.rb +11 -18
data/lib/doorkeeper/models/concerns/revocable.rb +2 -2
data/lib/doorkeeper/oauth/authorization/token.rb +15 -6
data/lib/doorkeeper/oauth/authorization_code_request.rb +10 -5
data/lib/doorkeeper/oauth/client.rb +9 -8
data/lib/doorkeeper/oauth/client_credentials/creator.rb +3 -4
data/lib/doorkeeper/oauth/error.rb +5 -1
data/lib/doorkeeper/oauth/helpers/scope_checker.rb +1 -1
data/lib/doorkeeper/oauth/refresh_token_request.rb +17 -7
data/lib/doorkeeper/orm/active_record/access_grant.rb +2 -2
data/lib/doorkeeper/orm/active_record/access_token.rb +2 -2
data/lib/doorkeeper/orm/active_record/application.rb +2 -2
data/lib/doorkeeper/orm/active_record.rb +22 -0
data/lib/doorkeeper/rails/helpers.rb +19 -29
data/lib/doorkeeper/request/authorization_code.rb +10 -15
data/lib/doorkeeper/request/client_credentials.rb +9 -15
data/lib/doorkeeper/request/code.rb +7 -13
data/lib/doorkeeper/request/password.rb +10 -15
data/lib/doorkeeper/request/refresh_token.rb +11 -13
data/lib/doorkeeper/request/strategy.rb +17 -0
data/lib/doorkeeper/request/token.rb +7 -13
data/lib/doorkeeper/request.rb +18 -8
data/lib/doorkeeper/server.rb +2 -2
data/lib/doorkeeper/version.rb +1 -1
data/lib/doorkeeper.rb +0 -4
data/lib/generators/doorkeeper/templates/README +0 -20
data/lib/generators/doorkeeper/templates/initializer.rb +5 -3
data/lib/generators/doorkeeper/templates/migration.rb +8 -0
data/spec/controllers/applications_controller_spec.rb +0 -1
data/spec/controllers/protected_resources_controller_spec.rb +115 -14
data/spec/controllers/token_info_controller_spec.rb +0 -4
data/spec/controllers/tokens_controller_spec.rb +34 -3
data/spec/dummy/app/models/user.rb +2 -24
data/spec/dummy/config/application.rb +2 -1
data/spec/dummy/config/initializers/doorkeeper.rb +0 -2
data/spec/helpers/doorkeeper/dashboard_helper_spec.rb +24 -0
data/spec/lib/config_spec.rb +20 -4
data/spec/lib/models/revocable_spec.rb +2 -2
data/spec/lib/oauth/authorization_code_request_spec.rb +1 -1
data/spec/lib/oauth/client/credentials_spec.rb +2 -2
data/spec/lib/oauth/client_credentials/creator_spec.rb +25 -1
data/spec/lib/oauth/error_response_spec.rb +7 -7
data/spec/lib/oauth/error_spec.rb +9 -5
data/spec/lib/oauth/helpers/scope_checker_spec.rb +3 -3
data/spec/lib/oauth/password_access_token_request_spec.rb +1 -1
data/spec/lib/oauth/pre_authorization_spec.rb +9 -10
data/spec/lib/oauth/refresh_token_request_spec.rb +26 -6
data/spec/lib/oauth/scopes_spec.rb +1 -1
data/spec/lib/oauth/token_request_spec.rb +6 -3
data/spec/lib/request/strategy_spec.rb +53 -0
data/spec/lib/server_spec.rb +4 -2
data/spec/models/doorkeeper/access_grant_spec.rb +5 -5
data/spec/models/doorkeeper/access_token_spec.rb +102 -5
data/spec/models/doorkeeper/application_spec.rb +13 -16
data/spec/requests/applications/applications_request_spec.rb +1 -1
data/spec/requests/endpoints/authorization_spec.rb +2 -1
data/spec/requests/endpoints/token_spec.rb +9 -9
data/spec/requests/flows/authorization_code_errors_spec.rb +4 -4
data/spec/requests/flows/authorization_code_spec.rb +36 -2
data/spec/requests/flows/implicit_grant_spec.rb +14 -5
data/spec/requests/flows/password_spec.rb +14 -20
data/spec/requests/flows/refresh_token_spec.rb +15 -7
data/spec/requests/flows/revoke_token_spec.rb +9 -31
data/spec/requests/protected_resources/metal_spec.rb +3 -3
data/spec/requests/protected_resources/private_api_spec.rb +11 -0
data/spec/routing/custom_controller_routes_spec.rb +1 -2
data/spec/routing/default_routes_spec.rb +1 -2
data/spec/routing/scoped_routes_spec.rb +0 -1
data/spec/spec_helper_integration.rb +10 -7
data/spec/support/helpers/access_token_request_helper.rb +1 -1
data/spec/support/helpers/authorization_request_helper.rb +1 -1
data/spec/support/helpers/config_helper.rb +1 -1
data/spec/support/helpers/model_helper.rb +1 -1
data/spec/support/helpers/request_spec_helper.rb +1 -1
data/spec/support/helpers/url_helper.rb +1 -1
data/spec/support/shared/models_shared_examples.rb +1 -1
data/spec/validators/redirect_uri_validator_spec.rb +5 -0
metadata +127 -98
data/gemfiles/Gemfile.common.rb +0 -14
data/gemfiles/Gemfile.mongo_mapper.rb +0 -5
data/gemfiles/Gemfile.mongoid2.rb +0 -5
data/gemfiles/Gemfile.mongoid3.rb +0 -4
data/gemfiles/Gemfile.mongoid4.rb +0 -5
data/lib/doorkeeper/generators/doorkeeper/mongo_mapper/indexes_generator.rb +0 -12
data/lib/doorkeeper/generators/doorkeeper/mongo_mapper/templates/indexes.rb +0 -3
data/lib/doorkeeper/orm/mongo_mapper/access_grant.rb +0 -24
data/lib/doorkeeper/orm/mongo_mapper/access_token.rb +0 -43
data/lib/doorkeeper/orm/mongo_mapper/application.rb +0 -29
data/lib/doorkeeper/orm/mongo_mapper.rb +0 -11
data/lib/doorkeeper/orm/mongoid2/access_grant.rb +0 -22
data/lib/doorkeeper/orm/mongoid2/access_token.rb +0 -37
data/lib/doorkeeper/orm/mongoid2/application.rb +0 -25
data/lib/doorkeeper/orm/mongoid2/concerns/scopes.rb +0 -30
data/lib/doorkeeper/orm/mongoid2.rb +0 -11
data/lib/doorkeeper/orm/mongoid3/access_grant.rb +0 -22
data/lib/doorkeeper/orm/mongoid3/access_token.rb +0 -37
data/lib/doorkeeper/orm/mongoid3/application.rb +0 -25
data/lib/doorkeeper/orm/mongoid3/concerns/scopes.rb +0 -30
data/lib/doorkeeper/orm/mongoid3.rb +0 -11
data/lib/doorkeeper/orm/mongoid4/access_grant.rb +0 -22
data/lib/doorkeeper/orm/mongoid4/access_token.rb +0 -37
data/lib/doorkeeper/orm/mongoid4/application.rb +0 -25
data/lib/doorkeeper/orm/mongoid4/concerns/scopes.rb +0 -17
data/lib/doorkeeper/orm/mongoid4.rb +0 -11
data/spec/dummy/config/mongo.yml +0 -11
data/spec/dummy/config/mongoid2.yml +0 -9
data/spec/dummy/config/mongoid3.yml +0 -18
data/spec/dummy/config/mongoid4.yml +0 -19
data/spec/support/orm/mongo_mapper.rb +0 -10
data/spec/support/orm/mongoid.rb +0 -10

data/lib/doorkeeper/orm/mongoid3/access_token.rb DELETED Viewed

@@ -1,37 +0,0 @@
-require 'doorkeeper/orm/mongoid3/concerns/scopes'
-module Doorkeeper
-  class AccessToken
-    include Mongoid::Document
-    include Mongoid::Timestamps
-    include AccessTokenMixin
-    include Models::Mongoid3::Scopes
-    self.store_in collection: :oauth_access_tokens
-    field :resource_owner_id, type: Moped::BSON::ObjectId
-    field :application_id, type: Moped::BSON::ObjectId
-    field :token, type: String
-    field :refresh_token, type: String
-    field :expires_in, type: Integer
-    field :revoked_at, type: DateTime
-    index({ token: 1 }, { unique: true })
-    index({ refresh_token: 1 }, { unique: true, sparse: true })
-    def self.delete_all_for(application_id, resource_owner)
-      where(application_id: application_id,
-            resource_owner_id: resource_owner.id).delete_all
-    end
-    private_class_method :delete_all_for
-    def self.order_method
-      :order_by
-    end
-    def self.created_at_desc
-      [:created_at, :desc]
-    end
-  end
-end

data/lib/doorkeeper/orm/mongoid3/application.rb DELETED Viewed

@@ -1,25 +0,0 @@
-module Doorkeeper
-  class Application
-    include Mongoid::Document
-    include Mongoid::Timestamps
-    include Models::Mongoid3::Scopes
-    include ApplicationMixin
-    self.store_in collection: :oauth_applications
-    field :name, type: String
-    field :uid, type: String
-    field :secret, type: String
-    field :redirect_uri, type: String
-    index({ uid: 1 }, { unique: true })
-    has_many :authorized_tokens, class_name: 'Doorkeeper::AccessToken'
-    def self.authorized_for(resource_owner)
-      ids = AccessToken.where(resource_owner_id: resource_owner.id, revoked_at: nil).map(&:application_id)
-      find(ids)
-    end
-  end
-end

data/lib/doorkeeper/orm/mongoid3/concerns/scopes.rb DELETED Viewed

@@ -1,30 +0,0 @@
-module Doorkeeper
-  module Models
-    module Mongoid3
-      module Scopes
-        extend ActiveSupport::Concern
-        # It's strange that if not define these after included will raise error
-        # in Mongoid 2 and 3, but 4 works well see:
-        # https://travis-ci.org/jasl/doorkeeper/builds/31586902
-        included do
-          def scopes
-            OAuth::Scopes.from_string(self[:scopes])
-          end
-          def scopes_string
-            self[:scopes]
-          end
-          def includes_scope?(*required_scopes)
-            required_scopes.blank? || required_scopes.any? { |s| scopes.exists?(s.to_s) }
-          end
-          def scopes=(value)
-            write_attribute :scopes, value if value.present?
-          end
-        end
-      end
-    end
-  end
-end

data/lib/doorkeeper/orm/mongoid3.rb DELETED Viewed

@@ -1,11 +0,0 @@
-module Doorkeeper
-  module Orm
-    module Mongoid3
-      def self.initialize_models!
-        require 'doorkeeper/orm/mongoid3/access_grant'
-        require 'doorkeeper/orm/mongoid3/access_token'
-        require 'doorkeeper/orm/mongoid3/application'
-      end
-    end
-  end
-end

data/lib/doorkeeper/orm/mongoid4/access_grant.rb DELETED Viewed

@@ -1,22 +0,0 @@
-require 'doorkeeper/orm/mongoid4/concerns/scopes'
-module Doorkeeper
-  class AccessGrant
-    include Mongoid::Document
-    include Mongoid::Timestamps
-    include AccessGrantMixin
-    include Models::Mongoid4::Scopes
-    self.store_in collection: :oauth_access_grants
-    field :resource_owner_id, type: BSON::ObjectId
-    field :application_id, type: BSON::ObjectId
-    field :token, type: String
-    field :expires_in, type: Integer
-    field :redirect_uri, type: String
-    field :revoked_at, type: DateTime
-    index({ token: 1 }, { unique: true })
-  end
-end

data/lib/doorkeeper/orm/mongoid4/access_token.rb DELETED Viewed

@@ -1,37 +0,0 @@
-require 'doorkeeper/orm/mongoid4/concerns/scopes'
-module Doorkeeper
-  class AccessToken
-    include Mongoid::Document
-    include Mongoid::Timestamps
-    include AccessTokenMixin
-    include Models::Mongoid4::Scopes
-    self.store_in collection: :oauth_access_tokens
-    field :resource_owner_id, type: BSON::ObjectId
-    field :application_id, type: BSON::ObjectId
-    field :token, type: String
-    field :refresh_token, type: String
-    field :expires_in, type: Integer
-    field :revoked_at, type: DateTime
-    index({ token: 1 }, { unique: true })
-    index({ refresh_token: 1 }, { unique: true, sparse: true })
-    def self.delete_all_for(application_id, resource_owner)
-      where(application_id: application_id,
-            resource_owner_id: resource_owner.id).delete_all
-    end
-    private_class_method :delete_all_for
-    def self.order_method
-      :order_by
-    end
-    def self.created_at_desc
-      [:created_at, :desc]
-    end
-  end
-end

data/lib/doorkeeper/orm/mongoid4/application.rb DELETED Viewed

@@ -1,25 +0,0 @@
-module Doorkeeper
-  class Application
-    include Mongoid::Document
-    include Mongoid::Timestamps
-    include Models::Mongoid4::Scopes
-    include ApplicationMixin
-    self.store_in collection: :oauth_applications
-    field :name, type: String
-    field :uid, type: String
-    field :secret, type: String
-    field :redirect_uri, type: String
-    index({ uid: 1 }, { unique: true })
-    has_many :authorized_tokens, class_name: 'Doorkeeper::AccessToken'
-    def self.authorized_for(resource_owner)
-      ids = AccessToken.where(resource_owner_id: resource_owner.id, revoked_at: nil).map(&:application_id)
-      find(ids)
-    end
-  end
-end

data/lib/doorkeeper/orm/mongoid4/concerns/scopes.rb DELETED Viewed

@@ -1,17 +0,0 @@
-module Doorkeeper
-  module Models
-    module Mongoid4
-      module Scopes
-        extend ActiveSupport::Concern
-        included do
-          field :scopes, type: String
-        end
-        def scopes=(value)
-          write_attribute :scopes, value if value.present?
-        end
-      end
-    end
-  end
-end

data/lib/doorkeeper/orm/mongoid4.rb DELETED Viewed

@@ -1,11 +0,0 @@
-module Doorkeeper
-  module Orm
-    module Mongoid4
-      def self.initialize_models!
-        require 'doorkeeper/orm/mongoid4/access_grant'
-        require 'doorkeeper/orm/mongoid4/access_token'
-        require 'doorkeeper/orm/mongoid4/application'
-      end
-    end
-  end
-end

data/spec/dummy/config/mongo.yml DELETED Viewed

@@ -1,11 +0,0 @@
-defaults: &defaults
-  host: 127.0.0.1
-  port: 27017
-development:
-  <<: *defaults
-  database: doorkeeper-mongomapper-development
-test:
-  <<: *defaults
-  database: doorkeeper-mongomapper-test-suite

data/spec/dummy/config/mongoid2.yml DELETED Viewed

@@ -1,9 +0,0 @@
-development:
-  database: doorkeeper-development
-  persist_in_safe_mode: true
-  autocreate_indexes: true
-test:
-  database: doorkeeper-mongoid2-test
-  persist_in_safe_mode: true
-  autocreate_indexes: true

data/spec/dummy/config/mongoid3.yml DELETED Viewed

@@ -1,18 +0,0 @@
-development:
-  sessions:
-    default:
-      database: doorkeeper-mongoid3-development
-      hosts:
-        - localhost:27017
-      options:
-        consistency: :strong
-        safe: true
-test:
-  sessions:
-    default:
-      database: doorkeeper-mongoid3-test
-      hosts:
-        - localhost:27017
-      options:
-        consistency: :strong
-        safe: true

data/spec/dummy/config/mongoid4.yml DELETED Viewed

@@ -1,19 +0,0 @@
-development:
-  sessions:
-    default:
-      database: doorkeeper-mongoid4-development
-      hosts:
-        - localhost:27017
-      options:
-        write:
-          w: 1
-test:
-  sessions:
-    default:
-      database: doorkeeper-mongoid4-test
-      hosts:
-        - localhost:27017
-      options:
-        write:
-          w: 1

data/spec/support/orm/mongo_mapper.rb DELETED Viewed

@@ -1,10 +0,0 @@
-DatabaseCleaner[:mongo_mapper].strategy = :truncation
-DatabaseCleaner[:mongo_mapper].clean_with :truncation
-RSpec.configure do |config|
-  config.before :suite do
-    Doorkeeper::Application.create_indexes
-    Doorkeeper::AccessGrant.create_indexes
-    Doorkeeper::AccessToken.create_indexes
-  end
-end

data/spec/support/orm/mongoid.rb DELETED Viewed

@@ -1,10 +0,0 @@
-DatabaseCleaner[:mongoid].strategy = :truncation
-DatabaseCleaner[:mongoid].clean_with :truncation
-RSpec.configure do |config|
-  config.before do
-    Doorkeeper::Application.create_indexes
-    Doorkeeper::AccessGrant.create_indexes
-    Doorkeeper::AccessToken.create_indexes
-  end
-end