RubyGems - doorkeeper - Versions diffs - 4.2.0 → 5.6.8 - Mend

doorkeeper 4.2.0 → 5.6.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (273) hide show

checksums.yaml +5 -5
data/CHANGELOG.md +1119 -0
data/README.md +112 -349
data/app/assets/stylesheets/doorkeeper/admin/application.css +2 -2
data/app/controllers/doorkeeper/application_controller.rb +6 -7
data/app/controllers/doorkeeper/application_metal_controller.rb +7 -11
data/app/controllers/doorkeeper/applications_controller.rb +65 -20
data/app/controllers/doorkeeper/authorizations_controller.rb +115 -18
data/app/controllers/doorkeeper/authorized_applications_controller.rb +22 -3
data/app/controllers/doorkeeper/token_info_controller.rb +16 -4
data/app/controllers/doorkeeper/tokens_controller.rb +118 -38
data/app/helpers/doorkeeper/dashboard_helper.rb +10 -6
data/app/views/doorkeeper/applications/_delete_form.html.erb +4 -3
data/app/views/doorkeeper/applications/_form.html.erb +33 -21
data/app/views/doorkeeper/applications/edit.html.erb +1 -1
data/app/views/doorkeeper/applications/index.html.erb +18 -6
data/app/views/doorkeeper/applications/new.html.erb +1 -1
data/app/views/doorkeeper/applications/show.html.erb +40 -16
data/app/views/doorkeeper/authorizations/error.html.erb +4 -2
data/app/views/doorkeeper/authorizations/form_post.html.erb +15 -0
data/app/views/doorkeeper/authorizations/new.html.erb +17 -11
data/app/views/doorkeeper/authorized_applications/_delete_form.html.erb +1 -2
data/app/views/doorkeeper/authorized_applications/index.html.erb +0 -1
data/app/views/layouts/doorkeeper/admin.html.erb +16 -14
data/config/locales/en.yml +36 -9
data/lib/doorkeeper/config/abstract_builder.rb +28 -0
data/lib/doorkeeper/config/option.rb +82 -0
data/lib/doorkeeper/config/validations.rb +53 -0
data/lib/doorkeeper/config.rb +551 -155
data/lib/doorkeeper/engine.rb +19 -6
data/lib/doorkeeper/errors.rb +55 -10
data/lib/doorkeeper/grant_flow/fallback_flow.rb +15 -0
data/lib/doorkeeper/grant_flow/flow.rb +44 -0
data/lib/doorkeeper/grant_flow/registry.rb +50 -0
data/lib/doorkeeper/grant_flow.rb +45 -0
data/lib/doorkeeper/grape/authorization_decorator.rb +6 -4
data/lib/doorkeeper/grape/helpers.rb +24 -12
data/lib/doorkeeper/helpers/controller.rb +49 -27
data/lib/doorkeeper/models/access_grant_mixin.rb +100 -21
data/lib/doorkeeper/models/access_token_mixin.rb +383 -75
data/lib/doorkeeper/models/application_mixin.rb +72 -25
data/lib/doorkeeper/models/concerns/accessible.rb +6 -0
data/lib/doorkeeper/models/concerns/expirable.rb +20 -6
data/lib/doorkeeper/models/concerns/expiration_time_sql_math.rb +88 -0
data/lib/doorkeeper/models/concerns/orderable.rb +15 -0
data/lib/doorkeeper/models/concerns/ownership.rb +4 -7
data/lib/doorkeeper/models/concerns/polymorphic_resource_owner.rb +30 -0
data/lib/doorkeeper/models/concerns/resource_ownerable.rb +47 -0
data/lib/doorkeeper/models/concerns/reusable.rb +19 -0
data/lib/doorkeeper/models/concerns/revocable.rb +12 -18
data/lib/doorkeeper/models/concerns/scopes.rb +12 -2
data/lib/doorkeeper/models/concerns/secret_storable.rb +106 -0
data/lib/doorkeeper/oauth/authorization/code.rb +54 -12
data/lib/doorkeeper/oauth/authorization/context.rb +17 -0
data/lib/doorkeeper/oauth/authorization/token.rb +72 -28
data/lib/doorkeeper/oauth/authorization/uri_builder.rb +22 -18
data/lib/doorkeeper/oauth/authorization_code_request.rb +77 -17
data/lib/doorkeeper/oauth/base_request.rb +67 -0
data/lib/doorkeeper/oauth/base_response.rb +31 -0
data/lib/doorkeeper/oauth/client/credentials.rb +23 -10
data/lib/doorkeeper/oauth/client.rb +10 -12
data/lib/doorkeeper/oauth/client_credentials/creator.rb +44 -4
data/lib/doorkeeper/oauth/client_credentials/issuer.rb +21 -13
data/lib/doorkeeper/oauth/client_credentials/validator.rb +55 -0
data/lib/doorkeeper/oauth/client_credentials_request.rb +20 -16
data/lib/doorkeeper/oauth/code_request.rb +9 -13
data/lib/doorkeeper/oauth/code_response.rb +28 -15
data/lib/doorkeeper/oauth/error.rb +5 -3
data/lib/doorkeeper/oauth/error_response.rb +43 -20
data/lib/doorkeeper/oauth/forbidden_token_response.rb +11 -3
data/lib/doorkeeper/oauth/helpers/scope_checker.rb +23 -18
data/lib/doorkeeper/oauth/helpers/unique_token.rb +20 -3
data/lib/doorkeeper/oauth/helpers/uri_checker.rb +53 -3
data/lib/doorkeeper/oauth/hooks/context.rb +21 -0
data/lib/doorkeeper/oauth/invalid_request_response.rb +47 -0
data/lib/doorkeeper/oauth/invalid_token_response.rb +31 -5
data/lib/doorkeeper/oauth/nonstandard.rb +39 -0
data/lib/doorkeeper/oauth/password_access_token_request.rb +46 -14
data/lib/doorkeeper/oauth/pre_authorization.rb +138 -28
data/lib/doorkeeper/oauth/refresh_token_request.rb +74 -41
data/lib/doorkeeper/oauth/scopes.rb +26 -12
data/lib/doorkeeper/oauth/token.rb +25 -23
data/lib/doorkeeper/oauth/token_introspection.rb +204 -0
data/lib/doorkeeper/oauth/token_request.rb +9 -22
data/lib/doorkeeper/oauth/token_response.rb +13 -10
data/lib/doorkeeper/oauth.rb +13 -0
data/lib/doorkeeper/orm/active_record/access_grant.rb +6 -4
data/lib/doorkeeper/orm/active_record/access_token.rb +5 -25
data/lib/doorkeeper/orm/active_record/application.rb +6 -15
data/lib/doorkeeper/orm/active_record/mixins/access_grant.rb +63 -0
data/lib/doorkeeper/orm/active_record/mixins/access_token.rb +77 -0
data/lib/doorkeeper/orm/active_record/mixins/application.rb +210 -0
data/lib/doorkeeper/orm/active_record/redirect_uri_validator.rb +66 -0
data/lib/doorkeeper/orm/active_record/stale_records_cleaner.rb +36 -0
data/lib/doorkeeper/orm/active_record.rb +34 -12
data/lib/doorkeeper/rails/helpers.rb +14 -15
data/lib/doorkeeper/rails/routes/abstract_router.rb +35 -0
data/lib/doorkeeper/rails/routes/mapper.rb +3 -1
data/lib/doorkeeper/rails/routes/mapping.rb +10 -8
data/lib/doorkeeper/rails/routes/registry.rb +45 -0
data/lib/doorkeeper/rails/routes.rb +50 -29
data/lib/doorkeeper/rake/db.rake +40 -0
data/lib/doorkeeper/rake/setup.rake +6 -0
data/lib/doorkeeper/rake.rb +14 -0
data/lib/doorkeeper/request/authorization_code.rb +12 -4
data/lib/doorkeeper/request/client_credentials.rb +3 -3
data/lib/doorkeeper/request/code.rb +1 -1
data/lib/doorkeeper/request/password.rb +5 -14
data/lib/doorkeeper/request/refresh_token.rb +6 -5
data/lib/doorkeeper/request/strategy.rb +4 -2
data/lib/doorkeeper/request/token.rb +1 -1
data/lib/doorkeeper/request.rb +62 -29
data/lib/doorkeeper/secret_storing/base.rb +64 -0
data/lib/doorkeeper/secret_storing/bcrypt.rb +60 -0
data/lib/doorkeeper/secret_storing/plain.rb +33 -0
data/lib/doorkeeper/secret_storing/sha256_hash.rb +26 -0
data/lib/doorkeeper/server.rb +9 -19
data/lib/doorkeeper/stale_records_cleaner.rb +24 -0
data/lib/doorkeeper/validations.rb +5 -2
data/lib/doorkeeper/version.rb +12 -1
data/lib/doorkeeper.rb +180 -57
data/lib/generators/doorkeeper/application_owner_generator.rb +28 -13
data/lib/generators/doorkeeper/confidential_applications_generator.rb +33 -0
data/lib/generators/doorkeeper/enable_polymorphic_resource_owner_generator.rb +39 -0
data/lib/generators/doorkeeper/install_generator.rb +19 -9
data/lib/generators/doorkeeper/migration_generator.rb +27 -10
data/lib/generators/doorkeeper/pkce_generator.rb +33 -0
data/lib/generators/doorkeeper/previous_refresh_token_generator.rb +31 -19
data/lib/generators/doorkeeper/templates/add_confidential_to_applications.rb.erb +13 -0
data/lib/generators/doorkeeper/templates/add_owner_to_application_migration.rb.erb +9 -0
data/lib/generators/doorkeeper/templates/{add_previous_refresh_token_to_access_tokens.rb → add_previous_refresh_token_to_access_tokens.rb.erb} +3 -1
data/lib/generators/doorkeeper/templates/enable_pkce_migration.rb.erb +8 -0
data/lib/generators/doorkeeper/templates/enable_polymorphic_resource_owner_migration.rb.erb +17 -0
data/lib/generators/doorkeeper/templates/initializer.rb +436 -33
data/lib/generators/doorkeeper/templates/migration.rb.erb +98 -0
data/lib/generators/doorkeeper/views_generator.rb +8 -4
data/vendor/assets/stylesheets/doorkeeper/bootstrap.min.css +4 -5
metadata +129 -281
data/.gitignore +0 -14
data/.hound.yml +0 -13
data/.rspec +0 -1
data/.travis.yml +0 -20
data/CONTRIBUTING.md +0 -47
data/Gemfile +0 -14
data/NEWS.md +0 -593
data/RELEASING.md +0 -17
data/Rakefile +0 -20
data/app/validators/redirect_uri_validator.rb +0 -34
data/doorkeeper.gemspec +0 -28
data/lib/doorkeeper/oauth/client/methods.rb +0 -18
data/lib/doorkeeper/oauth/client_credentials/validation.rb +0 -45
data/lib/doorkeeper/oauth/request_concern.rb +0 -48
data/lib/generators/doorkeeper/templates/add_owner_to_application_migration.rb +0 -7
data/lib/generators/doorkeeper/templates/migration.rb +0 -68
data/spec/controllers/application_metal_controller.rb +0 -10
data/spec/controllers/applications_controller_spec.rb +0 -58
data/spec/controllers/authorizations_controller_spec.rb +0 -189
data/spec/controllers/protected_resources_controller_spec.rb +0 -300
data/spec/controllers/token_info_controller_spec.rb +0 -52
data/spec/controllers/tokens_controller_spec.rb +0 -88
data/spec/dummy/Rakefile +0 -7
data/spec/dummy/app/controllers/application_controller.rb +0 -3
data/spec/dummy/app/controllers/custom_authorizations_controller.rb +0 -7
data/spec/dummy/app/controllers/full_protected_resources_controller.rb +0 -12
data/spec/dummy/app/controllers/home_controller.rb +0 -17
data/spec/dummy/app/controllers/metal_controller.rb +0 -11
data/spec/dummy/app/controllers/semi_protected_resources_controller.rb +0 -11
data/spec/dummy/app/helpers/application_helper.rb +0 -5
data/spec/dummy/app/models/user.rb +0 -5
data/spec/dummy/app/views/home/index.html.erb +0 -0
data/spec/dummy/app/views/layouts/application.html.erb +0 -14
data/spec/dummy/config/application.rb +0 -23
data/spec/dummy/config/boot.rb +0 -9
data/spec/dummy/config/database.yml +0 -15
data/spec/dummy/config/environment.rb +0 -5
data/spec/dummy/config/environments/development.rb +0 -29
data/spec/dummy/config/environments/production.rb +0 -62
data/spec/dummy/config/environments/test.rb +0 -44
data/spec/dummy/config/initializers/active_record_belongs_to_required_by_default.rb +0 -6
data/spec/dummy/config/initializers/backtrace_silencers.rb +0 -7
data/spec/dummy/config/initializers/doorkeeper.rb +0 -96
data/spec/dummy/config/initializers/secret_token.rb +0 -9
data/spec/dummy/config/initializers/session_store.rb +0 -8
data/spec/dummy/config/initializers/wrap_parameters.rb +0 -14
data/spec/dummy/config/locales/doorkeeper.en.yml +0 -5
data/spec/dummy/config/routes.rb +0 -52
data/spec/dummy/config.ru +0 -4
data/spec/dummy/db/migrate/20111122132257_create_users.rb +0 -9
data/spec/dummy/db/migrate/20120312140401_add_password_to_users.rb +0 -5
data/spec/dummy/db/migrate/20151223192035_create_doorkeeper_tables.rb +0 -60
data/spec/dummy/db/migrate/20151223200000_add_owner_to_application.rb +0 -7
data/spec/dummy/db/migrate/20160320211015_add_previous_refresh_token_to_access_tokens.rb +0 -11
data/spec/dummy/db/schema.rb +0 -67
data/spec/dummy/public/404.html +0 -26
data/spec/dummy/public/422.html +0 -26
data/spec/dummy/public/500.html +0 -26
data/spec/dummy/public/favicon.ico +0 -0
data/spec/dummy/script/rails +0 -6
data/spec/factories.rb +0 -28
data/spec/generators/application_owner_generator_spec.rb +0 -22
data/spec/generators/install_generator_spec.rb +0 -31
data/spec/generators/migration_generator_spec.rb +0 -20
data/spec/generators/templates/routes.rb +0 -3
data/spec/generators/views_generator_spec.rb +0 -27
data/spec/helpers/doorkeeper/dashboard_helper_spec.rb +0 -24
data/spec/lib/config_spec.rb +0 -334
data/spec/lib/doorkeeper_spec.rb +0 -28
data/spec/lib/models/expirable_spec.rb +0 -51
data/spec/lib/models/revocable_spec.rb +0 -59
data/spec/lib/models/scopes_spec.rb +0 -43
data/spec/lib/oauth/authorization/uri_builder_spec.rb +0 -42
data/spec/lib/oauth/authorization_code_request_spec.rb +0 -80
data/spec/lib/oauth/client/credentials_spec.rb +0 -47
data/spec/lib/oauth/client/methods_spec.rb +0 -54
data/spec/lib/oauth/client_credentials/creator_spec.rb +0 -44
data/spec/lib/oauth/client_credentials/issuer_spec.rb +0 -86
data/spec/lib/oauth/client_credentials/validation_spec.rb +0 -54
data/spec/lib/oauth/client_credentials_integration_spec.rb +0 -27
data/spec/lib/oauth/client_credentials_request_spec.rb +0 -104
data/spec/lib/oauth/client_spec.rb +0 -39
data/spec/lib/oauth/code_request_spec.rb +0 -45
data/spec/lib/oauth/code_response_spec.rb +0 -34
data/spec/lib/oauth/error_response_spec.rb +0 -61
data/spec/lib/oauth/error_spec.rb +0 -23
data/spec/lib/oauth/forbidden_token_response_spec.rb +0 -23
data/spec/lib/oauth/helpers/scope_checker_spec.rb +0 -64
data/spec/lib/oauth/helpers/unique_token_spec.rb +0 -20
data/spec/lib/oauth/helpers/uri_checker_spec.rb +0 -104
data/spec/lib/oauth/invalid_token_response_spec.rb +0 -28
data/spec/lib/oauth/password_access_token_request_spec.rb +0 -90
data/spec/lib/oauth/pre_authorization_spec.rb +0 -155
data/spec/lib/oauth/refresh_token_request_spec.rb +0 -154
data/spec/lib/oauth/scopes_spec.rb +0 -122
data/spec/lib/oauth/token_request_spec.rb +0 -98
data/spec/lib/oauth/token_response_spec.rb +0 -85
data/spec/lib/oauth/token_spec.rb +0 -116
data/spec/lib/request/strategy_spec.rb +0 -53
data/spec/lib/server_spec.rb +0 -52
data/spec/models/doorkeeper/access_grant_spec.rb +0 -36
data/spec/models/doorkeeper/access_token_spec.rb +0 -394
data/spec/models/doorkeeper/application_spec.rb +0 -179
data/spec/requests/applications/applications_request_spec.rb +0 -94
data/spec/requests/applications/authorized_applications_spec.rb +0 -30
data/spec/requests/endpoints/authorization_spec.rb +0 -72
data/spec/requests/endpoints/token_spec.rb +0 -64
data/spec/requests/flows/authorization_code_errors_spec.rb +0 -66
data/spec/requests/flows/authorization_code_spec.rb +0 -156
data/spec/requests/flows/client_credentials_spec.rb +0 -58
data/spec/requests/flows/implicit_grant_errors_spec.rb +0 -32
data/spec/requests/flows/implicit_grant_spec.rb +0 -61
data/spec/requests/flows/password_spec.rb +0 -115
data/spec/requests/flows/refresh_token_spec.rb +0 -174
data/spec/requests/flows/revoke_token_spec.rb +0 -157
data/spec/requests/flows/skip_authorization_spec.rb +0 -59
data/spec/requests/protected_resources/metal_spec.rb +0 -14
data/spec/requests/protected_resources/private_api_spec.rb +0 -81
data/spec/routing/custom_controller_routes_spec.rb +0 -71
data/spec/routing/default_routes_spec.rb +0 -35
data/spec/routing/scoped_routes_spec.rb +0 -31
data/spec/spec_helper.rb +0 -2
data/spec/spec_helper_integration.rb +0 -59
data/spec/support/dependencies/factory_girl.rb +0 -2
data/spec/support/helpers/access_token_request_helper.rb +0 -11
data/spec/support/helpers/authorization_request_helper.rb +0 -41
data/spec/support/helpers/config_helper.rb +0 -9
data/spec/support/helpers/model_helper.rb +0 -67
data/spec/support/helpers/request_spec_helper.rb +0 -76
data/spec/support/helpers/url_helper.rb +0 -55
data/spec/support/http_method_shim.rb +0 -24
data/spec/support/orm/active_record.rb +0 -3
data/spec/support/shared/controllers_shared_context.rb +0 -69
data/spec/support/shared/models_shared_examples.rb +0 -52
data/spec/validators/redirect_uri_validator_spec.rb +0 -78

data/spec/controllers/protected_resources_controller_spec.rb DELETED Viewed

@@ -1,300 +0,0 @@
-require 'spec_helper_integration'
-module ControllerActions
-  def index
-    render plain: 'index'
-  end
-  def show
-    render plain: 'show'
-  end
-  def doorkeeper_unauthorized_render_options(*)
-  end
-  def doorkeeper_forbidden_render_options(*)
-  end
-end
-describe 'doorkeeper authorize filter' do
-  context 'accepts token code specified as' do
-    controller do
-      before_action :doorkeeper_authorize!
-      def index
-        render plain: 'index'
-      end
-    end
-    let(:token_string) { '1A2BC3' }
-    let(:token) do
-      double(Doorkeeper::AccessToken,
-             acceptable?: true, previous_refresh_token: "",
-             revoke_previous_refresh_token!: true)
-    end
-    it 'access_token param' do
-      expect(Doorkeeper::AccessToken).to receive(:by_token).with(token_string).and_return(token)
-      get :index, access_token: token_string
-    end
-    it 'bearer_token param' do
-      expect(Doorkeeper::AccessToken).to receive(:by_token).with(token_string).and_return(token)
-      get :index, bearer_token: token_string
-    end
-    it 'Authorization header' do
-      expect(Doorkeeper::AccessToken).to receive(:by_token).with(token_string).and_return(token)
-      request.env['HTTP_AUTHORIZATION'] = "Bearer #{token_string}"
-      get :index
-    end
-    it 'different kind of Authorization header' do
-      expect(Doorkeeper::AccessToken).not_to receive(:by_token)
-      request.env['HTTP_AUTHORIZATION'] = "MAC #{token_string}"
-      get :index
-    end
-    it 'does not change Authorization header value' do
-      expect(Doorkeeper::AccessToken).to receive(:by_token).exactly(2).times.and_return(token)
-      request.env['HTTP_AUTHORIZATION'] = "Bearer #{token_string}"
-      get :index
-      controller.send(:remove_instance_variable, :@_doorkeeper_token)
-      get :index
-    end
-  end
-  context 'defined for all actions' do
-    controller do
-      before_action :doorkeeper_authorize!
-      include ControllerActions
-    end
-    context 'with valid token', token: :valid do
-      it 'allows into index action' do
-        get :index, access_token: token_string
-        expect(response).to be_success
-      end
-      it 'allows into show action' do
-        get :show, id: '4', access_token: token_string
-        expect(response).to be_success
-      end
-    end
-    context 'with invalid token', token: :invalid do
-      it 'does not allow into index action' do
-        get :index, access_token: token_string
-        expect(response.status).to eq 401
-        expect(response.header['WWW-Authenticate']).to match(/^Bearer/)
-      end
-      it 'does not allow into show action' do
-        get :show, id: '4', access_token: token_string
-        expect(response.status).to eq 401
-        expect(response.header['WWW-Authenticate']).to match(/^Bearer/)
-      end
-    end
-  end
-  context 'defined with scopes' do
-    controller do
-      before_action -> { doorkeeper_authorize! :write }
-      include ControllerActions
-    end
-    let(:token_string) { '1A2DUWE' }
-    it 'allows if the token has particular scopes' do
-      token = double(Doorkeeper::AccessToken,
-                     accessible?: true, scopes: %w(write public),
-                     previous_refresh_token: "",
-                     revoke_previous_refresh_token!: true)
-      expect(token).to receive(:acceptable?).with([:write]).and_return(true)
-      expect(
-        Doorkeeper::AccessToken
-      ).to receive(:by_token).with(token_string).and_return(token)
-      get :index, access_token: token_string
-      expect(response).to be_success
-    end
-    it 'does not allow if the token does not include given scope' do
-      token = double(Doorkeeper::AccessToken,
-                     accessible?: true, scopes: ['public'], revoked?: false,
-                     expired?: false, previous_refresh_token: "",
-                     revoke_previous_refresh_token!: true)
-      expect(
-        Doorkeeper::AccessToken
-      ).to receive(:by_token).with(token_string).and_return(token)
-      expect(token).to receive(:acceptable?).with([:write]).and_return(false)
-      get :index, access_token: token_string
-      expect(response.status).to eq 403
-      expect(response.header).to_not include('WWW-Authenticate')
-    end
-  end
-  context 'when custom unauthorized render options are configured' do
-    controller do
-      before_action :doorkeeper_authorize!
-      include ControllerActions
-    end
-    context 'with a JSON custom render', token: :invalid do
-      before do
-        module ControllerActions
-          remove_method :doorkeeper_unauthorized_render_options
-          def doorkeeper_unauthorized_render_options(error: nil)
-            { json: ActiveSupport::JSON.encode(error_message: error.description) }
-          end
-        end
-      end
-      after do
-        module ControllerActions
-          remove_method :doorkeeper_unauthorized_render_options
-          def doorkeeper_unauthorized_render_options(error: nil)
-          end
-        end
-      end
-      it 'it renders a custom JSON response', token: :invalid do
-        get :index, access_token: token_string
-        expect(response.status).to eq 401
-        expect(response.content_type).to eq('application/json')
-        expect(response.header['WWW-Authenticate']).to match(/^Bearer/)
-        parsed_body = JSON.parse(response.body)
-        expect(parsed_body).not_to be_nil
-        expect(parsed_body['error_message']).to match('token is invalid')
-      end
-    end
-    context 'with a text custom render', token: :invalid do
-      before do
-        module ControllerActions
-          remove_method :doorkeeper_unauthorized_render_options
-          def doorkeeper_unauthorized_render_options(error: nil)
-            { plain: 'Unauthorized' }
-          end
-        end
-      end
-      after do
-        module ControllerActions
-          remove_method :doorkeeper_unauthorized_render_options
-          def doorkeeper_unauthorized_render_options(error: nil)
-          end
-        end
-      end
-      it 'it renders a custom text response', token: :invalid do
-        get :index, access_token: token_string
-        expect(response.status).to eq 401
-        expect(response.content_type).to eq('text/plain')
-        expect(response.header['WWW-Authenticate']).to match(/^Bearer/)
-        expect(response.body).to eq('Unauthorized')
-      end
-    end
-  end
-  context 'when custom forbidden render options are configured' do
-    before do
-      expect(Doorkeeper::AccessToken).to receive(:by_token).with(token_string).and_return(token)
-      expect(token).to receive(:acceptable?).with([:write]).and_return(false)
-    end
-    after do
-      module ControllerActions
-        remove_method :doorkeeper_forbidden_render_options
-        def doorkeeper_forbidden_render_options(*)
-        end
-      end
-    end
-    controller do
-      before_action -> { doorkeeper_authorize! :write }
-      include ControllerActions
-    end
-    let(:token) do
-      double(Doorkeeper::AccessToken,
-             accessible?: true, scopes: ['public'], revoked?: false,
-             expired?: false, previous_refresh_token: "",
-             revoke_previous_refresh_token!: true)
-    end
-    let(:token_string) { '1A2DUWE' }
-    context 'with a JSON custom render' do
-      before do
-        module ControllerActions
-          remove_method :doorkeeper_forbidden_render_options
-          def doorkeeper_forbidden_render_options(*)
-            { json: { error_message: 'Forbidden' } }
-          end
-        end
-      end
-      it 'renders a custom JSON response' do
-        get :index, access_token: token_string
-        expect(response.header).to_not include('WWW-Authenticate')
-        expect(response.content_type).to eq('application/json')
-        expect(response.status).to eq 403
-        parsed_body = JSON.parse(response.body)
-        expect(parsed_body).not_to be_nil
-        expect(parsed_body['error_message']).to match('Forbidden')
-      end
-    end
-    context 'with a status and JSON custom render' do
-      before do
-        module ControllerActions
-          remove_method :doorkeeper_forbidden_render_options
-          def doorkeeper_forbidden_render_options(*)
-            { json: { error_message: 'Not Found' },
-              respond_not_found_when_forbidden: true }
-          end
-        end
-      end
-      it 'overrides the default status code' do
-        get :index, access_token: token_string
-        expect(response.status).to eq 404
-      end
-    end
-    context 'with a text custom render' do
-      before do
-        module ControllerActions
-          remove_method :doorkeeper_forbidden_render_options
-          def doorkeeper_forbidden_render_options(*)
-            { plain: 'Forbidden' }
-          end
-        end
-      end
-      it 'renders a custom status code and text response' do
-        get :index, access_token: token_string
-        expect(response.header).to_not include('WWW-Authenticate')
-        expect(response.status).to eq 403
-        expect(response.body).to eq('Forbidden')
-      end
-    end
-    context 'with a status and text custom render' do
-      before do
-        module ControllerActions
-          remove_method :doorkeeper_forbidden_render_options
-          def doorkeeper_forbidden_render_options(*)
-            { respond_not_found_when_forbidden: true, plain: 'Not Found' }
-          end
-        end
-      end
-      it 'overrides the default status code' do
-        get :index, access_token: token_string
-        expect(response.status).to eq 404
-      end
-    end
-  end
-end

data/spec/controllers/token_info_controller_spec.rb DELETED Viewed

@@ -1,52 +0,0 @@
-require 'spec_helper_integration'
-describe Doorkeeper::TokenInfoController do
-  describe 'when requesting tokeninfo with valid token' do
-    let(:doorkeeper_token) { FactoryGirl.create(:access_token) }
-    before(:each) do
-      allow(controller).to receive(:doorkeeper_token) { doorkeeper_token }
-    end
-    def do_get
-      get :show
-    end
-    describe 'successful request' do
-      it 'responds with tokeninfo' do
-        do_get
-        expect(response.body).to eq(doorkeeper_token.to_json)
-      end
-      it 'responds with a 200 status' do
-        do_get
-        expect(response.status).to eq 200
-      end
-    end
-    describe 'invalid token response' do
-      before(:each) do
-        allow(controller).to receive(:doorkeeper_token).and_return(nil)
-      end
-      it 'responds with 401 when doorkeeper_token is not valid' do
-        do_get
-        expect(response.status).to eq 401
-        expect(response.headers['WWW-Authenticate']).to match(/^Bearer/)
-      end
-      it 'responds with 401 when doorkeeper_token is invalid, expired or revoked' do
-        allow(controller).to receive(:doorkeeper_token).and_return(doorkeeper_token)
-        allow(doorkeeper_token).to receive(:accessible?).and_return(false)
-        do_get
-        expect(response.status).to eq 401
-        expect(response.headers['WWW-Authenticate']).to match(/^Bearer/)
-      end
-      it 'responds body message for error' do
-        do_get
-        expect(response.body).to eq(Doorkeeper::OAuth::ErrorResponse.new(name: :invalid_request, status: :unauthorized).body.to_json)
-      end
-    end
-  end
-end

data/spec/controllers/tokens_controller_spec.rb DELETED Viewed

@@ -1,88 +0,0 @@
-require 'spec_helper_integration'
-describe Doorkeeper::TokensController do
-  describe 'when authorization has succeeded' do
-    let :token do
-      double(:token, authorize: true)
-    end
-    before do
-      allow(controller).to receive(:token) { token }
-    end
-    it 'returns the authorization' do
-      skip 'verify need of these specs'
-      expect(token).to receive(:authorization)
-      post :create
-    end
-  end
-  describe 'when authorization has failed' do
-    it 'returns the error response' do
-      token = double(:token, authorize: false)
-      allow(controller).to receive(:token) { token }
-      post :create
-      expect(response.status).to eq 401
-      expect(response.headers['WWW-Authenticate']).to match(/Bearer/)
-    end
-  end
-  describe 'when there is a failure due to a custom error' do
-    it 'returns the error response with a custom message' do
-      # I18n looks for `doorkeeper.errors.messages.custom_message` in locale files
-      custom_message = "my_message"
-      allow(I18n).to receive(:translate).
-        with(
-          custom_message,
-          hash_including(scope: [:doorkeeper, :errors, :messages]),
-        ).
-        and_return('Authorization custom message')
-      doorkeeper_error = Doorkeeper::Errors::DoorkeeperError.new(custom_message)
-      strategy = double(:strategy)
-      request = double(token_request: strategy)
-      allow(strategy).to receive(:authorize).and_raise(doorkeeper_error)
-      allow(controller).to receive(:server).and_return(request)
-      post :create
-      expected_response_body = {
-        "error"             => custom_message,
-        "error_description" => "Authorization custom message"
-      }
-      expect(response.status).to eq 401
-      expect(response.headers['WWW-Authenticate']).to match(/Bearer/)
-      expect(JSON.load(response.body)).to eq expected_response_body
-    end
-  end
-  describe 'when revoke authorization has failed' do
-    # http://tools.ietf.org/html/rfc7009#section-2.2
-    it 'returns no error response' do
-      token = double(:token, authorize: false, application_id?: true)
-      allow(controller).to receive(:token) { token }
-      post :revoke
-      expect(response.status).to eq 200
-    end
-  end
-  describe 'authorize response memoization' do
-    it "memoizes the result of the authorization" do
-      strategy = double(:strategy, authorize: true)
-      expect(strategy).to receive(:authorize).once
-      allow(controller).to receive(:strategy) { strategy }
-      allow(controller).to receive(:create) do
-        controller.send :authorize_response
-      end
-      post :create
-    end
-  end
-end

data/spec/dummy/Rakefile DELETED Viewed

@@ -1,7 +0,0 @@
-#!/usr/bin/env rake
-# Add your own tasks in files placed in lib/tasks ending in .rake,
-# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
-require File.expand_path('../config/application', __FILE__)
-Dummy::Application.load_tasks

data/spec/dummy/app/controllers/application_controller.rb DELETED Viewed

@@ -1,3 +0,0 @@
-class ApplicationController < ActionController::Base
-  protect_from_forgery
-end

data/spec/dummy/app/controllers/custom_authorizations_controller.rb DELETED Viewed

@@ -1,7 +0,0 @@
-class CustomAuthorizationsController < ::ApplicationController
-  %w(index show new create edit update destroy).each do |action|
-    define_method action do
-      render nothing: true
-    end
-  end
-end

data/spec/dummy/app/controllers/full_protected_resources_controller.rb DELETED Viewed

@@ -1,12 +0,0 @@
-class FullProtectedResourcesController < ApplicationController
-  before_action -> { doorkeeper_authorize! :write, :admin }, only: :show
-  before_action :doorkeeper_authorize!, only: :index
-  def index
-    render plain: 'index'
-  end
-  def show
-    render plain: 'show'
-  end
-end

data/spec/dummy/app/controllers/home_controller.rb DELETED Viewed

@@ -1,17 +0,0 @@
-class HomeController < ApplicationController
-  def index
-  end
-  def sign_in
-    session[:user_id] = if Rails.env.development?
-                          User.first || User.create!(name: 'Joe', password: 'sekret')
-                        else
-                          User.first
-                        end
-    redirect_to '/'
-  end
-  def callback
-    render plain: 'ok'
-  end
-end

data/spec/dummy/app/controllers/metal_controller.rb DELETED Viewed

@@ -1,11 +0,0 @@
-class MetalController < ActionController::Metal
-  include AbstractController::Callbacks
-  include ActionController::Head
-  include Doorkeeper::Rails::Helpers
-  before_action :doorkeeper_authorize!
-  def index
-    self.response_body = { ok: true }.to_json
-  end
-end

data/spec/dummy/app/controllers/semi_protected_resources_controller.rb DELETED Viewed

@@ -1,11 +0,0 @@
-class SemiProtectedResourcesController < ApplicationController
-  before_action :doorkeeper_authorize!, only: :index
-  def index
-    render plain: 'protected index'
-  end
-  def show
-    render plain: 'non protected show'
-  end
-end

data/spec/dummy/app/helpers/application_helper.rb DELETED Viewed

@@ -1,5 +0,0 @@
-module ApplicationHelper
-  def current_user
-    @current_user ||= User.find_by_id(session[:user_id])
-  end
-end

data/spec/dummy/app/models/user.rb DELETED Viewed

@@ -1,5 +0,0 @@
-class User < ActiveRecord::Base
-  def self.authenticate!(name, password)
-    User.where(name: name, password: password).first
-  end
-end

data/spec/dummy/app/views/home/index.html.erb DELETED Viewed

File without changes

data/spec/dummy/app/views/layouts/application.html.erb DELETED Viewed

@@ -1,14 +0,0 @@
-<!DOCTYPE html>
-<html>
-<head>
-  <title>Dummy</title>
-  <%= csrf_meta_tags %>
-</head>
-<body>
-<%= link_to "Sign in", '/sign_in' %>
-<%= yield %>
-</body>
-</html>

data/spec/dummy/config/application.rb DELETED Viewed

@@ -1,23 +0,0 @@
-require File.expand_path('../boot', __FILE__)
-require 'rails/all'
-Bundler.require(*Rails.groups)
-require 'yaml'
-orm = if DOORKEEPER_ORM =~ /mongoid/
-        Mongoid.load!(File.join(File.dirname(File.expand_path(__FILE__)), "#{DOORKEEPER_ORM}.yml"))
-        :mongoid
-      else
-        DOORKEEPER_ORM
-      end
-require "#{orm}/railtie"
-module Dummy
-  class Application < Rails::Application
-    # Settings in config/environments/* take precedence over those specified here.
-    # Application configuration should go into files in config/initializers
-    # -- all .rb files in that directory are automatically loaded.
-  end
-end

data/spec/dummy/config/boot.rb DELETED Viewed

@@ -1,9 +0,0 @@
-require 'rubygems'
-require 'bundler/setup'
-orm = ENV['BUNDLE_GEMFILE'].match(/Gemfile\.(.+)\.rb/)
-unless defined?(DOORKEEPER_ORM)
-  DOORKEEPER_ORM = (orm && orm[1]) || :active_record
-end
-$LOAD_PATH.unshift File.expand_path('../../../../lib', __FILE__)

data/spec/dummy/config/database.yml DELETED Viewed

@@ -1,15 +0,0 @@
-development:
-  adapter: sqlite3
-  database: db/development.sqlite3
-  pool: 5
-  timeout: 5000
-test:
-  adapter: sqlite3
-  database: ":memory:"
-  timeout: 500
-production:
-  adapter: sqlite3
-  database: ":memory:"
-  timeout: 500

data/spec/dummy/config/environment.rb DELETED Viewed

@@ -1,5 +0,0 @@
-# Load the rails application
-require File.expand_path('../application', __FILE__)
-# Initialize the rails application
-Rails.application.initialize!

data/spec/dummy/config/environments/development.rb DELETED Viewed

@@ -1,29 +0,0 @@
-Dummy::Application.configure do
-  # Settings specified here will take precedence over those in config/application.rb
-  # In the development environment your application's code is reloaded on
-  # every request.  This slows down response time but is perfect for development
-  # since you don't have to restart the web server when you make code changes.
-  config.cache_classes = false
-  # Show full error reports and disable caching
-  config.consider_all_requests_local       = true
-  config.action_controller.perform_caching = false
-  # Don't care if the mailer can't send
-  # config.action_mailer.raise_delivery_errors = false
-  # Print deprecation notices to the Rails logger
-  config.active_support.deprecation = :log
-  # Only use best-standards-support built into browsers
-  config.action_dispatch.best_standards_support = :builtin
-  # Do not compress assets
-  config.assets.compress = false
-  # Expands the lines which load the assets
-  config.assets.debug = true
-  config.eager_load = false
-end