RubyGems - doorkeeper - Versions diffs - 4.4.3 → 5.0.3 - Mend

doorkeeper 4.4.3 → 5.0.3

Potentially problematic release.

This version of doorkeeper might be problematic. Click here for more details.

Files changed (223) hide show

checksums.yaml +5 -5
data/.gitignore +1 -0
data/.gitlab-ci.yml +16 -0
data/.travis.yml +7 -0
data/Appraisals +2 -2
data/Dangerfile +64 -0
data/Gemfile +1 -1
data/NEWS.md +98 -8
data/README.md +110 -12
data/Rakefile +6 -0
data/UPGRADE.md +2 -0
data/app/assets/stylesheets/doorkeeper/admin/application.css +2 -2
data/app/controllers/doorkeeper/application_controller.rb +6 -3
data/app/controllers/doorkeeper/application_metal_controller.rb +6 -0
data/app/controllers/doorkeeper/applications_controller.rb +46 -24
data/app/controllers/doorkeeper/authorizations_controller.rb +55 -12
data/app/controllers/doorkeeper/authorized_applications_controller.rb +21 -2
data/app/controllers/doorkeeper/token_info_controller.rb +2 -0
data/app/controllers/doorkeeper/tokens_controller.rb +4 -6
data/app/helpers/doorkeeper/dashboard_helper.rb +9 -7
data/app/validators/redirect_uri_validator.rb +5 -2
data/app/views/doorkeeper/applications/_delete_form.html.erb +3 -1
data/app/views/doorkeeper/applications/_form.html.erb +25 -24
data/app/views/doorkeeper/applications/edit.html.erb +1 -1
data/app/views/doorkeeper/applications/index.html.erb +17 -7
data/app/views/doorkeeper/applications/new.html.erb +1 -1
data/app/views/doorkeeper/applications/show.html.erb +6 -6
data/app/views/doorkeeper/authorizations/error.html.erb +1 -1
data/app/views/doorkeeper/authorizations/new.html.erb +4 -0
data/app/views/layouts/doorkeeper/admin.html.erb +15 -15
data/config/locales/en.yml +10 -1
data/doorkeeper.gemspec +25 -26
data/gemfiles/rails_5_2.gemfile +1 -1
data/gemfiles/rails_master.gemfile +4 -1
data/lib/doorkeeper/config.rb +81 -40
data/lib/doorkeeper/engine.rb +6 -0
data/lib/doorkeeper/errors.rb +17 -3
data/lib/doorkeeper/grape/authorization_decorator.rb +2 -0
data/lib/doorkeeper/grape/helpers.rb +3 -1
data/lib/doorkeeper/helpers/controller.rb +9 -2
data/lib/doorkeeper/models/access_grant_mixin.rb +73 -0
data/lib/doorkeeper/models/access_token_mixin.rb +44 -25
data/lib/doorkeeper/models/application_mixin.rb +2 -0
data/lib/doorkeeper/models/concerns/accessible.rb +2 -0
data/lib/doorkeeper/models/concerns/expirable.rb +2 -0
data/lib/doorkeeper/models/concerns/orderable.rb +2 -0
data/lib/doorkeeper/models/concerns/ownership.rb +2 -0
data/lib/doorkeeper/models/concerns/revocable.rb +2 -0
data/lib/doorkeeper/models/concerns/scopes.rb +3 -1
data/lib/doorkeeper/oauth/authorization/code.rb +33 -8
data/lib/doorkeeper/oauth/authorization/context.rb +17 -0
data/lib/doorkeeper/oauth/authorization/token.rb +38 -14
data/lib/doorkeeper/oauth/authorization/uri_builder.rb +2 -0
data/lib/doorkeeper/oauth/authorization_code_request.rb +29 -2
data/lib/doorkeeper/oauth/base_request.rb +22 -9
data/lib/doorkeeper/oauth/base_response.rb +2 -0
data/lib/doorkeeper/oauth/client/credentials.rb +3 -1
data/lib/doorkeeper/oauth/client.rb +1 -1
data/lib/doorkeeper/oauth/client_credentials/creator.rb +4 -1
data/lib/doorkeeper/oauth/client_credentials/issuer.rb +7 -2
data/lib/doorkeeper/oauth/client_credentials/validation.rb +5 -5
data/lib/doorkeeper/oauth/client_credentials_request.rb +1 -3
data/lib/doorkeeper/oauth/code_request.rb +2 -0
data/lib/doorkeeper/oauth/code_response.rb +2 -0
data/lib/doorkeeper/oauth/error.rb +2 -0
data/lib/doorkeeper/oauth/error_response.rb +21 -3
data/lib/doorkeeper/oauth/forbidden_token_response.rb +9 -2
data/lib/doorkeeper/oauth/helpers/scope_checker.rb +2 -8
data/lib/doorkeeper/oauth/helpers/unique_token.rb +2 -0
data/lib/doorkeeper/oauth/helpers/uri_checker.rb +5 -2
data/lib/doorkeeper/oauth/invalid_token_response.rb +18 -0
data/lib/doorkeeper/oauth/password_access_token_request.rb +9 -4
data/lib/doorkeeper/oauth/pre_authorization.rb +43 -11
data/lib/doorkeeper/oauth/refresh_token_request.rb +16 -3
data/lib/doorkeeper/oauth/scopes.rb +3 -1
data/lib/doorkeeper/oauth/token.rb +7 -2
data/lib/doorkeeper/oauth/token_introspection.rb +4 -2
data/lib/doorkeeper/oauth/token_request.rb +2 -0
data/lib/doorkeeper/oauth/token_response.rb +6 -2
data/lib/doorkeeper/oauth.rb +13 -0
data/lib/doorkeeper/orm/active_record/application.rb +75 -12
data/lib/doorkeeper/orm/active_record/stale_records_cleaner.rb +26 -0
data/lib/doorkeeper/orm/active_record.rb +4 -0
data/lib/doorkeeper/rails/helpers.rb +6 -4
data/lib/doorkeeper/rails/routes/mapper.rb +2 -0
data/lib/doorkeeper/rails/routes/mapping.rb +2 -0
data/lib/doorkeeper/rails/routes.rb +23 -8
data/lib/doorkeeper/rake/db.rake +40 -0
data/lib/doorkeeper/rake/setup.rake +6 -0
data/lib/doorkeeper/rake.rb +14 -0
data/lib/doorkeeper/request/authorization_code.rb +1 -1
data/lib/doorkeeper/request/client_credentials.rb +1 -1
data/lib/doorkeeper/request/code.rb +1 -1
data/lib/doorkeeper/request/password.rb +1 -1
data/lib/doorkeeper/request/refresh_token.rb +1 -1
data/lib/doorkeeper/request/strategy.rb +2 -0
data/lib/doorkeeper/request/token.rb +1 -1
data/lib/doorkeeper/request.rb +29 -34
data/lib/doorkeeper/server.rb +2 -0
data/lib/doorkeeper/stale_records_cleaner.rb +20 -0
data/lib/doorkeeper/validations.rb +2 -0
data/lib/doorkeeper/version.rb +6 -24
data/lib/doorkeeper.rb +20 -17
data/lib/generators/doorkeeper/application_owner_generator.rb +23 -18
data/lib/generators/doorkeeper/confidential_applications_generator.rb +32 -0
data/lib/generators/doorkeeper/install_generator.rb +17 -9
data/lib/generators/doorkeeper/migration_generator.rb +23 -18
data/lib/generators/doorkeeper/pkce_generator.rb +32 -0
data/lib/generators/doorkeeper/previous_refresh_token_generator.rb +29 -24
data/lib/generators/doorkeeper/templates/add_confidential_to_applications.rb.erb +13 -0
data/lib/generators/doorkeeper/templates/enable_pkce_migration.rb.erb +6 -0
data/lib/generators/doorkeeper/templates/initializer.rb +96 -13
data/lib/generators/doorkeeper/templates/migration.rb.erb +2 -3
data/lib/generators/doorkeeper/views_generator.rb +3 -1
data/spec/controllers/application_metal_controller_spec.rb +50 -0
data/spec/controllers/applications_controller_spec.rb +123 -14
data/spec/controllers/authorizations_controller_spec.rb +334 -51
data/spec/controllers/protected_resources_controller_spec.rb +60 -18
data/spec/controllers/token_info_controller_spec.rb +4 -12
data/spec/controllers/tokens_controller_spec.rb +17 -20
data/spec/dummy/Rakefile +1 -1
data/spec/dummy/app/assets/config/manifest.js +2 -0
data/spec/dummy/app/controllers/custom_authorizations_controller.rb +1 -1
data/spec/dummy/app/controllers/home_controller.rb +1 -2
data/spec/dummy/config/application.rb +1 -1
data/spec/dummy/config/boot.rb +2 -4
data/spec/dummy/config/environment.rb +1 -1
data/spec/dummy/config/environments/test.rb +5 -6
data/spec/dummy/config/initializers/doorkeeper.rb +12 -6
data/spec/dummy/config/initializers/new_framework_defaults.rb +2 -0
data/spec/dummy/config/initializers/secret_token.rb +1 -1
data/spec/dummy/config/routes.rb +3 -42
data/spec/dummy/config.ru +1 -1
data/spec/dummy/db/migrate/20151223192035_create_doorkeeper_tables.rb +4 -4
data/spec/dummy/db/migrate/20151223200000_add_owner_to_application.rb +1 -1
data/spec/dummy/db/migrate/20170822064514_enable_pkce.rb +6 -0
data/spec/dummy/db/migrate/{20180210183654_add_confidential_to_application.rb → 20180210183654_add_confidential_to_applications.rb} +1 -1
data/spec/dummy/db/schema.rb +36 -36
data/spec/dummy/script/rails +4 -3
data/spec/factories.rb +6 -6
data/spec/generators/application_owner_generator_spec.rb +1 -1
data/spec/generators/confidential_applications_generator_spec.rb +45 -0
data/spec/generators/install_generator_spec.rb +5 -2
data/spec/generators/migration_generator_spec.rb +1 -1
data/spec/generators/pkce_generator_spec.rb +43 -0
data/spec/generators/previous_refresh_token_generator_spec.rb +1 -1
data/spec/generators/templates/routes.rb +0 -1
data/spec/generators/views_generator_spec.rb +2 -2
data/spec/grape/grape_integration_spec.rb +2 -2
data/spec/helpers/doorkeeper/dashboard_helper_spec.rb +1 -1
data/spec/lib/config_spec.rb +105 -39
data/spec/lib/doorkeeper_spec.rb +6 -131
data/spec/lib/models/expirable_spec.rb +0 -3
data/spec/lib/models/revocable_spec.rb +0 -2
data/spec/lib/models/scopes_spec.rb +0 -4
data/spec/lib/oauth/authorization/uri_builder_spec.rb +0 -4
data/spec/lib/oauth/authorization_code_request_spec.rb +17 -7
data/spec/lib/oauth/base_request_spec.rb +49 -11
data/spec/lib/oauth/base_response_spec.rb +1 -1
data/spec/lib/oauth/client/credentials_spec.rb +2 -4
data/spec/lib/oauth/client_credentials/creator_spec.rb +5 -1
data/spec/lib/oauth/client_credentials/issuer_spec.rb +24 -7
data/spec/lib/oauth/client_credentials/validation_spec.rb +4 -4
data/spec/lib/oauth/client_credentials_integration_spec.rb +2 -2
data/spec/lib/oauth/client_credentials_request_spec.rb +3 -5
data/spec/lib/oauth/client_spec.rb +0 -3
data/spec/lib/oauth/code_request_spec.rb +5 -3
data/spec/lib/oauth/code_response_spec.rb +1 -1
data/spec/lib/oauth/error_response_spec.rb +0 -3
data/spec/lib/oauth/error_spec.rb +0 -2
data/spec/lib/oauth/forbidden_token_response_spec.rb +1 -4
data/spec/lib/oauth/helpers/scope_checker_spec.rb +8 -11
data/spec/lib/oauth/helpers/unique_token_spec.rb +0 -1
data/spec/lib/oauth/helpers/uri_checker_spec.rb +22 -13
data/spec/lib/oauth/invalid_token_response_spec.rb +1 -4
data/spec/lib/oauth/password_access_token_request_spec.rb +53 -6
data/spec/lib/oauth/pre_authorization_spec.rb +33 -4
data/spec/lib/oauth/refresh_token_request_spec.rb +22 -14
data/spec/lib/oauth/scopes_spec.rb +0 -3
data/spec/lib/oauth/token_request_spec.rb +8 -9
data/spec/lib/oauth/token_response_spec.rb +0 -1
data/spec/lib/oauth/token_spec.rb +40 -14
data/spec/lib/request/strategy_spec.rb +0 -1
data/spec/lib/server_spec.rb +7 -7
data/spec/lib/stale_records_cleaner_spec.rb +89 -0
data/spec/models/doorkeeper/access_grant_spec.rb +44 -1
data/spec/models/doorkeeper/access_token_spec.rb +80 -32
data/spec/models/doorkeeper/application_spec.rb +293 -221
data/spec/requests/applications/applications_request_spec.rb +134 -1
data/spec/requests/applications/authorized_applications_spec.rb +1 -1
data/spec/requests/endpoints/authorization_spec.rb +3 -3
data/spec/requests/endpoints/token_spec.rb +7 -5
data/spec/requests/flows/authorization_code_errors_spec.rb +2 -2
data/spec/requests/flows/authorization_code_spec.rb +258 -2
data/spec/requests/flows/client_credentials_spec.rb +46 -6
data/spec/requests/flows/implicit_grant_errors_spec.rb +3 -3
data/spec/requests/flows/implicit_grant_spec.rb +38 -11
data/spec/requests/flows/password_spec.rb +61 -3
data/spec/requests/flows/refresh_token_spec.rb +59 -2
data/spec/requests/flows/revoke_token_spec.rb +20 -20
data/spec/requests/flows/skip_authorization_spec.rb +16 -11
data/spec/requests/protected_resources/metal_spec.rb +1 -1
data/spec/requests/protected_resources/private_api_spec.rb +3 -3
data/spec/routing/custom_controller_routes_spec.rb +59 -7
data/spec/routing/default_routes_spec.rb +2 -2
data/spec/routing/scoped_routes_spec.rb +16 -2
data/spec/spec_helper.rb +54 -3
data/spec/spec_helper_integration.rb +2 -74
data/spec/support/dependencies/{factory_girl.rb → factory_bot.rb} +0 -0
data/spec/support/doorkeeper_rspec.rb +20 -0
data/spec/support/helpers/authorization_request_helper.rb +4 -4
data/spec/support/helpers/model_helper.rb +8 -4
data/spec/support/helpers/request_spec_helper.rb +10 -2
data/spec/support/helpers/url_helper.rb +18 -14
data/spec/support/http_method_shim.rb +12 -16
data/spec/support/shared/controllers_shared_context.rb +56 -0
data/spec/validators/redirect_uri_validator_spec.rb +9 -3
data/spec/version/version_spec.rb +3 -3
data/vendor/assets/stylesheets/doorkeeper/bootstrap.min.css +4 -5
metadata +54 -35
data/lib/generators/doorkeeper/add_client_confidentiality_generator.rb +0 -31
data/lib/generators/doorkeeper/templates/add_confidential_to_application_migration.rb.erb +0 -11
data/spec/controllers/application_metal_controller.rb +0 -10

data/spec/spec_helper_integration.rb CHANGED Viewed

@@ -1,74 +1,2 @@
-if ENV['TRAVIS']
-  require 'coveralls'
-  Coveralls.wear!('rails') do
-    add_filter('/spec/')
-    add_filter('/lib/generators/doorkeeper/templates/')
-  end
-else
-  require 'simplecov'
-  SimpleCov.start do
-    add_filter('/spec/')
-    add_filter('/lib/generators/doorkeeper/templates/')
-  end
-end
-ENV['RAILS_ENV'] ||= 'test'
-TABLE_NAME_PREFIX = ENV['table_name_prefix'] || nil
-TABLE_NAME_SUFFIX = ENV['table_name_suffix'] || nil
-orm = (ENV['BUNDLE_GEMFILE'] || '').match(/Gemfile\.(.+)\.rb/)
-DOORKEEPER_ORM = (orm && orm[1] || :active_record).to_sym
-$LOAD_PATH.unshift File.dirname(__FILE__)
-require 'capybara/rspec'
-require 'dummy/config/environment'
-require 'rspec/rails'
-require 'generator_spec/test_case'
-require 'database_cleaner'
-# Load JRuby SQLite3 if in that platform
-begin
-  require 'jdbc/sqlite3'
-  Jdbc::SQLite3.load_driver
-rescue LoadError
-end
-Rails.logger.info "====> Doorkeeper.orm = #{Doorkeeper.configuration.orm}"
-if Doorkeeper.configuration.orm == :active_record
-  Rails.logger.info "======> active_record.table_name_prefix = #{Rails.configuration.active_record.table_name_prefix}"
-  Rails.logger.info "======> active_record.table_name_suffix = #{Rails.configuration.active_record.table_name_suffix}"
-end
-Rails.logger.info "====> Rails version: #{Rails.version}"
-Rails.logger.info "====> Ruby version: #{RUBY_VERSION}"
-require "support/orm/#{DOORKEEPER_ORM}"
-ENGINE_RAILS_ROOT = File.join(File.dirname(__FILE__), '../')
-Dir["#{File.dirname(__FILE__)}/support/{dependencies,helpers,shared}/*.rb"].each { |f| require f }
-# Remove after dropping support of Rails 4.2
-require "#{File.dirname(__FILE__)}/support/http_method_shim.rb"
-RSpec.configure do |config|
-  config.infer_spec_type_from_file_location!
-  config.mock_with :rspec
-  config.infer_base_class_for_anonymous_controllers = false
-  config.include RSpec::Rails::RequestExampleGroup, type: :request
-  config.before do
-    DatabaseCleaner.start
-    Doorkeeper.configure { orm DOORKEEPER_ORM }
-  end
-  config.after do
-    DatabaseCleaner.clean
-  end
-  config.order = 'random'
-end
+# For compatibility only
+require 'spec_helper'

data/spec/support/dependencies/{factory_girl.rb → factory_bot.rb} RENAMED Viewed

File without changes

data/spec/support/doorkeeper_rspec.rb ADDED Viewed

@@ -0,0 +1,20 @@
+module Doorkeeper
+  class RSpec
+    # Print's useful information about env: Ruby / Rails versions,
+    # Doorkeeper configuration, etc.
+    def self.print_configuration_info
+      puts <<-INFO.strip_heredoc
+        ====> Doorkeeper ORM: '#{Doorkeeper.configuration.orm}'
+        ====> Doorkeeper version: #{Doorkeeper.gem_version}
+        ====> Rails version: #{::Rails.version}
+        ====> Ruby version: #{RUBY_VERSION} on #{RUBY_PLATFORM}
+      INFO
+    end
+    # Tries to find ORM from the Gemfile used to run test suite
+    def self.detect_orm
+      orm = (ENV['BUNDLE_GEMFILE'] || '').match(/Gemfile\.(.+)\.rb/)
+      (orm && orm[1] || :active_record).to_sym
+    end
+  end
+end

data/spec/support/helpers/authorization_request_helper.rb CHANGED Viewed

@@ -28,13 +28,13 @@ module AuthorizationRequestHelper
     expect(client.redirect_uri).to eq("#{current_uri.scheme}://#{current_uri.host}#{current_uri.path}")
   end
-  def allowing_forgery_protection(&block)
-    _original_value = ActionController::Base.allow_forgery_protection
+  def allowing_forgery_protection(&_block)
+    original_value = ActionController::Base.allow_forgery_protection
     ActionController::Base.allow_forgery_protection = true
-    block.call
+    yield
   ensure
-    ActionController::Base.allow_forgery_protection = _original_value
+    ActionController::Base.allow_forgery_protection = original_value
   end
 end

data/spec/support/helpers/model_helper.rb CHANGED Viewed

@@ -11,11 +11,15 @@ module ModelHelper
     @authorization = FactoryBot.create(:access_grant, options)
   end
+  def access_token_exists(options = {})
+    @access_token = FactoryBot.create(:access_token, options)
+  end
   def access_grant_should_exist_for(client, resource_owner)
     grant = Doorkeeper::AccessGrant.first
-    expect(grant.application).to have_attributes(id: client.id).
-      and(be_instance_of(Doorkeeper::Application))
+    expect(grant.application).to have_attributes(id: client.id)
+      .and(be_instance_of(Doorkeeper::Application))
     expect(grant.resource_owner_id).to eq(resource_owner.id)
   end
@@ -23,8 +27,8 @@ module ModelHelper
   def access_token_should_exist_for(client, resource_owner)
     token = Doorkeeper::AccessToken.first
-    expect(token.application).to have_attributes(id: client.id).
-      and(be_instance_of(Doorkeeper::Application))
+    expect(token.application).to have_attributes(id: client.id)
+      .and(be_instance_of(Doorkeeper::Application))
     expect(token.resource_owner_id).to eq(resource_owner.id)
   end

data/spec/support/helpers/request_spec_helper.rb CHANGED Viewed

@@ -1,4 +1,8 @@
 module RequestSpecHelper
+  def i_am_logged_in
+    allow(Doorkeeper.configuration).to receive(:authenticate_admin).and_return(->(*) {})
+  end
   def i_should_see(content)
     expect(page).to have_content(content)
   end
@@ -39,6 +43,10 @@ module RequestSpecHelper
     expect(headers[header]).to eq(value)
   end
+  def should_have_status(status)
+    expect(page.driver.response.status).to eq(status)
+  end
   def with_access_token_header(token)
     with_header 'Authorization', "Bearer #{token}"
   end
@@ -68,8 +76,8 @@ module RequestSpecHelper
     click_on 'Sign in'
   end
-  def create_access_token(authorization_code, client)
-    page.driver.post token_endpoint_url(code: authorization_code, client: client)
+  def create_access_token(authorization_code, client, code_verifier = nil)
+    page.driver.post token_endpoint_url(code: authorization_code, client: client, code_verifier: code_verifier)
   end
   def i_should_see_translated_error_message(key)

data/spec/support/helpers/url_helper.rb CHANGED Viewed

@@ -2,21 +2,23 @@ module UrlHelper
   def token_endpoint_url(options = {})
     parameters = {
       code: options[:code],
-      client_id: options[:client_id] || (options[:client] ? options[:client].uid : nil),
-      client_secret: options[:client_secret] || (options[:client] ? options[:client].secret : nil),
-      redirect_uri: options[:redirect_uri]  || (options[:client] ? options[:client].redirect_uri : nil),
-      grant_type: options[:grant_type] || 'authorization_code'
-    }
+      client_id: options[:client_id] || options[:client].try(:uid),
+      client_secret: options[:client_secret] || options[:client].try(:secret),
+      redirect_uri: options[:redirect_uri] || options[:client].try(:redirect_uri),
+      grant_type: options[:grant_type] || 'authorization_code',
+      code_verifier: options[:code_verifier],
+      code_challenge_method: options[:code_challenge_method]
+    }.reject { |_, v| v.blank? }
     "/oauth/token?#{build_query(parameters)}"
   end
   def password_token_endpoint_url(options = {})
     parameters = {
       code: options[:code],
-      client_id: options[:client_id] || (options[:client] ? options[:client].uid : nil),
-      client_secret: options[:client_secret] || (options[:client] ? options[:client].secret : nil),
-      username: options[:resource_owner_username] || (options[:resource_owner] ? options[:resource_owner].name : nil),
-      password: options[:resource_owner_password] || (options[:resource_owner] ? options[:resource_owner].password : nil),
+      client_id: options[:client_id] || options[:client].try(:uid),
+      client_secret: options[:client_secret] || options[:client].try(:secret),
+      username: options[:resource_owner_username] || options[:resource_owner].try(:name),
+      password: options[:resource_owner_password] || options[:resource_owner].try(:password),
       scope: options[:scope],
       grant_type: 'password'
     }
@@ -25,11 +27,13 @@ module UrlHelper
   def authorization_endpoint_url(options = {})
     parameters = {
-      client_id: options[:client_id] || options[:client].uid,
-      redirect_uri: options[:redirect_uri] || options[:client].redirect_uri,
+      client_id: options[:client_id] || options[:client].try(:uid),
+      redirect_uri: options[:redirect_uri] || options[:client].try(:redirect_uri),
       response_type: options[:response_type] || 'code',
       scope: options[:scope],
-      state: options[:state]
+      state: options[:state],
+      code_challenge: options[:code_challenge],
+      code_challenge_method: options[:code_challenge_method]
     }.reject { |_, v| v.blank? }
     "/oauth/authorize?#{build_query(parameters)}"
   end
@@ -37,8 +41,8 @@ module UrlHelper
   def refresh_token_endpoint_url(options = {})
     parameters = {
       refresh_token: options[:refresh_token],
-      client_id: options[:client_id] || options[:client].uid,
-      client_secret: options[:client_secret] || options[:client].secret,
+      client_id: options[:client_id] || options[:client].try(:uid),
+      client_secret: options[:client_secret] || options[:client].try(:secret),
       grant_type: options[:grant_type] || 'refresh_token'
     }
     "/oauth/token?#{build_query(parameters)}"

data/spec/support/http_method_shim.rb CHANGED Viewed

@@ -3,34 +3,30 @@
 # supported in Rails 5+. Since we support back to 4, we need some sort of shim
 # to avoid super noisy deprecations when running tests.
 module RoutingHTTPMethodShim
-  def get(path, params = {}, headers = nil)
-    super(path, params: params, headers: headers)
+  def get(path, **args)
+    super(path, args[:params], args[:headers])
   end
-  def post(path, params = {}, headers = nil)
-    super(path, params: params, headers: headers)
+  def post(path, **args)
+    super(path, args[:params], args[:headers])
   end
-  def put(path, params = {}, headers = nil)
-    super(path, params: params, headers: headers)
+  def put(path, **args)
+    super(path, args[:params], args[:headers])
   end
 end
 module ControllerHTTPMethodShim
-  def get(path, params = {})
-    super(path, params: params)
-  end
-  def post(path, params = {})
-    super(path, params: params)
-  end
+  def process(action, http_method = 'GET', **args)
+    if (as = args.delete(:as))
+      @request.headers['Content-Type'] = Mime[as].to_s
+    end
-  def put(path, params = {})
-    super(path, params: params)
+    super(action, http_method, args[:params], args[:session], args[:flash])
   end
 end
-if ::Rails::VERSION::MAJOR >= 5
+if ::Rails::VERSION::MAJOR < 5
   RSpec.configure do |config|
     config.include ControllerHTTPMethodShim, type: :controller
     config.include RoutingHTTPMethodShim, type: :request

data/spec/support/shared/controllers_shared_context.rb CHANGED Viewed

@@ -63,3 +63,59 @@ shared_context 'invalid authorization request' do
     allow(controller).to receive(:authorization) { authorization }
   end
 end
+shared_context 'expired token', token: :expired do
+  let :token_string do
+    '1A2B3C4DEXP'
+  end
+  let :token do
+    double(Doorkeeper::AccessToken,
+           accessible?: false, revoked?: false, expired?: true,
+           includes_scope?: false, acceptable?: false,
+           previous_refresh_token: "", revoke_previous_refresh_token!: true)
+  end
+  before :each do
+    allow(
+      Doorkeeper::AccessToken
+    ).to receive(:by_token).with(token_string).and_return(token)
+  end
+end
+shared_context 'revoked token', token: :revoked do
+  let :token_string do
+    '1A2B3C4DREV'
+  end
+  let :token do
+    double(Doorkeeper::AccessToken,
+           accessible?: false, revoked?: true, expired?: false,
+           includes_scope?: false, acceptable?: false,
+           previous_refresh_token: "", revoke_previous_refresh_token!: true)
+  end
+  before :each do
+    allow(
+      Doorkeeper::AccessToken
+    ).to receive(:by_token).with(token_string).and_return(token)
+  end
+end
+shared_context 'forbidden token', token: :forbidden do
+  let :token_string do
+    '1A2B3C4DFORB'
+  end
+  let :token do
+    double(Doorkeeper::AccessToken,
+           accessible?: true, includes_scope?: true, acceptable?: false,
+           previous_refresh_token: "", revoke_previous_refresh_token!: true)
+  end
+  before :each do
+    allow(
+      Doorkeeper::AccessToken
+    ).to receive(:by_token).with(token_string).and_return(token)
+  end
+end

data/spec/validators/redirect_uri_validator_spec.rb CHANGED Viewed

@@ -1,4 +1,4 @@
-require 'spec_helper_integration'
+require 'spec_helper'
 describe RedirectUriValidator do
   subject do
@@ -73,8 +73,8 @@ describe RedirectUriValidator do
     it 'accepts a non secured protocol when disabled' do
       subject.redirect_uri = 'http://example.com/callback'
       allow(Doorkeeper.configuration).to receive(
-                                             :force_ssl_in_redirect_uri
-                                         ).and_return(false)
+        :force_ssl_in_redirect_uri
+      ).and_return(false)
       expect(subject).to be_valid
     end
@@ -87,8 +87,14 @@ describe RedirectUriValidator do
       application = FactoryBot.build(:application, redirect_uri: 'http://localhost/callback')
       expect(application).to be_valid
+      application = FactoryBot.build(:application, redirect_uri: 'https://test.com/callback')
+      expect(application).to be_valid
       application = FactoryBot.build(:application, redirect_uri: 'http://localhost2/callback')
       expect(application).not_to be_valid
+      application = FactoryBot.build(:application, redirect_uri: 'https://test.com/callback')
+      expect(application).to be_valid
     end
     it 'forbids redirect uri if required' do

data/spec/version/version_spec.rb CHANGED Viewed

@@ -1,6 +1,6 @@
-require 'spec_helper_integration'
+require 'spec_helper'
-describe 'Doorkeeper version' do
+describe Doorkeeper::VERSION do
   context '#gem_version' do
     it 'returns Gem::Version instance' do
       expect(Doorkeeper.gem_version).to be_an_instance_of(Gem::Version)
@@ -9,7 +9,7 @@ describe 'Doorkeeper version' do
   context 'VERSION' do
     it 'returns gem version string' do
-      expect(Doorkeeper::VERSION::STRING).to match(/^\d+\.\d+\.\d+[.\w]?$/)
+      expect(Doorkeeper::VERSION::STRING).to match(/^\d+\.\d+\.\d+(\.\w+)?$/)
     end
   end
 end