RubyGems - doorkeeper - Versions diffs - 5.1.0.rc2 → 5.1.0 - Mend

doorkeeper 5.1.0.rc2 → 5.1.0

Potentially problematic release.

This version of doorkeeper might be problematic. Click here for more details.

Files changed (208) hide show

checksums.yaml +4 -4
data/.hound.yml +2 -1
data/.rubocop.yml +37 -4
data/.travis.yml +4 -27
data/Appraisals +8 -12
data/Gemfile +6 -2
data/NEWS.md +16 -0
data/README.md +11 -2
data/Rakefile +10 -8
data/app/controllers/doorkeeper/application_controller.rb +1 -2
data/app/controllers/doorkeeper/application_metal_controller.rb +2 -13
data/app/controllers/doorkeeper/applications_controller.rb +17 -5
data/app/controllers/doorkeeper/token_info_controller.rb +1 -1
data/app/controllers/doorkeeper/tokens_controller.rb +7 -7
data/app/helpers/doorkeeper/dashboard_helper.rb +1 -1
data/app/validators/redirect_uri_validator.rb +5 -2
data/app/views/doorkeeper/applications/_form.html.erb +6 -0
data/bin/console +5 -4
data/config/locales/en.yml +1 -0
data/doorkeeper.gemspec +24 -22
data/gemfiles/rails_5_0.gemfile +2 -1
data/gemfiles/rails_5_1.gemfile +2 -1
data/gemfiles/rails_5_2.gemfile +2 -1
data/gemfiles/rails_6_0.gemfile +1 -0
data/gemfiles/rails_master.gemfile +1 -0
data/lib/doorkeeper.rb +68 -66
data/lib/doorkeeper/config.rb +53 -90
data/lib/doorkeeper/config/option.rb +64 -0
data/lib/doorkeeper/engine.rb +1 -1
data/lib/doorkeeper/grape/authorization_decorator.rb +4 -4
data/lib/doorkeeper/grape/helpers.rb +3 -3
data/lib/doorkeeper/helpers/controller.rb +1 -1
data/lib/doorkeeper/models/access_grant_mixin.rb +4 -2
data/lib/doorkeeper/models/access_token_mixin.rb +10 -10
data/lib/doorkeeper/models/application_mixin.rb +1 -0
data/lib/doorkeeper/models/concerns/expirable.rb +1 -0
data/lib/doorkeeper/models/concerns/ownership.rb +1 -6
data/lib/doorkeeper/models/concerns/revocable.rb +2 -1
data/lib/doorkeeper/models/concerns/scopes.rb +1 -1
data/lib/doorkeeper/models/concerns/secret_storable.rb +2 -0
data/lib/doorkeeper/oauth.rb +5 -5
data/lib/doorkeeper/oauth/authorization/code.rb +1 -1
data/lib/doorkeeper/oauth/authorization/token.rb +9 -6
data/lib/doorkeeper/oauth/authorization/uri_builder.rb +1 -1
data/lib/doorkeeper/oauth/authorization_code_request.rb +5 -3
data/lib/doorkeeper/oauth/client_credentials/validation.rb +1 -1
data/lib/doorkeeper/oauth/client_credentials_request.rb +1 -1
data/lib/doorkeeper/oauth/error_response.rb +5 -5
data/lib/doorkeeper/oauth/forbidden_token_response.rb +1 -1
data/lib/doorkeeper/oauth/helpers/scope_checker.rb +1 -1
data/lib/doorkeeper/oauth/helpers/unique_token.rb +2 -1
data/lib/doorkeeper/oauth/helpers/uri_checker.rb +6 -2
data/lib/doorkeeper/oauth/invalid_token_response.rb +1 -1
data/lib/doorkeeper/oauth/pre_authorization.rb +4 -3
data/lib/doorkeeper/oauth/refresh_token_request.rb +1 -1
data/lib/doorkeeper/oauth/scopes.rb +5 -3
data/lib/doorkeeper/oauth/token.rb +2 -2
data/lib/doorkeeper/oauth/token_introspection.rb +4 -4
data/lib/doorkeeper/oauth/token_response.rb +9 -9
data/lib/doorkeeper/orm/active_record.rb +6 -6
data/lib/doorkeeper/orm/active_record/access_grant.rb +5 -12
data/lib/doorkeeper/orm/active_record/access_token.rb +6 -13
data/lib/doorkeeper/orm/active_record/application.rb +6 -5
data/lib/doorkeeper/orm/active_record/stale_records_cleaner.rb +10 -3
data/lib/doorkeeper/rails/helpers.rb +1 -1
data/lib/doorkeeper/rails/routes.rb +11 -11
data/lib/doorkeeper/rails/routes/mapping.rb +7 -7
data/lib/doorkeeper/rake.rb +1 -1
data/lib/doorkeeper/rake/db.rake +13 -13
data/lib/doorkeeper/request.rb +1 -1
data/lib/doorkeeper/secret_storing/base.rb +7 -6
data/lib/doorkeeper/secret_storing/bcrypt.rb +4 -3
data/lib/doorkeeper/secret_storing/plain.rb +4 -4
data/lib/doorkeeper/secret_storing/sha256_hash.rb +3 -2
data/lib/doorkeeper/stale_records_cleaner.rb +1 -1
data/lib/doorkeeper/version.rb +2 -2
data/lib/generators/doorkeeper/application_owner_generator.rb +10 -9
data/lib/generators/doorkeeper/confidential_applications_generator.rb +10 -9
data/lib/generators/doorkeeper/install_generator.rb +11 -9
data/lib/generators/doorkeeper/migration_generator.rb +9 -9
data/lib/generators/doorkeeper/pkce_generator.rb +10 -9
data/lib/generators/doorkeeper/previous_refresh_token_generator.rb +10 -9
data/lib/generators/doorkeeper/templates/initializer.rb +30 -5
data/lib/generators/doorkeeper/templates/migration.rb.erb +15 -7
data/lib/generators/doorkeeper/views_generator.rb +6 -4
data/spec/controllers/application_metal_controller_spec.rb +10 -10
data/spec/controllers/applications_controller_spec.rb +54 -52
data/spec/controllers/authorizations_controller_spec.rb +136 -142
data/spec/controllers/protected_resources_controller_spec.rb +78 -76
data/spec/controllers/token_info_controller_spec.rb +13 -11
data/spec/controllers/tokens_controller_spec.rb +109 -94
data/spec/dummy/Rakefile +3 -1
data/spec/dummy/app/controllers/application_controller.rb +2 -0
data/spec/dummy/app/controllers/custom_authorizations_controller.rb +2 -0
data/spec/dummy/app/controllers/full_protected_resources_controller.rb +4 -2
data/spec/dummy/app/controllers/home_controller.rb +5 -3
data/spec/dummy/app/controllers/metal_controller.rb +2 -0
data/spec/dummy/app/controllers/semi_protected_resources_controller.rb +4 -2
data/spec/dummy/app/helpers/application_helper.rb +2 -0
data/spec/dummy/app/models/user.rb +2 -0
data/spec/dummy/config.ru +3 -1
data/spec/dummy/config/application.rb +13 -0
data/spec/dummy/config/environments/development.rb +2 -0
data/spec/dummy/config/environments/production.rb +2 -0
data/spec/dummy/config/environments/test.rb +3 -1
data/spec/dummy/config/initializers/backtrace_silencers.rb +2 -0
data/spec/dummy/config/initializers/doorkeeper.rb +5 -2
data/spec/dummy/config/initializers/secret_token.rb +3 -1
data/spec/dummy/config/initializers/session_store.rb +3 -1
data/spec/dummy/config/initializers/wrap_parameters.rb +2 -0
data/spec/dummy/db/migrate/20151223192035_create_doorkeeper_tables.rb +17 -10
data/spec/dummy/db/migrate/20170822064514_enable_pkce.rb +2 -0
data/spec/dummy/db/schema.rb +1 -1
data/spec/dummy/script/rails +5 -3
data/spec/factories.rb +5 -3
data/spec/generators/application_owner_generator_spec.rb +13 -26
data/spec/generators/confidential_applications_generator_spec.rb +12 -28
data/spec/generators/install_generator_spec.rb +17 -15
data/spec/generators/migration_generator_spec.rb +13 -26
data/spec/generators/pkce_generator_spec.rb +11 -26
data/spec/generators/previous_refresh_token_generator_spec.rb +16 -29
data/spec/generators/templates/routes.rb +2 -0
data/spec/generators/views_generator_spec.rb +14 -12
data/spec/grape/grape_integration_spec.rb +34 -32
data/spec/helpers/doorkeeper/dashboard_helper_spec.rb +9 -7
data/spec/lib/config_spec.rb +137 -136
data/spec/lib/doorkeeper_spec.rb +3 -1
data/spec/lib/models/expirable_spec.rb +12 -10
data/spec/lib/models/reusable_spec.rb +6 -6
data/spec/lib/models/revocable_spec.rb +8 -6
data/spec/lib/models/scopes_spec.rb +19 -17
data/spec/lib/models/secret_storable_spec.rb +71 -49
data/spec/lib/oauth/authorization/uri_builder_spec.rb +17 -15
data/spec/lib/oauth/authorization_code_request_spec.rb +18 -12
data/spec/lib/oauth/base_request_spec.rb +20 -8
data/spec/lib/oauth/base_response_spec.rb +3 -1
data/spec/lib/oauth/client/credentials_spec.rb +24 -22
data/spec/lib/oauth/client_credentials/creator_spec.rb +13 -11
data/spec/lib/oauth/client_credentials/issuer_spec.rb +27 -18
data/spec/lib/oauth/client_credentials/validation_spec.rb +17 -15
data/spec/lib/oauth/client_credentials_integration_spec.rb +7 -5
data/spec/lib/oauth/client_credentials_request_spec.rb +27 -21
data/spec/lib/oauth/client_spec.rb +15 -13
data/spec/lib/oauth/code_request_spec.rb +8 -6
data/spec/lib/oauth/code_response_spec.rb +9 -7
data/spec/lib/oauth/error_response_spec.rb +14 -12
data/spec/lib/oauth/error_spec.rb +4 -2
data/spec/lib/oauth/forbidden_token_response_spec.rb +7 -5
data/spec/lib/oauth/helpers/scope_checker_spec.rb +35 -33
data/spec/lib/oauth/helpers/unique_token_spec.rb +8 -6
data/spec/lib/oauth/helpers/uri_checker_spec.rb +103 -101
data/spec/lib/oauth/invalid_token_response_spec.rb +3 -1
data/spec/lib/oauth/password_access_token_request_spec.rb +52 -34
data/spec/lib/oauth/pre_authorization_spec.rb +64 -62
data/spec/lib/oauth/refresh_token_request_spec.rb +36 -33
data/spec/lib/oauth/scopes_spec.rb +63 -61
data/spec/lib/oauth/token_request_spec.rb +66 -26
data/spec/lib/oauth/token_response_spec.rb +39 -37
data/spec/lib/oauth/token_spec.rb +51 -49
data/spec/lib/request/strategy_spec.rb +3 -1
data/spec/lib/secret_storing/base_spec.rb +23 -23
data/spec/lib/secret_storing/bcrypt_spec.rb +18 -18
data/spec/lib/secret_storing/plain_spec.rb +17 -17
data/spec/lib/secret_storing/sha256_hash_spec.rb +16 -16
data/spec/lib/server_spec.rb +16 -14
data/spec/lib/stale_records_cleaner_spec.rb +17 -17
data/spec/models/doorkeeper/access_grant_spec.rb +30 -26
data/spec/models/doorkeeper/access_token_spec.rb +97 -95
data/spec/models/doorkeeper/application_spec.rb +98 -57
data/spec/requests/applications/applications_request_spec.rb +98 -66
data/spec/requests/applications/authorized_applications_spec.rb +20 -18
data/spec/requests/endpoints/authorization_spec.rb +25 -23
data/spec/requests/endpoints/token_spec.rb +38 -36
data/spec/requests/flows/authorization_code_errors_spec.rb +26 -24
data/spec/requests/flows/authorization_code_spec.rb +161 -159
data/spec/requests/flows/client_credentials_spec.rb +53 -51
data/spec/requests/flows/implicit_grant_errors_spec.rb +10 -8
data/spec/requests/flows/implicit_grant_spec.rb +27 -25
data/spec/requests/flows/password_spec.rb +56 -54
data/spec/requests/flows/refresh_token_spec.rb +45 -43
data/spec/requests/flows/revoke_token_spec.rb +29 -27
data/spec/requests/flows/skip_authorization_spec.rb +23 -21
data/spec/requests/protected_resources/metal_spec.rb +7 -5
data/spec/requests/protected_resources/private_api_spec.rb +35 -33
data/spec/routing/custom_controller_routes_spec.rb +67 -65
data/spec/routing/default_routes_spec.rb +22 -20
data/spec/routing/scoped_routes_spec.rb +20 -18
data/spec/spec_helper.rb +14 -13
data/spec/spec_helper_integration.rb +3 -1
data/spec/support/dependencies/factory_bot.rb +3 -1
data/spec/support/doorkeeper_rspec.rb +3 -1
data/spec/support/helpers/access_token_request_helper.rb +3 -1
data/spec/support/helpers/authorization_request_helper.rb +4 -2
data/spec/support/helpers/config_helper.rb +2 -0
data/spec/support/helpers/model_helper.rb +3 -1
data/spec/support/helpers/request_spec_helper.rb +5 -3
data/spec/support/helpers/url_helper.rb +9 -7
data/spec/support/http_method_shim.rb +4 -9
data/spec/support/orm/active_record.rb +3 -1
data/spec/support/shared/controllers_shared_context.rb +18 -16
data/spec/support/shared/hashing_shared_context.rb +3 -3
data/spec/support/shared/models_shared_examples.rb +12 -10
data/spec/validators/redirect_uri_validator_spec.rb +74 -45
data/spec/version/version_spec.rb +7 -5
metadata +12 -16
data/gemfiles/rails_4_2.gemfile +0 -17
data/spec/dummy/config/initializers/new_framework_defaults.rb +0 -8
data/spec/support/ruby_2_6_rails_4_2_patch.rb +0 -14

data/spec/lib/oauth/authorization_code_request_spec.rb CHANGED

@@ -1,4 +1,6 @@
-require 'spec_helper'
+# frozen_string_literal: true
+require "spec_helper"
 module Doorkeeper::OAuth
   describe AuthorizationCodeRequest do
@@ -16,11 +18,15 @@ module Doorkeeper::OAuth
     let(:redirect_uri) { client.redirect_uri }
     let(:params) { { redirect_uri: redirect_uri } }
+    before do
+      allow(server).to receive(:option_defined?).with(:custom_access_token_expires_in).and_return(true)
+    end
     subject do
       AuthorizationCodeRequest.new server, grant, client, params
     end
-    it 'issues a new token for the client' do
+    it "issues a new token for the client" do
       expect do
         subject.authorize
       end.to change { client.reload.access_tokens.count }.by(1)
@@ -33,36 +39,36 @@ module Doorkeeper::OAuth
       expect(Doorkeeper::AccessToken.last.scopes).to eq(grant.scopes)
     end
-    it 'revokes the grant' do
+    it "revokes the grant" do
       expect { subject.authorize }.to(change { grant.reload.accessible? })
     end
-    it 'requires the grant to be accessible' do
+    it "requires the grant to be accessible" do
       grant.revoke
       subject.validate
       expect(subject.error).to eq(:invalid_grant)
     end
-    it 'requires the grant' do
+    it "requires the grant" do
       subject.grant = nil
       subject.validate
       expect(subject.error).to eq(:invalid_grant)
     end
-    it 'requires the client' do
+    it "requires the client" do
       subject.client = nil
       subject.validate
       expect(subject.error).to eq(:invalid_client)
     end
-    it 'requires the redirect_uri' do
+    it "requires the redirect_uri" do
       subject.redirect_uri = nil
       subject.validate
       expect(subject.error).to eq(:invalid_request)
     end
     it "matches the redirect_uri with grant's one" do
-      subject.redirect_uri = 'http://other.com'
+      subject.redirect_uri = "http://other.com"
       subject.validate
       expect(subject.error).to eq(:invalid_grant)
     end
@@ -73,7 +79,7 @@ module Doorkeeper::OAuth
       expect(subject.error).to eq(:invalid_grant)
     end
-    it 'skips token creation if there is a matching one reusable' do
+    it "skips token creation if there is a matching one reusable" do
       scopes = grant.scopes
       Doorkeeper.configure do
@@ -88,7 +94,7 @@ module Doorkeeper::OAuth
       expect { subject.authorize }.to_not(change { Doorkeeper::AccessToken.count })
     end
-    it 'creates token if there is a matching one but non reusable' do
+    it "creates token if there is a matching one but non reusable" do
       scopes = grant.scopes
       Doorkeeper.configure do
@@ -124,7 +130,7 @@ module Doorkeeper::OAuth
     end
     context "when redirect_uri is not an URI" do
-      let(:redirect_uri) { '123d#!s' }
+      let(:redirect_uri) { "123d#!s" }
       it "responds with invalid_grant" do
         subject.validate
@@ -133,7 +139,7 @@ module Doorkeeper::OAuth
     end
     context "when redirect_uri is the native one" do
-      let(:redirect_uri) { 'urn:ietf:wg:oauth:2.0:oob' }
+      let(:redirect_uri) { "urn:ietf:wg:oauth:2.0:oob" }
       it "invalidates when redirect_uri of the grant is not native" do
         subject.validate

data/spec/lib/oauth/base_request_spec.rb CHANGED

@@ -1,19 +1,21 @@
-require 'spec_helper'
+# frozen_string_literal: true
+require "spec_helper"
 module Doorkeeper::OAuth
   describe BaseRequest do
     let(:access_token) do
       double :access_token,
-             plaintext_token:         "some-token",
-             expires_in:              "3600",
-             expires_in_seconds:      "300",
-             scopes_string:           "two scopes",
+             plaintext_token: "some-token",
+             expires_in: "3600",
+             expires_in_seconds: "300",
+             scopes_string: "two scopes",
              plaintext_refresh_token: "some-refresh-token",
-             token_type:              "bearer",
-             created_at:              0
+             token_type: "bearer",
+             created_at: 0
     end
-    let(:client) { double :client, id: '1' }
+    let(:client) { double :client, id: "1" }
     let(:scopes_array) { %w[public write] }
@@ -24,6 +26,10 @@ module Doorkeeper::OAuth
              refresh_token_enabled?: false
     end
+    before do
+      allow(server).to receive(:option_defined?).with(:custom_access_token_expires_in).and_return(true)
+    end
     subject do
       BaseRequest.new
     end
@@ -111,6 +117,9 @@ module Doorkeeper::OAuth
                         access_token_expires_in: 100,
                         custom_access_token_expires_in: ->(context) { context.scopes == "public" ? 500 : nil },
                         refresh_token_enabled?: false)
+        allow(server).to receive(:option_defined?).with(:custom_access_token_expires_in).and_return(true)
         result = subject.find_or_create_access_token(
           client,
           "1",
@@ -127,6 +136,9 @@ module Doorkeeper::OAuth
                         refresh_token_enabled?: lambda { |context|
                           context.scopes == "public"
                         })
+        allow(server).to receive(:option_defined?).with(:custom_access_token_expires_in).and_return(true)
         result = subject.find_or_create_access_token(
           client,
           "1",

data/spec/lib/oauth/base_response_spec.rb CHANGED

@@ -1,4 +1,6 @@
-require 'spec_helper'
+# frozen_string_literal: true
+require "spec_helper"
 module Doorkeeper::OAuth
   describe BaseResponse do

data/spec/lib/oauth/client/credentials_spec.rb CHANGED

@@ -1,15 +1,17 @@
-require 'spec_helper'
+# frozen_string_literal: true
+require "spec_helper"
 class Doorkeeper::OAuth::Client
   describe Credentials do
-    let(:client_id) { 'some-uid' }
-    let(:client_secret) { 'some-secret' }
+    let(:client_id) { "some-uid" }
+    let(:client_secret) { "some-secret" }
-    it 'is blank when the uid in credentials is blank' do
+    it "is blank when the uid in credentials is blank" do
       expect(Credentials.new(nil, nil)).to be_blank
-      expect(Credentials.new(nil, 'something')).to be_blank
-      expect(Credentials.new('something', nil)).to be_present
-      expect(Credentials.new('something', 'something')).to be_present
+      expect(Credentials.new(nil, "something")).to be_blank
+      expect(Credentials.new("something", nil)).to be_present
+      expect(Credentials.new("something", "something")).to be_present
     end
     describe :from_request do
@@ -19,44 +21,44 @@ class Doorkeeper::OAuth::Client
         ->(_request) { %w[uid secret] }
       end
-      it 'accepts anything that responds to #call' do
+      it "accepts anything that responds to #call" do
         expect(method).to receive(:call).with(request)
         Credentials.from_request request, method
       end
-      it 'delegates methods received as symbols to Credentials class' do
+      it "delegates methods received as symbols to Credentials class" do
         expect(Credentials).to receive(:from_params).with(request)
         Credentials.from_request request, :from_params
       end
-      it 'stops at the first credentials found' do
+      it "stops at the first credentials found" do
         not_called_method = double
         expect(not_called_method).not_to receive(:call)
         Credentials.from_request request, ->(_) {}, method, not_called_method
       end
-      it 'returns new Credentials' do
+      it "returns new Credentials" do
         credentials = Credentials.from_request request, method
         expect(credentials).to be_a(Credentials)
       end
-      it 'returns uid and secret from extractor method' do
+      it "returns uid and secret from extractor method" do
         credentials = Credentials.from_request request, method
-        expect(credentials.uid).to    eq('uid')
-        expect(credentials.secret).to eq('secret')
+        expect(credentials.uid).to    eq("uid")
+        expect(credentials.secret).to eq("secret")
       end
     end
     describe :from_params do
-      it 'returns credentials from parameters when Authorization header is not available' do
+      it "returns credentials from parameters when Authorization header is not available" do
         request     = double parameters: { client_id: client_id, client_secret: client_secret }
         uid, secret = Credentials.from_params(request)
-        expect(uid).to    eq('some-uid')
-        expect(secret).to eq('some-secret')
+        expect(uid).to    eq("some-uid")
+        expect(secret).to eq("some-secret")
       end
-      it 'is blank when there are no credentials' do
+      it "is blank when there are no credentials" do
         request     = double parameters: {}
         uid, secret = Credentials.from_params(request)
@@ -68,15 +70,15 @@ class Doorkeeper::OAuth::Client
     describe :from_basic do
       let(:credentials) { Base64.encode64("#{client_id}:#{client_secret}") }
-      it 'decodes the credentials' do
+      it "decodes the credentials" do
         request     = double authorization: "Basic #{credentials}"
         uid, secret = Credentials.from_basic(request)
-        expect(uid).to    eq('some-uid')
-        expect(secret).to eq('some-secret')
+        expect(uid).to    eq("some-uid")
+        expect(secret).to eq("some-secret")
       end
-      it 'is blank if Authorization is not Basic' do
+      it "is blank if Authorization is not Basic" do
         request     = double authorization: credentials.to_s
         uid, secret = Credentials.from_basic(request)

data/spec/lib/oauth/client_credentials/creator_spec.rb CHANGED

@@ -1,23 +1,25 @@
-require 'spec_helper'
+# frozen_string_literal: true
+require "spec_helper"
 class Doorkeeper::OAuth::ClientCredentialsRequest
   describe Creator do
     let(:client) { FactoryBot.create :application }
-    let(:scopes) { Doorkeeper::OAuth::Scopes.from_string('public') }
+    let(:scopes) { Doorkeeper::OAuth::Scopes.from_string("public") }
     before do
       default_scopes_exist :public
     end
-    it 'creates a new token' do
+    it "creates a new token" do
       expect do
         subject.call(client, scopes)
       end.to change { Doorkeeper::AccessToken.count }.by(1)
     end
-    context 'when reuse_access_token is true' do
-      context 'when expiration is disabled' do
-        it 'returns the existing valid token' do
+    context "when reuse_access_token is true" do
+      context "when expiration is disabled" do
+        it "returns the existing valid token" do
           allow(Doorkeeper.configuration).to receive(:reuse_access_token).and_return(true)
           existing_token = subject.call(client, scopes)
@@ -28,8 +30,8 @@ class Doorkeeper::OAuth::ClientCredentialsRequest
         end
       end
-      context 'when existing token has not crossed token_reuse_limit' do
-        it 'returns the existing valid token' do
+      context "when existing token has not crossed token_reuse_limit" do
+        it "returns the existing valid token" do
           allow(Doorkeeper.configuration).to receive(:reuse_access_token).and_return(true)
           allow(Doorkeeper.configuration).to receive(:token_reuse_limit).and_return(50)
           existing_token = subject.call(client, scopes, expires_in: 1000)
@@ -42,7 +44,7 @@ class Doorkeeper::OAuth::ClientCredentialsRequest
         end
       end
-      context 'when existing token has crossed token_reuse_limit' do
+      context "when existing token has crossed token_reuse_limit" do
         it "returns a new token" do
           allow(Doorkeeper.configuration).to receive(:reuse_access_token).and_return(true)
           allow(Doorkeeper.configuration).to receive(:token_reuse_limit).and_return(50)
@@ -56,7 +58,7 @@ class Doorkeeper::OAuth::ClientCredentialsRequest
         end
       end
-      context 'when existing token has been expired' do
+      context "when existing token has been expired" do
         it "returns a new token" do
           allow(Doorkeeper.configuration).to receive(:reuse_access_token).and_return(true)
           allow(Doorkeeper.configuration).to receive(:token_reuse_limit).and_return(50)
@@ -83,7 +85,7 @@ class Doorkeeper::OAuth::ClientCredentialsRequest
       end
     end
-    it 'returns false if creation fails' do
+    it "returns false if creation fails" do
       expect(Doorkeeper::AccessToken).to receive(:find_or_create_for).and_return(false)
       created = subject.call(client, scopes)
       expect(created).to be_falsey

data/spec/lib/oauth/client_credentials/issuer_spec.rb CHANGED

@@ -1,31 +1,36 @@
-require 'spec_helper'
+# frozen_string_literal: true
+require "spec_helper"
 class Doorkeeper::OAuth::ClientCredentialsRequest
   describe Issuer do
-    let(:creator) { double :acces_token_creator }
+    let(:creator) { double :access_token_creator }
     let(:server) do
       double(
         :server,
-        access_token_expires_in: 100,
-        custom_access_token_expires_in: ->(_context) { nil }
+        access_token_expires_in: 100
       )
     end
     let(:validation) { double :validation, valid?: true }
+    before do
+      allow(server).to receive(:option_defined?).with(:custom_access_token_expires_in).and_return(false)
+    end
     subject { Issuer.new(server, validation) }
     describe :create do
-      let(:client) { double :client, id: 'some-id' }
-      let(:scopes) { 'some scope' }
+      let(:client) { double :client, id: "some-id" }
+      let(:scopes) { "some scope" }
-      it 'creates and sets the token' do
-        expect(creator).to receive(:call).and_return('token')
+      it "creates and sets the token" do
+        expect(creator).to receive(:call).and_return("token")
         subject.create client, scopes, creator
-        expect(subject.token).to eq('token')
+        expect(subject.token).to eq("token")
       end
-      it 'creates with correct token parameters' do
+      it "creates with correct token parameters" do
         expect(creator).to receive(:call).with(
           client,
           scopes,
@@ -36,34 +41,34 @@ class Doorkeeper::OAuth::ClientCredentialsRequest
         subject.create client, scopes, creator
       end
-      it 'has error set to :server_error if creator fails' do
+      it "has error set to :server_error if creator fails" do
         expect(creator).to receive(:call).and_return(false)
         subject.create client, scopes, creator
         expect(subject.error).to eq(:server_error)
       end
-      context 'when validation fails' do
+      context "when validation fails" do
         before do
           allow(validation).to receive(:valid?).and_return(false)
           allow(validation).to receive(:error).and_return(:validation_error)
           expect(creator).not_to receive(:create)
         end
-        it 'has error set from validation' do
+        it "has error set from validation" do
           subject.create client, scopes, creator
           expect(subject.error).to eq(:validation_error)
         end
-        it 'returns false' do
+        it "returns false" do
           expect(subject.create(client, scopes, creator)).to be_falsey
         end
       end
-      context 'with custom expirations' do
+      context "with custom expirations" do
         let(:custom_ttl_grant) { 1234 }
         let(:custom_ttl_scope) { 1235 }
-        let(:custom_scope) { 'special' }
+        let(:custom_scope) { "special" }
         let(:server) do
           double(
             :server,
@@ -78,7 +83,11 @@ class Doorkeeper::OAuth::ClientCredentialsRequest
           )
         end
-        it 'respects grant based rules' do
+        before do
+          allow(server).to receive(:option_defined?).with(:custom_access_token_expires_in).and_return(true)
+        end
+        it "respects grant based rules" do
           expect(creator).to receive(:call).with(
             client,
             scopes,
@@ -88,7 +97,7 @@ class Doorkeeper::OAuth::ClientCredentialsRequest
           subject.create client, scopes, creator
         end
-        it 'respects scope based rules' do
+        it "respects scope based rules" do
           expect(creator).to receive(:call).with(
             client,
             custom_scope,

data/spec/lib/oauth/client_credentials/validation_spec.rb CHANGED

@@ -1,4 +1,6 @@
-require 'spec_helper'
+# frozen_string_literal: true
+require "spec_helper"
 class Doorkeeper::OAuth::ClientCredentialsRequest
   describe Validation do
@@ -9,30 +11,30 @@ class Doorkeeper::OAuth::ClientCredentialsRequest
     subject { Validation.new(server, request) }
-    it 'is valid with valid request' do
+    it "is valid with valid request" do
       expect(subject).to be_valid
     end
-    it 'is invalid when client is not present' do
+    it "is invalid when client is not present" do
       allow(request).to receive(:client).and_return(nil)
       expect(subject).not_to be_valid
     end
-    context 'with scopes' do
-      it 'is invalid when scopes are not included in the server' do
-        server_scopes = Doorkeeper::OAuth::Scopes.from_string 'email'
+    context "with scopes" do
+      it "is invalid when scopes are not included in the server" do
+        server_scopes = Doorkeeper::OAuth::Scopes.from_string "email"
         allow(request).to receive(:grant_type).and_return(Doorkeeper::OAuth::CLIENT_CREDENTIALS)
         allow(server).to receive(:scopes).and_return(server_scopes)
         allow(request).to receive(:scopes).and_return(
-          Doorkeeper::OAuth::Scopes.from_string('invalid')
+          Doorkeeper::OAuth::Scopes.from_string("invalid")
         )
         expect(subject).not_to be_valid
       end
-      context 'with application scopes' do
-        it 'is valid when scopes are included in the application' do
-          application_scopes = Doorkeeper::OAuth::Scopes.from_string 'app'
-          server_scopes = Doorkeeper::OAuth::Scopes.from_string 'email app'
+      context "with application scopes" do
+        it "is valid when scopes are included in the application" do
+          application_scopes = Doorkeeper::OAuth::Scopes.from_string "app"
+          server_scopes = Doorkeeper::OAuth::Scopes.from_string "email app"
           allow(application).to receive(:scopes).and_return(application_scopes)
           allow(server).to receive(:scopes).and_return(server_scopes)
           allow(request).to receive(:grant_type).and_return(Doorkeeper::OAuth::CLIENT_CREDENTIALS)
@@ -40,14 +42,14 @@ class Doorkeeper::OAuth::ClientCredentialsRequest
           expect(subject).to be_valid
         end
-        it 'is invalid when scopes are not included in the application' do
-          application_scopes = Doorkeeper::OAuth::Scopes.from_string 'app'
-          server_scopes = Doorkeeper::OAuth::Scopes.from_string 'email app'
+        it "is invalid when scopes are not included in the application" do
+          application_scopes = Doorkeeper::OAuth::Scopes.from_string "app"
+          server_scopes = Doorkeeper::OAuth::Scopes.from_string "email app"
           allow(application).to receive(:scopes).and_return(application_scopes)
           allow(request).to receive(:grant_type).and_return(Doorkeeper::OAuth::CLIENT_CREDENTIALS)
           allow(server).to receive(:scopes).and_return(server_scopes)
           allow(request).to receive(:scopes).and_return(
-            Doorkeeper::OAuth::Scopes.from_string('email')
+            Doorkeeper::OAuth::Scopes.from_string("email")
           )
           expect(subject).not_to be_valid
         end