RubyGems - doorkeeper - Versions diffs - 5.1.0.rc2 → 5.1.0 - Mend

doorkeeper 5.1.0.rc2 → 5.1.0

Potentially problematic release.

This version of doorkeeper might be problematic. Click here for more details.

Files changed (208) hide show

checksums.yaml +4 -4
data/.hound.yml +2 -1
data/.rubocop.yml +37 -4
data/.travis.yml +4 -27
data/Appraisals +8 -12
data/Gemfile +6 -2
data/NEWS.md +16 -0
data/README.md +11 -2
data/Rakefile +10 -8
data/app/controllers/doorkeeper/application_controller.rb +1 -2
data/app/controllers/doorkeeper/application_metal_controller.rb +2 -13
data/app/controllers/doorkeeper/applications_controller.rb +17 -5
data/app/controllers/doorkeeper/token_info_controller.rb +1 -1
data/app/controllers/doorkeeper/tokens_controller.rb +7 -7
data/app/helpers/doorkeeper/dashboard_helper.rb +1 -1
data/app/validators/redirect_uri_validator.rb +5 -2
data/app/views/doorkeeper/applications/_form.html.erb +6 -0
data/bin/console +5 -4
data/config/locales/en.yml +1 -0
data/doorkeeper.gemspec +24 -22
data/gemfiles/rails_5_0.gemfile +2 -1
data/gemfiles/rails_5_1.gemfile +2 -1
data/gemfiles/rails_5_2.gemfile +2 -1
data/gemfiles/rails_6_0.gemfile +1 -0
data/gemfiles/rails_master.gemfile +1 -0
data/lib/doorkeeper.rb +68 -66
data/lib/doorkeeper/config.rb +53 -90
data/lib/doorkeeper/config/option.rb +64 -0
data/lib/doorkeeper/engine.rb +1 -1
data/lib/doorkeeper/grape/authorization_decorator.rb +4 -4
data/lib/doorkeeper/grape/helpers.rb +3 -3
data/lib/doorkeeper/helpers/controller.rb +1 -1
data/lib/doorkeeper/models/access_grant_mixin.rb +4 -2
data/lib/doorkeeper/models/access_token_mixin.rb +10 -10
data/lib/doorkeeper/models/application_mixin.rb +1 -0
data/lib/doorkeeper/models/concerns/expirable.rb +1 -0
data/lib/doorkeeper/models/concerns/ownership.rb +1 -6
data/lib/doorkeeper/models/concerns/revocable.rb +2 -1
data/lib/doorkeeper/models/concerns/scopes.rb +1 -1
data/lib/doorkeeper/models/concerns/secret_storable.rb +2 -0
data/lib/doorkeeper/oauth.rb +5 -5
data/lib/doorkeeper/oauth/authorization/code.rb +1 -1
data/lib/doorkeeper/oauth/authorization/token.rb +9 -6
data/lib/doorkeeper/oauth/authorization/uri_builder.rb +1 -1
data/lib/doorkeeper/oauth/authorization_code_request.rb +5 -3
data/lib/doorkeeper/oauth/client_credentials/validation.rb +1 -1
data/lib/doorkeeper/oauth/client_credentials_request.rb +1 -1
data/lib/doorkeeper/oauth/error_response.rb +5 -5
data/lib/doorkeeper/oauth/forbidden_token_response.rb +1 -1
data/lib/doorkeeper/oauth/helpers/scope_checker.rb +1 -1
data/lib/doorkeeper/oauth/helpers/unique_token.rb +2 -1
data/lib/doorkeeper/oauth/helpers/uri_checker.rb +6 -2
data/lib/doorkeeper/oauth/invalid_token_response.rb +1 -1
data/lib/doorkeeper/oauth/pre_authorization.rb +4 -3
data/lib/doorkeeper/oauth/refresh_token_request.rb +1 -1
data/lib/doorkeeper/oauth/scopes.rb +5 -3
data/lib/doorkeeper/oauth/token.rb +2 -2
data/lib/doorkeeper/oauth/token_introspection.rb +4 -4
data/lib/doorkeeper/oauth/token_response.rb +9 -9
data/lib/doorkeeper/orm/active_record.rb +6 -6
data/lib/doorkeeper/orm/active_record/access_grant.rb +5 -12
data/lib/doorkeeper/orm/active_record/access_token.rb +6 -13
data/lib/doorkeeper/orm/active_record/application.rb +6 -5
data/lib/doorkeeper/orm/active_record/stale_records_cleaner.rb +10 -3
data/lib/doorkeeper/rails/helpers.rb +1 -1
data/lib/doorkeeper/rails/routes.rb +11 -11
data/lib/doorkeeper/rails/routes/mapping.rb +7 -7
data/lib/doorkeeper/rake.rb +1 -1
data/lib/doorkeeper/rake/db.rake +13 -13
data/lib/doorkeeper/request.rb +1 -1
data/lib/doorkeeper/secret_storing/base.rb +7 -6
data/lib/doorkeeper/secret_storing/bcrypt.rb +4 -3
data/lib/doorkeeper/secret_storing/plain.rb +4 -4
data/lib/doorkeeper/secret_storing/sha256_hash.rb +3 -2
data/lib/doorkeeper/stale_records_cleaner.rb +1 -1
data/lib/doorkeeper/version.rb +2 -2
data/lib/generators/doorkeeper/application_owner_generator.rb +10 -9
data/lib/generators/doorkeeper/confidential_applications_generator.rb +10 -9
data/lib/generators/doorkeeper/install_generator.rb +11 -9
data/lib/generators/doorkeeper/migration_generator.rb +9 -9
data/lib/generators/doorkeeper/pkce_generator.rb +10 -9
data/lib/generators/doorkeeper/previous_refresh_token_generator.rb +10 -9
data/lib/generators/doorkeeper/templates/initializer.rb +30 -5
data/lib/generators/doorkeeper/templates/migration.rb.erb +15 -7
data/lib/generators/doorkeeper/views_generator.rb +6 -4
data/spec/controllers/application_metal_controller_spec.rb +10 -10
data/spec/controllers/applications_controller_spec.rb +54 -52
data/spec/controllers/authorizations_controller_spec.rb +136 -142
data/spec/controllers/protected_resources_controller_spec.rb +78 -76
data/spec/controllers/token_info_controller_spec.rb +13 -11
data/spec/controllers/tokens_controller_spec.rb +109 -94
data/spec/dummy/Rakefile +3 -1
data/spec/dummy/app/controllers/application_controller.rb +2 -0
data/spec/dummy/app/controllers/custom_authorizations_controller.rb +2 -0
data/spec/dummy/app/controllers/full_protected_resources_controller.rb +4 -2
data/spec/dummy/app/controllers/home_controller.rb +5 -3
data/spec/dummy/app/controllers/metal_controller.rb +2 -0
data/spec/dummy/app/controllers/semi_protected_resources_controller.rb +4 -2
data/spec/dummy/app/helpers/application_helper.rb +2 -0
data/spec/dummy/app/models/user.rb +2 -0
data/spec/dummy/config.ru +3 -1
data/spec/dummy/config/application.rb +13 -0
data/spec/dummy/config/environments/development.rb +2 -0
data/spec/dummy/config/environments/production.rb +2 -0
data/spec/dummy/config/environments/test.rb +3 -1
data/spec/dummy/config/initializers/backtrace_silencers.rb +2 -0
data/spec/dummy/config/initializers/doorkeeper.rb +5 -2
data/spec/dummy/config/initializers/secret_token.rb +3 -1
data/spec/dummy/config/initializers/session_store.rb +3 -1
data/spec/dummy/config/initializers/wrap_parameters.rb +2 -0
data/spec/dummy/db/migrate/20151223192035_create_doorkeeper_tables.rb +17 -10
data/spec/dummy/db/migrate/20170822064514_enable_pkce.rb +2 -0
data/spec/dummy/db/schema.rb +1 -1
data/spec/dummy/script/rails +5 -3
data/spec/factories.rb +5 -3
data/spec/generators/application_owner_generator_spec.rb +13 -26
data/spec/generators/confidential_applications_generator_spec.rb +12 -28
data/spec/generators/install_generator_spec.rb +17 -15
data/spec/generators/migration_generator_spec.rb +13 -26
data/spec/generators/pkce_generator_spec.rb +11 -26
data/spec/generators/previous_refresh_token_generator_spec.rb +16 -29
data/spec/generators/templates/routes.rb +2 -0
data/spec/generators/views_generator_spec.rb +14 -12
data/spec/grape/grape_integration_spec.rb +34 -32
data/spec/helpers/doorkeeper/dashboard_helper_spec.rb +9 -7
data/spec/lib/config_spec.rb +137 -136
data/spec/lib/doorkeeper_spec.rb +3 -1
data/spec/lib/models/expirable_spec.rb +12 -10
data/spec/lib/models/reusable_spec.rb +6 -6
data/spec/lib/models/revocable_spec.rb +8 -6
data/spec/lib/models/scopes_spec.rb +19 -17
data/spec/lib/models/secret_storable_spec.rb +71 -49
data/spec/lib/oauth/authorization/uri_builder_spec.rb +17 -15
data/spec/lib/oauth/authorization_code_request_spec.rb +18 -12
data/spec/lib/oauth/base_request_spec.rb +20 -8
data/spec/lib/oauth/base_response_spec.rb +3 -1
data/spec/lib/oauth/client/credentials_spec.rb +24 -22
data/spec/lib/oauth/client_credentials/creator_spec.rb +13 -11
data/spec/lib/oauth/client_credentials/issuer_spec.rb +27 -18
data/spec/lib/oauth/client_credentials/validation_spec.rb +17 -15
data/spec/lib/oauth/client_credentials_integration_spec.rb +7 -5
data/spec/lib/oauth/client_credentials_request_spec.rb +27 -21
data/spec/lib/oauth/client_spec.rb +15 -13
data/spec/lib/oauth/code_request_spec.rb +8 -6
data/spec/lib/oauth/code_response_spec.rb +9 -7
data/spec/lib/oauth/error_response_spec.rb +14 -12
data/spec/lib/oauth/error_spec.rb +4 -2
data/spec/lib/oauth/forbidden_token_response_spec.rb +7 -5
data/spec/lib/oauth/helpers/scope_checker_spec.rb +35 -33
data/spec/lib/oauth/helpers/unique_token_spec.rb +8 -6
data/spec/lib/oauth/helpers/uri_checker_spec.rb +103 -101
data/spec/lib/oauth/invalid_token_response_spec.rb +3 -1
data/spec/lib/oauth/password_access_token_request_spec.rb +52 -34
data/spec/lib/oauth/pre_authorization_spec.rb +64 -62
data/spec/lib/oauth/refresh_token_request_spec.rb +36 -33
data/spec/lib/oauth/scopes_spec.rb +63 -61
data/spec/lib/oauth/token_request_spec.rb +66 -26
data/spec/lib/oauth/token_response_spec.rb +39 -37
data/spec/lib/oauth/token_spec.rb +51 -49
data/spec/lib/request/strategy_spec.rb +3 -1
data/spec/lib/secret_storing/base_spec.rb +23 -23
data/spec/lib/secret_storing/bcrypt_spec.rb +18 -18
data/spec/lib/secret_storing/plain_spec.rb +17 -17
data/spec/lib/secret_storing/sha256_hash_spec.rb +16 -16
data/spec/lib/server_spec.rb +16 -14
data/spec/lib/stale_records_cleaner_spec.rb +17 -17
data/spec/models/doorkeeper/access_grant_spec.rb +30 -26
data/spec/models/doorkeeper/access_token_spec.rb +97 -95
data/spec/models/doorkeeper/application_spec.rb +98 -57
data/spec/requests/applications/applications_request_spec.rb +98 -66
data/spec/requests/applications/authorized_applications_spec.rb +20 -18
data/spec/requests/endpoints/authorization_spec.rb +25 -23
data/spec/requests/endpoints/token_spec.rb +38 -36
data/spec/requests/flows/authorization_code_errors_spec.rb +26 -24
data/spec/requests/flows/authorization_code_spec.rb +161 -159
data/spec/requests/flows/client_credentials_spec.rb +53 -51
data/spec/requests/flows/implicit_grant_errors_spec.rb +10 -8
data/spec/requests/flows/implicit_grant_spec.rb +27 -25
data/spec/requests/flows/password_spec.rb +56 -54
data/spec/requests/flows/refresh_token_spec.rb +45 -43
data/spec/requests/flows/revoke_token_spec.rb +29 -27
data/spec/requests/flows/skip_authorization_spec.rb +23 -21
data/spec/requests/protected_resources/metal_spec.rb +7 -5
data/spec/requests/protected_resources/private_api_spec.rb +35 -33
data/spec/routing/custom_controller_routes_spec.rb +67 -65
data/spec/routing/default_routes_spec.rb +22 -20
data/spec/routing/scoped_routes_spec.rb +20 -18
data/spec/spec_helper.rb +14 -13
data/spec/spec_helper_integration.rb +3 -1
data/spec/support/dependencies/factory_bot.rb +3 -1
data/spec/support/doorkeeper_rspec.rb +3 -1
data/spec/support/helpers/access_token_request_helper.rb +3 -1
data/spec/support/helpers/authorization_request_helper.rb +4 -2
data/spec/support/helpers/config_helper.rb +2 -0
data/spec/support/helpers/model_helper.rb +3 -1
data/spec/support/helpers/request_spec_helper.rb +5 -3
data/spec/support/helpers/url_helper.rb +9 -7
data/spec/support/http_method_shim.rb +4 -9
data/spec/support/orm/active_record.rb +3 -1
data/spec/support/shared/controllers_shared_context.rb +18 -16
data/spec/support/shared/hashing_shared_context.rb +3 -3
data/spec/support/shared/models_shared_examples.rb +12 -10
data/spec/validators/redirect_uri_validator_spec.rb +74 -45
data/spec/version/version_spec.rb +7 -5
metadata +12 -16
data/gemfiles/rails_4_2.gemfile +0 -17
data/spec/dummy/config/initializers/new_framework_defaults.rb +0 -8
data/spec/support/ruby_2_6_rails_4_2_patch.rb +0 -14

@@ -33,7 +33,7 @@ module Doorkeeper
       end
       def build_strategy_class(grant_or_request_type)
-        strategy_class_name = grant_or_request_type.to_s.tr(' ', '_').camelize
+        strategy_class_name = grant_or_request_type.to_s.tr(" ", "_").camelize
         "Doorkeeper::Request::#{strategy_class_name}".constantize
       end
     end

data/lib/doorkeeper/secret_storing/base.rb CHANGED

@@ -1,6 +1,7 @@
+# frozen_string_literal: true
 module Doorkeeper
   module SecretStoring
     ##
     # Base class for secret storing, including common helpers
     class Base
@@ -8,7 +9,7 @@ module Doorkeeper
       # Return the value to be stored by the database
       # used for looking up a database value.
       # @param plain_secret The plain secret input / generated
-      def self.transform_secret(plain_secret)
+      def self.transform_secret(_plain_secret)
         raise NotImplementedError
       end
@@ -19,8 +20,8 @@ module Doorkeeper
       # @param attribute The secret attribute
       # @param plain_secret The plain secret input / generated
       def self.store_secret(resource, attribute, plain_secret)
-        transformed_value = self.transform_secret plain_secret
-        resource.public_send :"#{attribute}=", transformed_value
+        transformed_value = transform_secret(plain_secret)
+        resource.public_send(:"#{attribute}=", transformed_value)
         transformed_value
       end
@@ -30,7 +31,7 @@ module Doorkeeper
       # @param resource The resource instance to act on
       # @param attribute The secret attribute to restore
       # as retrieved from the database.
-      def self.restore_secret(resource, attribute)
+      def self.restore_secret(_resource, _attribute)
         raise NotImplementedError
       end
@@ -60,4 +61,4 @@ module Doorkeeper
       end
     end
   end
-end
+end

data/lib/doorkeeper/secret_storing/bcrypt.rb CHANGED

@@ -1,6 +1,7 @@
+# frozen_string_literal: true
 module Doorkeeper
   module SecretStoring
     ##
     # Plain text secret storing, which is the default
     # but also provides fallback lookup if
@@ -49,11 +50,11 @@ module Doorkeeper
       ##
       # Test if we can require the BCrypt gem
       def self.bcrypt_present?
-        require 'bcrypt'
+        require "bcrypt"
         true
       rescue LoadError
         false
       end
     end
   end
-end
+end

data/lib/doorkeeper/secret_storing/plain.rb CHANGED

@@ -1,12 +1,12 @@
+# frozen_string_literal: true
 module Doorkeeper
   module SecretStoring
     ##
     # Plain text secret storing, which is the default
     # but also provides fallback lookup if
     # other secret storing mechanisms are enabled.
     class Plain < Base
       ##
       # Return the value to be stored by the database
       # @param plain_secret The plain secret input / generated
@@ -20,7 +20,7 @@ module Doorkeeper
       # @param attribute The secret attribute to restore
       # as retrieved from the database.
       def self.restore_secret(resource, attribute)
-        resource.public_send attribute
+        resource.public_send(attribute)
       end
       ##
@@ -30,4 +30,4 @@ module Doorkeeper
       end
     end
   end
-end
+end

data/lib/doorkeeper/secret_storing/sha256_hash.rb CHANGED

@@ -1,6 +1,7 @@
+# frozen_string_literal: true
 module Doorkeeper
   module SecretStoring
     ##
     # Plain text secret storing, which is the default
     # but also provides fallback lookup if
@@ -22,4 +23,4 @@ module Doorkeeper
       end
     end
   end
-end
+end

data/lib/doorkeeper/stale_records_cleaner.rb CHANGED

@@ -2,7 +2,7 @@
 module Doorkeeper
   class StaleRecordsCleaner
-    CLEANER_CLASS = 'StaleRecordsCleaner'.freeze
+    CLEANER_CLASS = "StaleRecordsCleaner"
     def self.for(base_scope)
       orm_adapter = "doorkeeper/orm/#{Doorkeeper.configuration.orm}".classify

data/lib/doorkeeper/version.rb CHANGED

@@ -10,9 +10,9 @@ module Doorkeeper
     MAJOR = 5
     MINOR = 1
     TINY = 0
-    PRE = 'rc2'
+    PRE = nil
     # Full version number
-    STRING = [MAJOR, MINOR, TINY, PRE].compact.join('.')
+    STRING = [MAJOR, MINOR, TINY, PRE].compact.join(".")
   end
 end

data/lib/generators/doorkeeper/application_owner_generator.rb CHANGED

@@ -1,18 +1,21 @@
 # frozen_string_literal: true
-require 'rails/generators'
-require 'rails/generators/active_record'
+require "rails/generators"
+require "rails/generators/active_record"
 module Doorkeeper
+  # Generates migration to add reference to owner of the
+  # Doorkeeper application.
+  #
   class ApplicationOwnerGenerator < ::Rails::Generators::Base
     include ::Rails::Generators::Migration
-    source_root File.expand_path('templates', __dir__)
-    desc 'Provide support for client application ownership.'
+    source_root File.expand_path("templates", __dir__)
+    desc "Provide support for client application ownership."
     def application_owner
       migration_template(
-        'add_owner_to_application_migration.rb.erb',
-        'db/migrate/add_owner_to_application.rb',
+        "add_owner_to_application_migration.rb.erb",
+        "db/migrate/add_owner_to_application.rb",
         migration_version: migration_version
       )
     end
@@ -24,9 +27,7 @@ module Doorkeeper
     private
     def migration_version
-      if ActiveRecord::VERSION::MAJOR >= 5
-        "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
-      end
+      "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
     end
   end
 end

data/lib/generators/doorkeeper/confidential_applications_generator.rb CHANGED

@@ -1,18 +1,21 @@
 # frozen_string_literal: true
-require 'rails/generators'
-require 'rails/generators/active_record'
+require "rails/generators"
+require "rails/generators/active_record"
 module Doorkeeper
+  # Generates migration to add confidential column to Doorkeeper
+  # applications table.
+  #
   class ConfidentialApplicationsGenerator < ::Rails::Generators::Base
     include ::Rails::Generators::Migration
-    source_root File.expand_path('templates', __dir__)
-    desc 'Add confidential column to Doorkeeper applications'
+    source_root File.expand_path("templates", __dir__)
+    desc "Add confidential column to Doorkeeper applications"
     def pkce
       migration_template(
-        'add_confidential_to_applications.rb.erb',
-        'db/migrate/add_confidential_to_applications.rb',
+        "add_confidential_to_applications.rb.erb",
+        "db/migrate/add_confidential_to_applications.rb",
         migration_version: migration_version
       )
     end
@@ -24,9 +27,7 @@ module Doorkeeper
     private
     def migration_version
-      if ActiveRecord::VERSION::MAJOR >= 5
-        "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
-      end
+      "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
     end
   end
 end

data/lib/generators/doorkeeper/install_generator.rb CHANGED

@@ -1,20 +1,22 @@
 # frozen_string_literal: true
-require 'rails/generators'
-require 'rails/generators/active_record'
+require "rails/generators"
+require "rails/generators/active_record"
 module Doorkeeper
+  # Setup doorkeeper into Rails application: locales, routes, etc.
+  #
   class InstallGenerator < ::Rails::Generators::Base
     include ::Rails::Generators::Migration
-    source_root File.expand_path('templates', __dir__)
-    desc 'Installs Doorkeeper.'
+    source_root File.expand_path("templates", __dir__)
+    desc "Installs Doorkeeper."
     def install
-      template 'initializer.rb', 'config/initializers/doorkeeper.rb'
-      copy_file File.expand_path('../../../config/locales/en.yml', __dir__),
-                'config/locales/doorkeeper.en.yml'
-      route 'use_doorkeeper'
-      readme 'README'
+      template "initializer.rb", "config/initializers/doorkeeper.rb"
+      copy_file File.expand_path("../../../config/locales/en.yml", __dir__),
+                "config/locales/doorkeeper.en.yml"
+      route "use_doorkeeper"
+      readme "README"
     end
   end
 end

data/lib/generators/doorkeeper/migration_generator.rb CHANGED

@@ -1,18 +1,20 @@
 # frozen_string_literal: true
-require 'rails/generators'
-require 'rails/generators/active_record'
+require "rails/generators"
+require "rails/generators/active_record"
 module Doorkeeper
+  # Copies main Doorkeeper migration into parent Rails application.
+  #
   class MigrationGenerator < ::Rails::Generators::Base
     include ::Rails::Generators::Migration
-    source_root File.expand_path('templates', __dir__)
-    desc 'Installs Doorkeeper migration file.'
+    source_root File.expand_path("templates", __dir__)
+    desc "Installs Doorkeeper migration file."
     def install
       migration_template(
-        'migration.rb.erb',
-        'db/migrate/create_doorkeeper_tables.rb',
+        "migration.rb.erb",
+        "db/migrate/create_doorkeeper_tables.rb",
         migration_version: migration_version
       )
     end
@@ -24,9 +26,7 @@ module Doorkeeper
     private
     def migration_version
-      if ActiveRecord::VERSION::MAJOR >= 5
-        "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
-      end
+      "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
     end
   end
 end

data/lib/generators/doorkeeper/pkce_generator.rb CHANGED

@@ -1,18 +1,21 @@
 # frozen_string_literal: true
-require 'rails/generators'
-require 'rails/generators/active_record'
+require "rails/generators"
+require "rails/generators/active_record"
 module Doorkeeper
+  # Generates migration with PKCE required database columns for
+  # Doorkeeper tables.
+  #
   class PkceGenerator < ::Rails::Generators::Base
     include ::Rails::Generators::Migration
-    source_root File.expand_path('templates', __dir__)
-    desc 'Provide support for PKCE.'
+    source_root File.expand_path("templates", __dir__)
+    desc "Provide support for PKCE."
     def pkce
       migration_template(
-        'enable_pkce_migration.rb.erb',
-        'db/migrate/enable_pkce.rb',
+        "enable_pkce_migration.rb.erb",
+        "db/migrate/enable_pkce.rb",
         migration_version: migration_version
       )
     end
@@ -24,9 +27,7 @@ module Doorkeeper
     private
     def migration_version
-      if ActiveRecord::VERSION::MAJOR >= 5
-        "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
-      end
+      "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
     end
   end
 end

data/lib/generators/doorkeeper/previous_refresh_token_generator.rb CHANGED

@@ -1,13 +1,16 @@
 # frozen_string_literal: true
-require 'rails/generators'
-require 'rails/generators/active_record'
+require "rails/generators"
+require "rails/generators/active_record"
 module Doorkeeper
+  # Generates migration to add previous refresh token column to the
+  # database for Doorkeeper tables.
+  #
   class PreviousRefreshTokenGenerator < ::Rails::Generators::Base
     include ::Rails::Generators::Migration
-    source_root File.expand_path('templates', __dir__)
-    desc 'Support revoke refresh token on access token use'
+    source_root File.expand_path("templates", __dir__)
+    desc "Support revoke refresh token on access token use"
     def self.next_migration_number(path)
       ActiveRecord::Generators::Base.next_migration_number(path)
@@ -16,8 +19,8 @@ module Doorkeeper
     def previous_refresh_token
       if no_previous_refresh_token_column?
         migration_template(
-          'add_previous_refresh_token_to_access_tokens.rb.erb',
-          'db/migrate/add_previous_refresh_token_to_access_tokens.rb'
+          "add_previous_refresh_token_to_access_tokens.rb.erb",
+          "db/migrate/add_previous_refresh_token_to_access_tokens.rb"
         )
       end
     end
@@ -25,9 +28,7 @@ module Doorkeeper
     private
     def migration_version
-      if ActiveRecord::VERSION::MAJOR >= 5
-        "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
-      end
+      "[#{ActiveRecord::VERSION::MAJOR}.#{ActiveRecord::VERSION::MINOR}]"
     end
     def no_previous_refresh_token_column?

data/lib/generators/doorkeeper/templates/initializer.rb CHANGED

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
 Doorkeeper.configure do
   # Change the ORM that doorkeeper will use (needs plugins)
   orm :active_record
@@ -47,7 +49,12 @@ Doorkeeper.configure do
   # access_token_expires_in 2.hours
   # Assign custom TTL for access tokens. Will be used instead of access_token_expires_in
-  # option if defined. `context` has the following properties available
+  # option if defined. In case the block returns `nil` value Doorkeeper fallbacks to
+  # `access_token_expires_in` configuration option value. If you really need to issue a
+  # non-expiring access token (which is not recommended) then you need to return
+  # Float::INFINITY from this block.
+  #
+  # `context` has the following properties available:
   #
   # `client` - the OAuth client application (see Doorkeeper::OAuth::Client)
   # `grant_type` - the grant type of the request (see Doorkeeper::OAuth)
@@ -146,7 +153,8 @@ Doorkeeper.configure do
   # Provide support for an owner to be assigned to each registered application (disabled by default)
   # Optional parameter confirmation: true (default false) if you want to enforce ownership of
   # a registered application
-  # Note: you must also run the rails g doorkeeper:application_owner generator to provide the necessary support
+  # NOTE: you must also run the rails g doorkeeper:application_owner generator
+  # to provide the necessary support
   #
   # enable_application_owner confirmation: false
@@ -189,9 +197,10 @@ Doorkeeper.configure do
   # access_token_methods :from_bearer_authorization, :from_access_token_param, :from_bearer_param
   # Change the native redirect uri for client apps
-  # When clients register with the following redirect uri, they won't be redirected to any server and
-  # the authorizationcode will be displayed within the provider
-  # The value can be any string. Use nil to disable this feature. When disabled, clients must provide a valid URL
+  # When clients register with the following redirect uri, they won't be redirected to
+  # any server and the authorizationcode will be displayed within the provider
+  # The value can be any string. Use nil to disable this feature. When disabled, clients
+  # must providea valid URL
   # (Similar behaviour: https://developers.google.com/accounts/docs/OAuth2InstalledApp#choosingredirecturi)
   #
   # native_redirect_uri 'urn:ietf:wg:oauth:2.0:oob'
@@ -216,6 +225,22 @@ Doorkeeper.configure do
   #
   # forbid_redirect_uri { |uri| uri.scheme.to_s.downcase == 'javascript' }
+  # Allows to set blank redirect URIs for Applications in case Doorkeeper configured
+  # to use URI-less OAuth grant flows like Client Credentials or Resource Owner
+  # Password Credentials. The option is on by default and checks configured grant
+  # types, but you **need** to manually drop `NOT NULL` constraint from `redirect_uri`
+  # column for `oauth_applications` database table.
+  #
+  # You can completely disable this feature with:
+  #
+  # allow_blank_redirect_uri false
+  #
+  # Or you can define your custom check:
+  #
+  # allow_blank_redirect_uri do |grant_flows, client|
+  #   client.superapp?
+  # end
   # Specify how authorization errors should be handled.
   # By default, doorkeeper renders json errors when access token
   # is invalid, expired, revoked or has invalid scopes.

data/lib/generators/doorkeeper/templates/migration.rb.erb CHANGED

@@ -1,9 +1,13 @@
 class CreateDoorkeeperTables < ActiveRecord::Migration<%= migration_version %>
   def change
     create_table :oauth_applications do |t|
-      t.string  :name,         null: false
-      t.string  :uid,          null: false
-      t.string  :secret,       null: false
+      t.string  :name,    null: false
+      t.string  :uid,     null: false
+      t.string  :secret,  null: false
+      # Remove `null: false` if you are planning to use grant flows
+      # that doesn't require redirect URI to be used during authorization
+      # like Client Credentials flow or Resource Owner Password.
       t.text    :redirect_uri, null: false
       t.string  :scopes,       null: false, default: ''
       t.boolean :confidential, null: false, default: true
@@ -32,20 +36,20 @@ class CreateDoorkeeperTables < ActiveRecord::Migration<%= migration_version %>
     create_table :oauth_access_tokens do |t|
       t.references :resource_owner, index: true
-      t.references :application
+      t.references :application,    null: false
       # If you use a custom token generator you may need to change this column
       # from string to text, so that it accepts tokens larger than 255
       # characters. More info on custom token generators in:
       # https://github.com/doorkeeper-gem/doorkeeper/tree/v3.0.0.rc1#custom-access-token-generator
       #
-      # t.text     :token,             null: false
-      t.string   :token,                  null: false
+      # t.text :token, null: false
+      t.string :token, null: false
       t.string   :refresh_token
       t.integer  :expires_in
       t.datetime :revoked_at
-      t.datetime :created_at,             null: false
+      t.datetime :created_at, null: false
       t.string   :scopes
       # If there is a previous_refresh_token column,
@@ -64,5 +68,9 @@ class CreateDoorkeeperTables < ActiveRecord::Migration<%= migration_version %>
       :oauth_applications,
       column: :application_id
     )
+    # Uncomment below to ensure a valid reference to the resource owner's table
+    # add_foreign_key :oauth_access_grants, <model>, column: :resource_owner_id
+    # add_foreign_key :oauth_access_tokens, <model>, column: :resource_owner_id
   end
 end