doorkeeper 5.1.2 → 5.6.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (272) hide show
  1. checksums.yaml +4 -4
  2. data/{NEWS.md → CHANGELOG.md} +314 -27
  3. data/README.md +39 -22
  4. data/app/controllers/doorkeeper/application_controller.rb +3 -2
  5. data/app/controllers/doorkeeper/application_metal_controller.rb +3 -2
  6. data/app/controllers/doorkeeper/applications_controller.rb +5 -4
  7. data/app/controllers/doorkeeper/authorizations_controller.rb +76 -25
  8. data/app/controllers/doorkeeper/authorized_applications_controller.rb +5 -5
  9. data/app/controllers/doorkeeper/token_info_controller.rb +12 -2
  10. data/app/controllers/doorkeeper/tokens_controller.rb +99 -28
  11. data/app/helpers/doorkeeper/dashboard_helper.rb +1 -1
  12. data/app/views/doorkeeper/applications/_form.html.erb +1 -7
  13. data/app/views/doorkeeper/applications/show.html.erb +35 -14
  14. data/app/views/doorkeeper/authorizations/error.html.erb +3 -1
  15. data/app/views/doorkeeper/authorizations/form_post.html.erb +15 -0
  16. data/app/views/doorkeeper/authorizations/new.html.erb +16 -14
  17. data/config/locales/en.yml +16 -3
  18. data/lib/doorkeeper/config/abstract_builder.rb +28 -0
  19. data/lib/doorkeeper/config/option.rb +20 -2
  20. data/lib/doorkeeper/config/validations.rb +53 -0
  21. data/lib/doorkeeper/config.rb +300 -136
  22. data/lib/doorkeeper/engine.rb +10 -3
  23. data/lib/doorkeeper/errors.rb +13 -18
  24. data/lib/doorkeeper/grant_flow/fallback_flow.rb +15 -0
  25. data/lib/doorkeeper/grant_flow/flow.rb +44 -0
  26. data/lib/doorkeeper/grant_flow/registry.rb +50 -0
  27. data/lib/doorkeeper/grant_flow.rb +45 -0
  28. data/lib/doorkeeper/grape/helpers.rb +7 -3
  29. data/lib/doorkeeper/helpers/controller.rb +36 -11
  30. data/lib/doorkeeper/models/access_grant_mixin.rb +23 -19
  31. data/lib/doorkeeper/models/access_token_mixin.rb +195 -52
  32. data/lib/doorkeeper/models/application_mixin.rb +8 -7
  33. data/lib/doorkeeper/models/concerns/expirable.rb +1 -1
  34. data/lib/doorkeeper/models/concerns/expiration_time_sql_math.rb +88 -0
  35. data/lib/doorkeeper/models/concerns/ownership.rb +1 -1
  36. data/lib/doorkeeper/models/concerns/polymorphic_resource_owner.rb +30 -0
  37. data/lib/doorkeeper/models/concerns/resource_ownerable.rb +47 -0
  38. data/lib/doorkeeper/models/concerns/reusable.rb +1 -1
  39. data/lib/doorkeeper/models/concerns/revocable.rb +1 -28
  40. data/lib/doorkeeper/models/concerns/scopes.rb +5 -1
  41. data/lib/doorkeeper/models/concerns/secret_storable.rb +1 -3
  42. data/lib/doorkeeper/oauth/authorization/code.rb +31 -14
  43. data/lib/doorkeeper/oauth/authorization/context.rb +5 -5
  44. data/lib/doorkeeper/oauth/authorization/token.rb +30 -19
  45. data/lib/doorkeeper/oauth/authorization/uri_builder.rb +4 -4
  46. data/lib/doorkeeper/oauth/authorization_code_request.rb +51 -22
  47. data/lib/doorkeeper/oauth/base_request.rb +21 -22
  48. data/lib/doorkeeper/oauth/client/credentials.rb +2 -4
  49. data/lib/doorkeeper/oauth/client.rb +8 -9
  50. data/lib/doorkeeper/oauth/client_credentials/creator.rb +42 -5
  51. data/lib/doorkeeper/oauth/client_credentials/issuer.rb +10 -8
  52. data/lib/doorkeeper/oauth/client_credentials/{validation.rb → validator.rb} +14 -5
  53. data/lib/doorkeeper/oauth/client_credentials_request.rb +8 -7
  54. data/lib/doorkeeper/oauth/code_request.rb +6 -12
  55. data/lib/doorkeeper/oauth/code_response.rb +24 -14
  56. data/lib/doorkeeper/oauth/error.rb +1 -1
  57. data/lib/doorkeeper/oauth/error_response.rb +11 -13
  58. data/lib/doorkeeper/oauth/forbidden_token_response.rb +2 -1
  59. data/lib/doorkeeper/oauth/helpers/scope_checker.rb +8 -12
  60. data/lib/doorkeeper/oauth/helpers/unique_token.rb +10 -7
  61. data/lib/doorkeeper/oauth/helpers/uri_checker.rb +19 -23
  62. data/lib/doorkeeper/oauth/hooks/context.rb +21 -0
  63. data/lib/doorkeeper/oauth/invalid_request_response.rb +43 -0
  64. data/lib/doorkeeper/oauth/invalid_token_response.rb +7 -4
  65. data/lib/doorkeeper/oauth/nonstandard.rb +39 -0
  66. data/lib/doorkeeper/oauth/password_access_token_request.rb +34 -11
  67. data/lib/doorkeeper/oauth/pre_authorization.rb +114 -44
  68. data/lib/doorkeeper/oauth/refresh_token_request.rb +54 -34
  69. data/lib/doorkeeper/oauth/token.rb +6 -7
  70. data/lib/doorkeeper/oauth/token_introspection.rb +28 -22
  71. data/lib/doorkeeper/oauth/token_request.rb +6 -20
  72. data/lib/doorkeeper/oauth/token_response.rb +2 -3
  73. data/lib/doorkeeper/orm/active_record/access_grant.rb +4 -43
  74. data/lib/doorkeeper/orm/active_record/access_token.rb +4 -35
  75. data/lib/doorkeeper/orm/active_record/application.rb +5 -149
  76. data/lib/doorkeeper/orm/active_record/mixins/access_grant.rb +63 -0
  77. data/lib/doorkeeper/orm/active_record/mixins/access_token.rb +77 -0
  78. data/lib/doorkeeper/orm/active_record/mixins/application.rb +210 -0
  79. data/lib/doorkeeper/orm/active_record/redirect_uri_validator.rb +66 -0
  80. data/lib/doorkeeper/orm/active_record/stale_records_cleaner.rb +5 -2
  81. data/lib/doorkeeper/orm/active_record.rb +29 -22
  82. data/lib/doorkeeper/rails/helpers.rb +4 -4
  83. data/lib/doorkeeper/rails/routes/abstract_router.rb +35 -0
  84. data/lib/doorkeeper/rails/routes/mapper.rb +2 -2
  85. data/lib/doorkeeper/rails/routes/registry.rb +45 -0
  86. data/lib/doorkeeper/rails/routes.rb +28 -27
  87. data/lib/doorkeeper/rake/db.rake +6 -6
  88. data/lib/doorkeeper/request/authorization_code.rb +5 -3
  89. data/lib/doorkeeper/request/client_credentials.rb +2 -2
  90. data/lib/doorkeeper/request/password.rb +3 -2
  91. data/lib/doorkeeper/request/refresh_token.rb +5 -4
  92. data/lib/doorkeeper/request/strategy.rb +2 -2
  93. data/lib/doorkeeper/request.rb +49 -17
  94. data/lib/doorkeeper/server.rb +7 -11
  95. data/lib/doorkeeper/stale_records_cleaner.rb +6 -2
  96. data/lib/doorkeeper/version.rb +2 -6
  97. data/lib/doorkeeper.rb +183 -80
  98. data/lib/generators/doorkeeper/application_owner_generator.rb +1 -1
  99. data/lib/generators/doorkeeper/confidential_applications_generator.rb +2 -2
  100. data/lib/generators/doorkeeper/enable_polymorphic_resource_owner_generator.rb +39 -0
  101. data/lib/generators/doorkeeper/migration_generator.rb +1 -1
  102. data/lib/generators/doorkeeper/pkce_generator.rb +1 -1
  103. data/lib/generators/doorkeeper/previous_refresh_token_generator.rb +7 -7
  104. data/lib/generators/doorkeeper/templates/add_owner_to_application_migration.rb.erb +3 -1
  105. data/lib/generators/doorkeeper/templates/add_previous_refresh_token_to_access_tokens.rb.erb +2 -0
  106. data/lib/generators/doorkeeper/templates/enable_pkce_migration.rb.erb +2 -0
  107. data/lib/generators/doorkeeper/templates/enable_polymorphic_resource_owner_migration.rb.erb +17 -0
  108. data/lib/generators/doorkeeper/templates/initializer.rb +230 -50
  109. data/lib/generators/doorkeeper/templates/migration.rb.erb +31 -9
  110. metadata +61 -327
  111. data/.coveralls.yml +0 -1
  112. data/.github/ISSUE_TEMPLATE.md +0 -25
  113. data/.github/PULL_REQUEST_TEMPLATE.md +0 -17
  114. data/.gitignore +0 -20
  115. data/.gitlab-ci.yml +0 -16
  116. data/.hound.yml +0 -3
  117. data/.rspec +0 -1
  118. data/.rubocop.yml +0 -50
  119. data/.travis.yml +0 -35
  120. data/Appraisals +0 -40
  121. data/CODE_OF_CONDUCT.md +0 -46
  122. data/CONTRIBUTING.md +0 -47
  123. data/Dangerfile +0 -67
  124. data/Gemfile +0 -24
  125. data/RELEASING.md +0 -10
  126. data/Rakefile +0 -28
  127. data/SECURITY.md +0 -15
  128. data/UPGRADE.md +0 -2
  129. data/app/validators/redirect_uri_validator.rb +0 -50
  130. data/bin/console +0 -16
  131. data/doorkeeper.gemspec +0 -34
  132. data/gemfiles/rails_5_0.gemfile +0 -17
  133. data/gemfiles/rails_5_1.gemfile +0 -17
  134. data/gemfiles/rails_5_2.gemfile +0 -17
  135. data/gemfiles/rails_6_0.gemfile +0 -17
  136. data/gemfiles/rails_master.gemfile +0 -17
  137. data/spec/controllers/application_metal_controller_spec.rb +0 -64
  138. data/spec/controllers/applications_controller_spec.rb +0 -180
  139. data/spec/controllers/authorizations_controller_spec.rb +0 -527
  140. data/spec/controllers/protected_resources_controller_spec.rb +0 -353
  141. data/spec/controllers/token_info_controller_spec.rb +0 -50
  142. data/spec/controllers/tokens_controller_spec.rb +0 -330
  143. data/spec/dummy/Rakefile +0 -9
  144. data/spec/dummy/app/assets/config/manifest.js +0 -2
  145. data/spec/dummy/app/controllers/application_controller.rb +0 -5
  146. data/spec/dummy/app/controllers/custom_authorizations_controller.rb +0 -9
  147. data/spec/dummy/app/controllers/full_protected_resources_controller.rb +0 -14
  148. data/spec/dummy/app/controllers/home_controller.rb +0 -18
  149. data/spec/dummy/app/controllers/metal_controller.rb +0 -13
  150. data/spec/dummy/app/controllers/semi_protected_resources_controller.rb +0 -13
  151. data/spec/dummy/app/helpers/application_helper.rb +0 -7
  152. data/spec/dummy/app/models/user.rb +0 -7
  153. data/spec/dummy/app/views/home/index.html.erb +0 -0
  154. data/spec/dummy/app/views/layouts/application.html.erb +0 -14
  155. data/spec/dummy/config/application.rb +0 -47
  156. data/spec/dummy/config/boot.rb +0 -7
  157. data/spec/dummy/config/database.yml +0 -15
  158. data/spec/dummy/config/environment.rb +0 -5
  159. data/spec/dummy/config/environments/development.rb +0 -31
  160. data/spec/dummy/config/environments/production.rb +0 -64
  161. data/spec/dummy/config/environments/test.rb +0 -45
  162. data/spec/dummy/config/initializers/backtrace_silencers.rb +0 -9
  163. data/spec/dummy/config/initializers/doorkeeper.rb +0 -121
  164. data/spec/dummy/config/initializers/secret_token.rb +0 -10
  165. data/spec/dummy/config/initializers/session_store.rb +0 -10
  166. data/spec/dummy/config/initializers/wrap_parameters.rb +0 -16
  167. data/spec/dummy/config/locales/doorkeeper.en.yml +0 -5
  168. data/spec/dummy/config/routes.rb +0 -13
  169. data/spec/dummy/config.ru +0 -6
  170. data/spec/dummy/db/migrate/20111122132257_create_users.rb +0 -11
  171. data/spec/dummy/db/migrate/20120312140401_add_password_to_users.rb +0 -7
  172. data/spec/dummy/db/migrate/20151223192035_create_doorkeeper_tables.rb +0 -69
  173. data/spec/dummy/db/migrate/20151223200000_add_owner_to_application.rb +0 -9
  174. data/spec/dummy/db/migrate/20160320211015_add_previous_refresh_token_to_access_tokens.rb +0 -13
  175. data/spec/dummy/db/migrate/20170822064514_enable_pkce.rb +0 -8
  176. data/spec/dummy/db/migrate/20180210183654_add_confidential_to_applications.rb +0 -13
  177. data/spec/dummy/db/schema.rb +0 -68
  178. data/spec/dummy/public/404.html +0 -26
  179. data/spec/dummy/public/422.html +0 -26
  180. data/spec/dummy/public/500.html +0 -26
  181. data/spec/dummy/public/favicon.ico +0 -0
  182. data/spec/dummy/script/rails +0 -9
  183. data/spec/factories.rb +0 -30
  184. data/spec/generators/application_owner_generator_spec.rb +0 -28
  185. data/spec/generators/confidential_applications_generator_spec.rb +0 -29
  186. data/spec/generators/install_generator_spec.rb +0 -36
  187. data/spec/generators/migration_generator_spec.rb +0 -28
  188. data/spec/generators/pkce_generator_spec.rb +0 -28
  189. data/spec/generators/previous_refresh_token_generator_spec.rb +0 -44
  190. data/spec/generators/templates/routes.rb +0 -4
  191. data/spec/generators/views_generator_spec.rb +0 -29
  192. data/spec/grape/grape_integration_spec.rb +0 -137
  193. data/spec/helpers/doorkeeper/dashboard_helper_spec.rb +0 -26
  194. data/spec/lib/config_spec.rb +0 -697
  195. data/spec/lib/doorkeeper_spec.rb +0 -27
  196. data/spec/lib/models/expirable_spec.rb +0 -61
  197. data/spec/lib/models/reusable_spec.rb +0 -40
  198. data/spec/lib/models/revocable_spec.rb +0 -59
  199. data/spec/lib/models/scopes_spec.rb +0 -53
  200. data/spec/lib/models/secret_storable_spec.rb +0 -135
  201. data/spec/lib/oauth/authorization/uri_builder_spec.rb +0 -39
  202. data/spec/lib/oauth/authorization_code_request_spec.rb +0 -156
  203. data/spec/lib/oauth/base_request_spec.rb +0 -205
  204. data/spec/lib/oauth/base_response_spec.rb +0 -47
  205. data/spec/lib/oauth/client/credentials_spec.rb +0 -90
  206. data/spec/lib/oauth/client_credentials/creator_spec.rb +0 -94
  207. data/spec/lib/oauth/client_credentials/issuer_spec.rb +0 -112
  208. data/spec/lib/oauth/client_credentials/validation_spec.rb +0 -59
  209. data/spec/lib/oauth/client_credentials_integration_spec.rb +0 -29
  210. data/spec/lib/oauth/client_credentials_request_spec.rb +0 -109
  211. data/spec/lib/oauth/client_spec.rb +0 -38
  212. data/spec/lib/oauth/code_request_spec.rb +0 -47
  213. data/spec/lib/oauth/code_response_spec.rb +0 -36
  214. data/spec/lib/oauth/error_response_spec.rb +0 -66
  215. data/spec/lib/oauth/error_spec.rb +0 -23
  216. data/spec/lib/oauth/forbidden_token_response_spec.rb +0 -22
  217. data/spec/lib/oauth/helpers/scope_checker_spec.rb +0 -98
  218. data/spec/lib/oauth/helpers/unique_token_spec.rb +0 -21
  219. data/spec/lib/oauth/helpers/uri_checker_spec.rb +0 -247
  220. data/spec/lib/oauth/invalid_token_response_spec.rb +0 -55
  221. data/spec/lib/oauth/password_access_token_request_spec.rb +0 -192
  222. data/spec/lib/oauth/pre_authorization_spec.rb +0 -215
  223. data/spec/lib/oauth/refresh_token_request_spec.rb +0 -177
  224. data/spec/lib/oauth/scopes_spec.rb +0 -148
  225. data/spec/lib/oauth/token_request_spec.rb +0 -150
  226. data/spec/lib/oauth/token_response_spec.rb +0 -86
  227. data/spec/lib/oauth/token_spec.rb +0 -158
  228. data/spec/lib/request/strategy_spec.rb +0 -54
  229. data/spec/lib/secret_storing/base_spec.rb +0 -60
  230. data/spec/lib/secret_storing/bcrypt_spec.rb +0 -49
  231. data/spec/lib/secret_storing/plain_spec.rb +0 -44
  232. data/spec/lib/secret_storing/sha256_hash_spec.rb +0 -48
  233. data/spec/lib/server_spec.rb +0 -61
  234. data/spec/lib/stale_records_cleaner_spec.rb +0 -89
  235. data/spec/models/doorkeeper/access_grant_spec.rb +0 -144
  236. data/spec/models/doorkeeper/access_token_spec.rb +0 -591
  237. data/spec/models/doorkeeper/application_spec.rb +0 -472
  238. data/spec/requests/applications/applications_request_spec.rb +0 -259
  239. data/spec/requests/applications/authorized_applications_spec.rb +0 -32
  240. data/spec/requests/endpoints/authorization_spec.rb +0 -73
  241. data/spec/requests/endpoints/token_spec.rb +0 -75
  242. data/spec/requests/flows/authorization_code_errors_spec.rb +0 -78
  243. data/spec/requests/flows/authorization_code_spec.rb +0 -447
  244. data/spec/requests/flows/client_credentials_spec.rb +0 -128
  245. data/spec/requests/flows/implicit_grant_errors_spec.rb +0 -34
  246. data/spec/requests/flows/implicit_grant_spec.rb +0 -90
  247. data/spec/requests/flows/password_spec.rb +0 -259
  248. data/spec/requests/flows/refresh_token_spec.rb +0 -233
  249. data/spec/requests/flows/revoke_token_spec.rb +0 -143
  250. data/spec/requests/flows/skip_authorization_spec.rb +0 -66
  251. data/spec/requests/protected_resources/metal_spec.rb +0 -16
  252. data/spec/requests/protected_resources/private_api_spec.rb +0 -83
  253. data/spec/routing/custom_controller_routes_spec.rb +0 -133
  254. data/spec/routing/default_routes_spec.rb +0 -41
  255. data/spec/routing/scoped_routes_spec.rb +0 -47
  256. data/spec/spec_helper.rb +0 -57
  257. data/spec/spec_helper_integration.rb +0 -4
  258. data/spec/support/dependencies/factory_bot.rb +0 -4
  259. data/spec/support/doorkeeper_rspec.rb +0 -22
  260. data/spec/support/helpers/access_token_request_helper.rb +0 -13
  261. data/spec/support/helpers/authorization_request_helper.rb +0 -43
  262. data/spec/support/helpers/config_helper.rb +0 -11
  263. data/spec/support/helpers/model_helper.rb +0 -78
  264. data/spec/support/helpers/request_spec_helper.rb +0 -98
  265. data/spec/support/helpers/url_helper.rb +0 -62
  266. data/spec/support/http_method_shim.rb +0 -29
  267. data/spec/support/orm/active_record.rb +0 -5
  268. data/spec/support/shared/controllers_shared_context.rb +0 -123
  269. data/spec/support/shared/hashing_shared_context.rb +0 -36
  270. data/spec/support/shared/models_shared_examples.rb +0 -54
  271. data/spec/validators/redirect_uri_validator_spec.rb +0 -158
  272. data/spec/version/version_spec.rb +0 -17
@@ -1,16 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- require "spec_helper"
4
-
5
- describe "ActionController::Metal API" do
6
- before do
7
- @client = FactoryBot.create(:application)
8
- @resource = User.create!(name: "Joe", password: "sekret")
9
- @token = client_is_authorized(@client, @resource)
10
- end
11
-
12
- it "client requests protected resource with valid token" do
13
- get "/metal.json?access_token=#{@token.token}"
14
- should_have_json "ok", true
15
- end
16
- end
@@ -1,83 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- require "spec_helper"
4
-
5
- feature "Private API" do
6
- background do
7
- @client = FactoryBot.create(:application)
8
- @resource = User.create!(name: "Joe", password: "sekret")
9
- @token = client_is_authorized(@client, @resource)
10
- end
11
-
12
- scenario "client requests protected resource with valid token" do
13
- with_access_token_header @token.token
14
- visit "/full_protected_resources"
15
- expect(page.body).to have_content("index")
16
- end
17
-
18
- scenario "client requests protected resource with disabled header authentication" do
19
- config_is_set :access_token_methods, [:from_access_token_param]
20
- with_access_token_header @token.token
21
- visit "/full_protected_resources"
22
- response_status_should_be 401
23
- end
24
-
25
- scenario "client attempts to request protected resource with invalid token" do
26
- with_access_token_header "invalid"
27
- visit "/full_protected_resources"
28
- response_status_should_be 401
29
- end
30
-
31
- scenario "client attempts to request protected resource with expired token" do
32
- @token.update_attribute :expires_in, -100 # expires token
33
- with_access_token_header @token.token
34
- visit "/full_protected_resources"
35
- response_status_should_be 401
36
- end
37
-
38
- scenario "client requests protected resource with permanent token" do
39
- @token.update_attribute :expires_in, nil # never expires
40
- with_access_token_header @token.token
41
- visit "/full_protected_resources"
42
- expect(page.body).to have_content("index")
43
- end
44
-
45
- scenario "access token with no default scopes" do
46
- Doorkeeper.configuration.instance_eval do
47
- @default_scopes = Doorkeeper::OAuth::Scopes.from_array([:public])
48
- @scopes = default_scopes + optional_scopes
49
- end
50
- @token.update_attribute :scopes, "dummy"
51
- with_access_token_header @token.token
52
- visit "/full_protected_resources"
53
- response_status_should_be 403
54
- end
55
-
56
- scenario "access token with no allowed scopes" do
57
- @token.update_attribute :scopes, nil
58
- with_access_token_header @token.token
59
- visit "/full_protected_resources/1.json"
60
- response_status_should_be 403
61
- end
62
-
63
- scenario "access token with one of allowed scopes" do
64
- @token.update_attribute :scopes, "admin"
65
- with_access_token_header @token.token
66
- visit "/full_protected_resources/1.json"
67
- expect(page.body).to have_content("show")
68
- end
69
-
70
- scenario "access token with another of allowed scopes" do
71
- @token.update_attribute :scopes, "write"
72
- with_access_token_header @token.token
73
- visit "/full_protected_resources/1.json"
74
- expect(page.body).to have_content("show")
75
- end
76
-
77
- scenario "access token with both allowed scopes" do
78
- @token.update_attribute :scopes, "write admin"
79
- with_access_token_header @token.token
80
- visit "/full_protected_resources/1.json"
81
- expect(page.body).to have_content("show")
82
- end
83
- end
@@ -1,133 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- require "spec_helper"
4
-
5
- describe "Custom controller for routes" do
6
- before :all do
7
- Doorkeeper.configure do
8
- orm DOORKEEPER_ORM
9
- end
10
-
11
- Rails.application.routes.disable_clear_and_finalize = true
12
-
13
- Rails.application.routes.draw do
14
- scope "inner_space" do
15
- use_doorkeeper scope: "scope" do
16
- controllers authorizations: "custom_authorizations",
17
- tokens: "custom_authorizations",
18
- applications: "custom_authorizations",
19
- token_info: "custom_authorizations"
20
-
21
- as authorizations: "custom_auth",
22
- tokens: "custom_token",
23
- token_info: "custom_token_info"
24
- end
25
- end
26
-
27
- scope "space" do
28
- use_doorkeeper do
29
- controllers authorizations: "custom_authorizations",
30
- tokens: "custom_authorizations",
31
- applications: "custom_authorizations",
32
- token_info: "custom_authorizations"
33
-
34
- as authorizations: "custom_auth",
35
- tokens: "custom_token",
36
- token_info: "custom_token_info"
37
- end
38
- end
39
-
40
- scope "outer_space" do
41
- use_doorkeeper do
42
- controllers authorizations: "custom_authorizations",
43
- tokens: "custom_authorizations",
44
- token_info: "custom_authorizations"
45
-
46
- as authorizations: "custom_auth",
47
- tokens: "custom_token",
48
- token_info: "custom_token_info"
49
-
50
- skip_controllers :tokens, :applications, :token_info
51
- end
52
- end
53
- end
54
- end
55
-
56
- after :all do
57
- Rails.application.routes.clear!
58
-
59
- load File.expand_path("../dummy/config/routes.rb", __dir__)
60
- end
61
-
62
- it "GET /inner_space/scope/authorize routes to custom authorizations controller" do
63
- expect(get("/inner_space/scope/authorize")).to route_to("custom_authorizations#new")
64
- end
65
-
66
- it "POST /inner_space/scope/authorize routes to custom authorizations controller" do
67
- expect(post("/inner_space/scope/authorize")).to route_to("custom_authorizations#create")
68
- end
69
-
70
- it "DELETE /inner_space/scope/authorize routes to custom authorizations controller" do
71
- expect(delete("/inner_space/scope/authorize")).to route_to("custom_authorizations#destroy")
72
- end
73
-
74
- it "POST /inner_space/scope/token routes to tokens controller" do
75
- expect(post("/inner_space/scope/token")).to route_to("custom_authorizations#create")
76
- end
77
-
78
- it "GET /inner_space/scope/applications routes to applications controller" do
79
- expect(get("/inner_space/scope/applications")).to route_to("custom_authorizations#index")
80
- end
81
-
82
- it "GET /inner_space/scope/token/info routes to the token_info controller" do
83
- expect(get("/inner_space/scope/token/info")).to route_to("custom_authorizations#show")
84
- end
85
-
86
- it "GET /space/oauth/authorize routes to custom authorizations controller" do
87
- expect(get("/space/oauth/authorize")).to route_to("custom_authorizations#new")
88
- end
89
-
90
- it "POST /space/oauth/authorize routes to custom authorizations controller" do
91
- expect(post("/space/oauth/authorize")).to route_to("custom_authorizations#create")
92
- end
93
-
94
- it "DELETE /space/oauth/authorize routes to custom authorizations controller" do
95
- expect(delete("/space/oauth/authorize")).to route_to("custom_authorizations#destroy")
96
- end
97
-
98
- it "POST /space/oauth/token routes to tokens controller" do
99
- expect(post("/space/oauth/token")).to route_to("custom_authorizations#create")
100
- end
101
-
102
- it "POST /space/oauth/revoke routes to tokens controller" do
103
- expect(post("/space/oauth/revoke")).to route_to("custom_authorizations#revoke")
104
- end
105
-
106
- it "POST /space/oauth/introspect routes to tokens controller" do
107
- expect(post("/space/oauth/introspect")).to route_to("custom_authorizations#introspect")
108
- end
109
-
110
- it "GET /space/oauth/applications routes to applications controller" do
111
- expect(get("/space/oauth/applications")).to route_to("custom_authorizations#index")
112
- end
113
-
114
- it "GET /space/oauth/token/info routes to the token_info controller" do
115
- expect(get("/space/oauth/token/info")).to route_to("custom_authorizations#show")
116
- end
117
-
118
- it "POST /outer_space/oauth/token is not be routable" do
119
- expect(post("/outer_space/oauth/token")).not_to be_routable
120
- end
121
-
122
- it "GET /outer_space/oauth/authorize routes to custom authorizations controller" do
123
- expect(get("/outer_space/oauth/authorize")).to be_routable
124
- end
125
-
126
- it "GET /outer_space/oauth/applications is not routable" do
127
- expect(get("/outer_space/oauth/applications")).not_to be_routable
128
- end
129
-
130
- it "GET /outer_space/oauth/token_info is not routable" do
131
- expect(get("/outer_space/oauth/token/info")).not_to be_routable
132
- end
133
- end
@@ -1,41 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- require "spec_helper"
4
-
5
- describe "Default routes" do
6
- it "GET /oauth/authorize routes to authorizations controller" do
7
- expect(get("/oauth/authorize")).to route_to("doorkeeper/authorizations#new")
8
- end
9
-
10
- it "POST /oauth/authorize routes to authorizations controller" do
11
- expect(post("/oauth/authorize")).to route_to("doorkeeper/authorizations#create")
12
- end
13
-
14
- it "DELETE /oauth/authorize routes to authorizations controller" do
15
- expect(delete("/oauth/authorize")).to route_to("doorkeeper/authorizations#destroy")
16
- end
17
-
18
- it "POST /oauth/token routes to tokens controller" do
19
- expect(post("/oauth/token")).to route_to("doorkeeper/tokens#create")
20
- end
21
-
22
- it "POST /oauth/revoke routes to tokens controller" do
23
- expect(post("/oauth/revoke")).to route_to("doorkeeper/tokens#revoke")
24
- end
25
-
26
- it "POST /oauth/introspect routes to tokens controller" do
27
- expect(post("/oauth/introspect")).to route_to("doorkeeper/tokens#introspect")
28
- end
29
-
30
- it "GET /oauth/applications routes to applications controller" do
31
- expect(get("/oauth/applications")).to route_to("doorkeeper/applications#index")
32
- end
33
-
34
- it "GET /oauth/authorized_applications routes to authorized applications controller" do
35
- expect(get("/oauth/authorized_applications")).to route_to("doorkeeper/authorized_applications#index")
36
- end
37
-
38
- it "GET /oauth/token/info route to authorized TokenInfo controller" do
39
- expect(get("/oauth/token/info")).to route_to("doorkeeper/token_info#show")
40
- end
41
- end
@@ -1,47 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- require "spec_helper"
4
-
5
- describe "Scoped routes" do
6
- before :all do
7
- Rails.application.routes.disable_clear_and_finalize = true
8
-
9
- Rails.application.routes.draw do
10
- use_doorkeeper scope: "scope"
11
- end
12
- end
13
-
14
- after :all do
15
- Rails.application.routes.clear!
16
-
17
- load File.expand_path("../dummy/config/routes.rb", __dir__)
18
- end
19
-
20
- it "GET /scope/authorize routes to authorizations controller" do
21
- expect(get("/scope/authorize")).to route_to("doorkeeper/authorizations#new")
22
- end
23
-
24
- it "POST /scope/authorize routes to authorizations controller" do
25
- expect(post("/scope/authorize")).to route_to("doorkeeper/authorizations#create")
26
- end
27
-
28
- it "DELETE /scope/authorize routes to authorizations controller" do
29
- expect(delete("/scope/authorize")).to route_to("doorkeeper/authorizations#destroy")
30
- end
31
-
32
- it "POST /scope/token routes to tokens controller" do
33
- expect(post("/scope/token")).to route_to("doorkeeper/tokens#create")
34
- end
35
-
36
- it "GET /scope/applications routes to applications controller" do
37
- expect(get("/scope/applications")).to route_to("doorkeeper/applications#index")
38
- end
39
-
40
- it "GET /scope/authorized_applications routes to authorized applications controller" do
41
- expect(get("/scope/authorized_applications")).to route_to("doorkeeper/authorized_applications#index")
42
- end
43
-
44
- it "GET /scope/token/info route to authorized TokenInfo controller" do
45
- expect(get("/scope/token/info")).to route_to("doorkeeper/token_info#show")
46
- end
47
- end
data/spec/spec_helper.rb DELETED
@@ -1,57 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- require "coveralls"
4
-
5
- Coveralls.wear!("rails") do
6
- add_filter("/spec/")
7
- add_filter("/lib/generators/doorkeeper/templates/")
8
- end
9
-
10
- ENV["RAILS_ENV"] ||= "test"
11
-
12
- $LOAD_PATH.unshift File.dirname(__FILE__)
13
-
14
- require "#{File.dirname(__FILE__)}/support/doorkeeper_rspec.rb"
15
-
16
- DOORKEEPER_ORM = Doorkeeper::RSpec.detect_orm
17
-
18
- require "dummy/config/environment"
19
- require "rspec/rails"
20
- require "capybara/rspec"
21
- require "database_cleaner"
22
- require "generator_spec/test_case"
23
-
24
- # Load JRuby SQLite3 if in that platform
25
- if defined? JRUBY_VERSION
26
- require "jdbc/sqlite3"
27
- Jdbc::SQLite3.load_driver
28
- end
29
-
30
- Doorkeeper::RSpec.print_configuration_info
31
-
32
- # Remove after dropping support of Rails 4.2
33
- require "#{File.dirname(__FILE__)}/support/http_method_shim"
34
-
35
- require "support/orm/#{DOORKEEPER_ORM}"
36
-
37
- Dir["#{File.dirname(__FILE__)}/support/{dependencies,helpers,shared}/*.rb"].each { |file| require file }
38
-
39
- RSpec.configure do |config|
40
- config.infer_spec_type_from_file_location!
41
- config.mock_with :rspec
42
-
43
- config.infer_base_class_for_anonymous_controllers = false
44
-
45
- config.include RSpec::Rails::RequestExampleGroup, type: :request
46
-
47
- config.before do
48
- DatabaseCleaner.start
49
- Doorkeeper.configure { orm DOORKEEPER_ORM }
50
- end
51
-
52
- config.after do
53
- DatabaseCleaner.clean
54
- end
55
-
56
- config.order = "random"
57
- end
@@ -1,4 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- # For compatibility only
4
- require "spec_helper"
@@ -1,4 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- require "factory_bot"
4
- FactoryBot.find_definitions
@@ -1,22 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- module Doorkeeper
4
- class RSpec
5
- # Print's useful information about env: Ruby / Rails versions,
6
- # Doorkeeper configuration, etc.
7
- def self.print_configuration_info
8
- puts <<-INFO.strip_heredoc
9
- ====> Doorkeeper ORM: '#{Doorkeeper.configuration.orm}'
10
- ====> Doorkeeper version: #{Doorkeeper.gem_version}
11
- ====> Rails version: #{::Rails.version}
12
- ====> Ruby version: #{RUBY_VERSION} on #{RUBY_PLATFORM}
13
- INFO
14
- end
15
-
16
- # Tries to find ORM from the Gemfile used to run test suite
17
- def self.detect_orm
18
- orm = (ENV["BUNDLE_GEMFILE"] || "").match(/Gemfile\.(.+)\.rb/)
19
- (orm && orm[1] || :active_record).to_sym
20
- end
21
- end
22
- end
@@ -1,13 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- module AccessTokenRequestHelper
4
- def client_is_authorized(client, resource_owner, access_token_attributes = {})
5
- attributes = {
6
- application: client,
7
- resource_owner_id: resource_owner.id,
8
- }.merge(access_token_attributes)
9
- FactoryBot.create(:access_token, attributes)
10
- end
11
- end
12
-
13
- RSpec.configuration.send :include, AccessTokenRequestHelper
@@ -1,43 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- module AuthorizationRequestHelper
4
- def resource_owner_is_authenticated(resource_owner = nil)
5
- resource_owner ||= User.create!(name: "Joe", password: "sekret")
6
- Doorkeeper.configuration.instance_variable_set(:@authenticate_resource_owner, proc { resource_owner })
7
- end
8
-
9
- def resource_owner_is_not_authenticated
10
- Doorkeeper.configuration.instance_variable_set(:@authenticate_resource_owner, proc { redirect_to("/sign_in") })
11
- end
12
-
13
- def default_scopes_exist(*scopes)
14
- Doorkeeper.configuration.instance_variable_set(:@default_scopes, Doorkeeper::OAuth::Scopes.from_array(scopes))
15
- end
16
-
17
- def optional_scopes_exist(*scopes)
18
- Doorkeeper.configuration.instance_variable_set(:@optional_scopes, Doorkeeper::OAuth::Scopes.from_array(scopes))
19
- end
20
-
21
- def client_should_be_authorized(client)
22
- expect(client.access_grants.size).to eq(1)
23
- end
24
-
25
- def client_should_not_be_authorized(client)
26
- expect(client.size).to eq(0)
27
- end
28
-
29
- def i_should_be_on_client_callback(client)
30
- expect(client.redirect_uri).to eq("#{current_uri.scheme}://#{current_uri.host}#{current_uri.path}")
31
- end
32
-
33
- def allowing_forgery_protection(&_block)
34
- original_value = ActionController::Base.allow_forgery_protection
35
- ActionController::Base.allow_forgery_protection = true
36
-
37
- yield
38
- ensure
39
- ActionController::Base.allow_forgery_protection = original_value
40
- end
41
- end
42
-
43
- RSpec.configuration.send :include, AuthorizationRequestHelper
@@ -1,11 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- module ConfigHelper
4
- def config_is_set(setting, value = nil, &block)
5
- setting_ivar = "@#{setting}"
6
- value = block_given? ? block : value
7
- Doorkeeper.configuration.instance_variable_set(setting_ivar, value)
8
- end
9
- end
10
-
11
- RSpec.configuration.send :include, ConfigHelper
@@ -1,78 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- module ModelHelper
4
- def client_exists(client_attributes = {})
5
- @client = FactoryBot.create(:application, client_attributes)
6
- end
7
-
8
- def create_resource_owner
9
- @resource_owner = User.create!(name: "Joe", password: "sekret")
10
- end
11
-
12
- def authorization_code_exists(options = {})
13
- @authorization = FactoryBot.create(:access_grant, options)
14
- end
15
-
16
- def access_token_exists(options = {})
17
- @access_token = FactoryBot.create(:access_token, options)
18
- end
19
-
20
- def access_grant_should_exist_for(client, resource_owner)
21
- grant = Doorkeeper::AccessGrant.first
22
-
23
- expect(grant.application).to have_attributes(id: client.id)
24
- .and(be_instance_of(Doorkeeper::Application))
25
-
26
- expect(grant.resource_owner_id).to eq(resource_owner.id)
27
- end
28
-
29
- def access_token_should_exist_for(client, resource_owner)
30
- token = Doorkeeper::AccessToken.first
31
-
32
- expect(token.application).to have_attributes(id: client.id)
33
- .and(be_instance_of(Doorkeeper::Application))
34
-
35
- expect(token.resource_owner_id).to eq(resource_owner.id)
36
- end
37
-
38
- def access_grant_should_not_exist
39
- expect(Doorkeeper::AccessGrant.all).to be_empty
40
- end
41
-
42
- def access_token_should_not_exist
43
- expect(Doorkeeper::AccessToken.all).to be_empty
44
- end
45
-
46
- def access_grant_should_have_scopes(*args)
47
- grant = Doorkeeper::AccessGrant.first
48
- expect(grant.scopes).to eq(Doorkeeper::OAuth::Scopes.from_array(args))
49
- end
50
-
51
- def access_token_should_have_scopes(*args)
52
- grant = Doorkeeper::AccessToken.last
53
- expect(grant.scopes).to eq(Doorkeeper::OAuth::Scopes.from_array(args))
54
- end
55
-
56
- def uniqueness_error
57
- case DOORKEEPER_ORM
58
- when :active_record
59
- ActiveRecord::RecordNotUnique
60
- when :sequel
61
- error_classes = [Sequel::UniqueConstraintViolation, Sequel::ValidationFailed]
62
- proc { |error| expect(error.class).to be_in(error_classes) }
63
- when :mongo_mapper
64
- error_classes = [MongoMapper::DocumentNotValid, Mongo::OperationFailure]
65
- proc { |error| expect(error.class).to be_in(error_classes) }
66
- when /mongoid/
67
- error_classes = [Mongoid::Errors::Validations]
68
- error_classes << Moped::Errors::OperationFailure if defined?(::Moped) # Mongoid 4
69
- error_classes << Mongo::Error::OperationFailure if defined?(::Mongo) # Mongoid 5
70
-
71
- proc { |error| expect(error.class).to be_in(error_classes) }
72
- else
73
- raise "'#{DOORKEEPER_ORM}' ORM is not supported!"
74
- end
75
- end
76
- end
77
-
78
- RSpec.configuration.send :include, ModelHelper
@@ -1,98 +0,0 @@
1
- # frozen_string_literal: true
2
-
3
- module RequestSpecHelper
4
- def i_am_logged_in
5
- allow(Doorkeeper.configuration).to receive(:authenticate_admin).and_return(->(*) {})
6
- end
7
-
8
- def i_should_see(content)
9
- expect(page).to have_content(content)
10
- end
11
-
12
- def i_should_not_see(content)
13
- expect(page).to have_no_content(content)
14
- end
15
-
16
- def i_should_be_on(path)
17
- expect(current_path).to eq(path)
18
- end
19
-
20
- def url_should_have_param(param, value)
21
- expect(current_params[param]).to eq(value)
22
- end
23
-
24
- def url_should_not_have_param(param)
25
- expect(current_params).not_to have_key(param)
26
- end
27
-
28
- def current_params
29
- Rack::Utils.parse_query(current_uri.query)
30
- end
31
-
32
- def current_uri
33
- URI.parse(page.current_url)
34
- end
35
-
36
- def request_response
37
- respond_to?(:response) ? response : page.driver.response
38
- end
39
-
40
- def json_response
41
- JSON.parse(request_response.body)
42
- end
43
-
44
- def should_have_header(header, value)
45
- expect(headers[header]).to eq(value)
46
- end
47
-
48
- def should_have_status(status)
49
- expect(page.driver.response.status).to eq(status)
50
- end
51
-
52
- def with_access_token_header(token)
53
- with_header "Authorization", "Bearer #{token}"
54
- end
55
-
56
- def with_header(header, value)
57
- page.driver.header header, value
58
- end
59
-
60
- def basic_auth_header_for_client(client)
61
- ActionController::HttpAuthentication::Basic.encode_credentials client.uid, client.secret
62
- end
63
-
64
- def should_have_json(key, value)
65
- expect(json_response.fetch(key)).to eq(value)
66
- end
67
-
68
- def should_have_json_within(key, value, range)
69
- expect(json_response.fetch(key)).to be_within(range).of(value)
70
- end
71
-
72
- def should_not_have_json(key)
73
- expect(json_response).not_to have_key(key)
74
- end
75
-
76
- def sign_in
77
- visit "/"
78
- click_on "Sign in"
79
- end
80
-
81
- def create_access_token(authorization_code, client, code_verifier = nil)
82
- page.driver.post token_endpoint_url(code: authorization_code, client: client, code_verifier: code_verifier)
83
- end
84
-
85
- def i_should_see_translated_error_message(key)
86
- i_should_see translated_error_message(key)
87
- end
88
-
89
- def translated_error_message(key)
90
- I18n.translate key, scope: %i[doorkeeper errors messages]
91
- end
92
-
93
- def response_status_should_be(status)
94
- expect(request_response.status.to_i).to eq(status)
95
- end
96
- end
97
-
98
- RSpec.configuration.send :include, RequestSpecHelper