fidor_starter_kits 0.4.0 → 0.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +4 -0
- data/lib/fidor_starter_kits/version.rb +1 -1
- data/starter_kits/golang_transactions/example.go +0 -1
- data/starter_kits/node_tx/example.js +0 -1
- data/starter_kits/php_oauth_plain/example.php +16 -12
- data/starter_kits/ruby_oauth_plain/example.rb +0 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: f7ad745a98bc665f779656eafe044a2347095f7f
|
|
4
|
+
data.tar.gz: a14fdce60c3b77f7a67d39380a475a4f459b181a
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: da247667b132890f3805783948690d7a5cdab9880b01cb8b279fbf8399b83337fe63c80736221a7eaad6d643bc909da7dd26c514687e79b391120a5a9da67210
|
|
7
|
+
data.tar.gz: 7c734c748e1a6c24d9facd4faadba4935cf9307859509faf3506d58954ff57698a9e2fe29d180e9143906269a44f5b624e7d727f5c1c1fd5bc559f4971269c51
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,10 @@
|
|
|
1
1
|
# Changelog Fidor Admin API Schema
|
|
2
2
|
See [commit messages](https://github.com/fidor/fidor_starter_kits/commits/) for details.
|
|
3
3
|
|
|
4
|
+
##2016-01
|
|
5
|
+
|
|
6
|
+
* remove client_secret usage in params => moved to BasicAuth header
|
|
7
|
+
|
|
4
8
|
##2015-06
|
|
5
9
|
|
|
6
10
|
* fix usage of access_token in api URLs, now set in Authorization Header
|
|
@@ -212,7 +212,6 @@ func retrieveTokenFromCode(code string, target_endpoint string) (token string, e
|
|
|
212
212
|
redirect_uri := fmt.Sprintf("%s/oauth?ep=%s", fidorConfig.AppUrl, target_endpoint)
|
|
213
213
|
tokenPayload := url.Values{
|
|
214
214
|
"client_id": {fidorConfig.ClientId},
|
|
215
|
-
//"client_secret": {fidorConfig.ClientSecret},
|
|
216
215
|
"code": {code},
|
|
217
216
|
"redirect_uri": {url.QueryEscape(redirect_uri)},
|
|
218
217
|
"grant_type": {"authorization_code"},
|
|
@@ -86,7 +86,6 @@ function retrieve_access_token_from_code( code, target_endpoint, cb ) {
|
|
|
86
86
|
var postData = {
|
|
87
87
|
code : code,
|
|
88
88
|
client_id : fidor_config.client_id,
|
|
89
|
-
// client_secret : fidor_config.client_secret, // deprecated, please use basic auth, see. postOptions, above
|
|
90
89
|
redirect_uri : encodeURIComponent(redirect_uri),
|
|
91
90
|
grant_type : "authorization_code"
|
|
92
91
|
}
|
|
@@ -6,31 +6,35 @@ $app_secret = "<CLIENT_SECRET>";
|
|
|
6
6
|
$fidor_oauth_url= "<FIDOR_OAUTH_URL>"; # e.g Sandbox: https://aps.fidor.de/oauth / Live: https://apm.fidor.de/oauth
|
|
7
7
|
$fidor_api_url = "<FIDOR_API_URL>"; # e.g Sandbox: https://aps.fidor.de / Live: https://api.fidor.de
|
|
8
8
|
|
|
9
|
-
|
|
10
9
|
$code = $_REQUEST["code"];
|
|
11
10
|
|
|
12
11
|
# 1. redirect to authorize url
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
12
|
+
if(empty($code) || $code == '') {
|
|
13
|
+
$dialog_url = $fidor_oauth_url . "/authorize?" .
|
|
14
|
+
"client_id=". $app_id .
|
|
15
|
+
"&redirect_uri=" . urlencode($app_url) .
|
|
16
|
+
"&state=1234&response_type=code";
|
|
17
|
+
|
|
18
|
+
echo("<script> top.location.href='" . $dialog_url . "'</script>");
|
|
19
|
+
}else{
|
|
21
20
|
# 2. build url to get the access token
|
|
22
21
|
$token_url = $fidor_oauth_url . "/token";
|
|
23
22
|
|
|
24
23
|
$data = array('client_id' => $app_id,
|
|
25
|
-
|
|
24
|
+
//'client_secret' => $app_secret, deprecated use safe Basic Auth header instead
|
|
26
25
|
'code' => $code,
|
|
27
26
|
'redirect_uri' => urlencode($app_url),
|
|
28
27
|
'grant_type' => 'authorization_code'
|
|
29
28
|
);
|
|
29
|
+
//Authorization Header with the value "Basic " + base64encode(username + ":" + password)
|
|
30
|
+
$basic_auth = base64_encode($app_id.":".$app_secret );
|
|
31
|
+
// build header
|
|
32
|
+
$headers = "Content-type: application/x-www-form-urlencoded\r\n" .
|
|
33
|
+
"Authorization: Basic ".$basic_auth."\r\n";
|
|
30
34
|
// use key 'http' even if you send the request to https://...
|
|
31
35
|
$options = array(
|
|
32
36
|
'http' => array(
|
|
33
|
-
'header' =>
|
|
37
|
+
'header' => $headers,
|
|
34
38
|
'method' => 'POST',
|
|
35
39
|
'content' => http_build_query($data),
|
|
36
40
|
),
|
|
@@ -47,5 +51,5 @@ $code = $_REQUEST["code"];
|
|
|
47
51
|
<p>Now use the access token in the request header in your favorite PHP HTTP method or via CURL: </p>
|
|
48
52
|
<blockquote>curl -v -H \"Authorization: Bearer ".$resp->access_token."\" -H \"Accept: application/vnd.fidor.de; version=1,text/json\" ".$fidor_api_url."/transactions
|
|
49
53
|
</blockquote>");
|
|
50
|
-
|
|
54
|
+
}
|
|
51
55
|
?>
|
|
@@ -21,7 +21,6 @@ get '/' do
|
|
|
21
21
|
post_params = { client_id: @client_id,
|
|
22
22
|
redirect_uri: CGI::escape(@app_url),
|
|
23
23
|
code: code,
|
|
24
|
-
#client_secret: @client_secret,
|
|
25
24
|
grant_type: 'authorization_code' }
|
|
26
25
|
auth = {:username => @client_id, :password => @client_secret}
|
|
27
26
|
resp = HTTParty.post(token_url, body: post_params, basic_auth: auth )
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: fidor_starter_kits
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.
|
|
4
|
+
version: 0.5.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Georg Leciejewski
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2016-01-25 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: rubyzip
|