gds-sso 1.0.0 → 1.1.0

data/spec/requests/end_to_end_spec.rb

@@ -59,13 +59,12 @@ describe "Integration of client using GDS-SSO with signonotron" do
       page.should have_content('restricted kablooie')
     end
 
-    specify "access to a page that requires signin permission granted " do
+    specify "access to a page that requires signin permission granted" do
       # First we login to authorise the app
       visit "http://#{@client_host}/this_requires_signin_permission"
       fill_in "Email", :with => "test@example-client.com"
       fill_in "Passphrase", :with => "q1w2e3r4t5y6u7i8o9p0"
       click_on "Sign in"
-
       click_authorize
 
       # At this point the app should be authorised, we reset the session to simulate a new browser visit.
@@ -80,6 +79,41 @@ describe "Integration of client using GDS-SSO with signonotron" do
 
       page.should have_content('you have signin permission')
     end
+
+    describe "remotely signed out" do
+      specify "should prevent all access to the application until successful signin" do
+        # First we login and authorise the app
+        visit "http://#{@client_host}/restricted"
+        fill_in "Email", :with => "test@example-client.com"
+        fill_in "Passphrase", :with => "q1w2e3r4t5y6u7i8o9p0"
+        click_on "Sign in"
+        click_authorize
+
+        page.driver.header 'accept', 'text/html'
+        page.should have_content('restricted kablooie')
+
+        # Simulate a POST to /auth/gds/api/users/:uid/reauth by SOOT
+        # This is already tested in api_user_controller_spec.rb
+        user = User.find_by_uid("integration-uid")
+        user.set_remotely_signed_out!
+
+        page.driver.header 'accept', 'text/html'
+
+        # check we can't visit
+        visit "http://#{@client_host}/restricted"
+        page.should have_content('You have been remotely signed out')
+
+        # signin
+        visit "http://#{@client_host}/auth/gds/sign_out" # want to be redirected to SOOT, and then back again
+        fill_in "Email", :with => "test@example-client.com"
+        fill_in "Passphrase", :with => "q1w2e3r4t5y6u7i8o9p0"
+        click_on "Sign in"
+
+        # check we can visit
+        visit "http://#{@client_host}/restricted"
+        page.should have_content('restricted kablooie')
+      end
+    end
   end
 
   describe "API client accesses" do

data/spec/spec_helper.rb

@@ -9,7 +9,7 @@ Bundler.require :default, :development
 
 require 'capybara/rspec'
 
-Combustion.initialize! :action_controller
+Combustion.initialize!
 
 require 'rspec/rails'
 require 'capybara/rails'

metadata

@@ -2,7 +2,7 @@
 name: gds-sso
 version: !ruby/object:Gem::Version 
   prerelease: 
-  version: 1.0.0
+  version: 1.1.0
 platform: ruby
 authors: 
 - Matt Patterson
@@ -11,7 +11,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2012-07-23 00:00:00 Z
+date: 2012-07-24 00:00:00 Z
 dependencies: 
 - !ruby/object:Gem::Dependency 
   name: rails
@@ -145,6 +145,17 @@ dependencies:
   type: :development
   prerelease: false
   version_requirements: *id012
+- !ruby/object:Gem::Dependency 
+  name: sqlite3
+  requirement: &id013 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - "="
+      - !ruby/object:Gem::Version 
+        version: 1.3.6
+  type: :development
+  prerelease: false
+  version_requirements: *id013
 description: Client for GDS' OAuth 2-based SSO
 email: 
 - matt@constituentparts.com
@@ -156,44 +167,45 @@ extensions: []
 extra_rdoc_files: []
 
 files: 
-- app/controllers/authentications_controller.rb
-- app/controllers/api/user_controller.rb
-- app/views/authentications/failure.html.erb
 - app/views/layouts/unauthorised.html.erb
-- app/views/authorisations/cant_signin.html.erb
+- app/views/authentications/failure.html.erb
 - app/views/authorisations/unauthorised.html.erb
+- app/views/authorisations/cant_signin.html.erb
+- app/controllers/api/user_controller.rb
+- app/controllers/authentications_controller.rb
 - config/routes.rb
 - lib/gds-sso.rb
+- lib/gds-sso/controller_methods.rb
+- lib/gds-sso/failure_app.rb
+- lib/gds-sso/config.rb
 - lib/gds-sso/user.rb
-- lib/gds-sso/version.rb
 - lib/gds-sso/warden_config.rb
-- lib/gds-sso/config.rb
-- lib/gds-sso/controller_methods.rb
 - lib/gds-sso/api_access.rb
-- lib/gds-sso/failure_app.rb
+- lib/gds-sso/version.rb
 - README.md
 - Gemfile
 - Rakefile
 - test/api_access_test.rb
-- test/user_test.rb
 - test/test_helper.rb
-- spec/tasks/signonotron_tasks.rake
-- spec/controller/api_user_controller_spec.rb
+- test/user_test.rb
 - spec/requests/end_to_end_spec.rb
 - spec/requests/authentication_soot2.rb
-- spec/spec_helper.rb
-- spec/support/signonotron2_integration_helpers.rb
-- spec/fixtures/integration/signonotron2.sql
-- spec/fixtures/integration/signonotron2_database.yml
 - spec/internal/log/test.log
-- spec/internal/db/schema.rb
 - spec/internal/public/favicon.ico
-- spec/internal/config/database.yml
-- spec/internal/config/initializers/gds-sso.rb
-- spec/internal/config/routes.rb
-- spec/internal/app/controllers/application_controller.rb
 - spec/internal/app/controllers/example_controller.rb
+- spec/internal/app/controllers/application_controller.rb
 - spec/internal/app/models/user.rb
+- spec/internal/config/routes.rb
+- spec/internal/config/initializers/gds-sso.rb
+- spec/internal/config/database.yml
+- spec/internal/db/schema.rb
+- spec/internal/db/combustion_test.sqlite
+- spec/support/signonotron2_integration_helpers.rb
+- spec/fixtures/integration/signonotron2.sql
+- spec/fixtures/integration/signonotron2_database.yml
+- spec/tasks/signonotron_tasks.rake
+- spec/spec_helper.rb
+- spec/controller/api_user_controller_spec.rb
 homepage: https://github.com/alphagov/gds-sso
 licenses: []
 
@@ -207,7 +219,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
-      hash: -3724830657426033067
+      hash: 345014879888302540
       segments: 
       - 0
       version: "0"
@@ -216,7 +228,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
-      hash: -3724830657426033067
+      hash: 345014879888302540
       segments: 
       - 0
       version: "0"
@@ -229,22 +241,23 @@ specification_version: 3
 summary: Client for GDS' OAuth 2-based SSO
 test_files: 
 - test/api_access_test.rb
-- test/user_test.rb
 - test/test_helper.rb
-- spec/tasks/signonotron_tasks.rake
-- spec/controller/api_user_controller_spec.rb
+- test/user_test.rb
 - spec/requests/end_to_end_spec.rb
 - spec/requests/authentication_soot2.rb
-- spec/spec_helper.rb
-- spec/support/signonotron2_integration_helpers.rb
-- spec/fixtures/integration/signonotron2.sql
-- spec/fixtures/integration/signonotron2_database.yml
 - spec/internal/log/test.log
-- spec/internal/db/schema.rb
 - spec/internal/public/favicon.ico
-- spec/internal/config/database.yml
-- spec/internal/config/initializers/gds-sso.rb
-- spec/internal/config/routes.rb
-- spec/internal/app/controllers/application_controller.rb
 - spec/internal/app/controllers/example_controller.rb
+- spec/internal/app/controllers/application_controller.rb
 - spec/internal/app/models/user.rb
+- spec/internal/config/routes.rb
+- spec/internal/config/initializers/gds-sso.rb
+- spec/internal/config/database.yml
+- spec/internal/db/schema.rb
+- spec/internal/db/combustion_test.sqlite
+- spec/support/signonotron2_integration_helpers.rb
+- spec/fixtures/integration/signonotron2.sql
+- spec/fixtures/integration/signonotron2_database.yml
+- spec/tasks/signonotron_tasks.rake
+- spec/spec_helper.rb
+- spec/controller/api_user_controller_spec.rb