grape_oauth2 0.1.1

data/spec/configuration/version_spec.rb

@@ -0,0 +1,12 @@
+require 'spec_helper'
+
+describe 'Grape::OAuth2 Version' do
+  it 'has a version string' do
+    expect(Grape::OAuth2::VERSION::STRING).to be_present
+  end
+
+  it 'returns version as an instance of Gem::Version' do
+    expect(Grape::OAuth2.gem_version).to be_an_instance_of(Gem::Version)
+    expect(Grape::OAuth2.version).to be_an_instance_of(Gem::Version)
+  end
+end

data/spec/dummy/endpoints/custom_authorization.rb

@@ -0,0 +1,25 @@
+module Twitter
+  module Endpoints
+    class CustomAuthorization < ::Grape::API
+      helpers Grape::OAuth2::Helpers::OAuthParams
+
+      namespace :oauth do
+        params do
+          use :oauth_authorization_params
+        end
+
+        post :custom_authorize do
+          response = Grape::OAuth2::Generators::Authorization.generate_for(env) do |request, response|
+            request.unsupported_response_type!
+          end
+
+          # Status
+          status response.status
+
+          # Body
+          body response.body
+        end
+      end
+    end
+  end
+end

data/spec/dummy/endpoints/custom_token.rb

@@ -0,0 +1,35 @@
+module Twitter
+  module Endpoints
+    class CustomToken < ::Grape::API
+      helpers Grape::OAuth2::Helpers::OAuthParams
+
+      namespace :oauth do
+        params do
+          use :oauth_token_params
+        end
+
+        post :custom_token do
+          token_response = Grape::OAuth2::Generators::Token.generate_for(env) do |request, response|
+            # Custom client authentication:
+            client = Grape::OAuth2::Strategies::Base.authenticate_client(request)
+            request.invalid_client! if client.nil? || client.name != 'Admin'
+
+            resource_owner = Grape::OAuth2::Strategies::Base.authenticate_resource_owner(client, request)
+            request.invalid_grant! if resource_owner.nil?
+
+            token = AccessToken.create_for(client, resource_owner, request.scope.join(' '))
+            response.access_token = Grape::OAuth2::Strategies::Base.expose_to_bearer_token(token)
+          end
+
+          status token_response.status
+
+          token_response.headers.each do |key, value|
+            header key, value
+          end
+
+          body token_response.body
+        end
+      end
+    end
+  end
+end

data/spec/dummy/endpoints/status.rb

@@ -0,0 +1,25 @@
+module Twitter
+  module Endpoints
+    class Status < Grape::API
+      before do
+        access_token_required!
+      end
+
+      resources :status do
+        get do
+          { value: 'Nice day!', current_user: current_resource_owner.username }
+        end
+
+        get :single_scope, scopes: [:read] do
+          { value: 'Access granted' }
+        end
+
+        get :multiple_scopes, scopes: [:read, :write] do
+          access_token_required!
+
+          { value: 'Access granted' }
+        end
+      end
+    end
+  end
+end

data/spec/dummy/grape_oauth2_config.rb

@@ -0,0 +1,11 @@
+# Common config across all the ORMs
+Grape::OAuth2.configure do |config|
+  config.client_class_name = 'Application'
+  config.access_token_class_name = 'AccessToken'
+  config.resource_owner_class_name = 'User'
+  config.access_grant_class_name = 'AccessCode'
+
+  config.realm = 'Custom Realm'
+
+  config.allowed_grant_types << 'refresh_token'
+end

data/spec/dummy/orm/active_record/app/config/db.rb

@@ -0,0 +1,7 @@
+OTR::ActiveRecord.configure_from_hash!(adapter: 'sqlite3', database: ':memory:')
+
+::ActiveRecord::Base.default_timezone = :utc
+::ActiveRecord::Base.logger = ENV['RAILS_ENV'] == 'test' ? nil : Logger.new(STDOUT)
+
+::ActiveRecord::Migration.verbose = false
+load File.expand_path('../../../db/schema.rb', __FILE__)

data/spec/dummy/orm/active_record/app/models/access_code.rb

@@ -0,0 +1,3 @@
+class AccessCode < ApplicationRecord
+  include Grape::OAuth2::ActiveRecord::AccessGrant
+end

data/spec/dummy/orm/active_record/app/models/access_token.rb

@@ -0,0 +1,3 @@
+class AccessToken < ApplicationRecord
+  include Grape::OAuth2::ActiveRecord::AccessToken
+end

data/spec/dummy/orm/active_record/app/models/application.rb

@@ -0,0 +1,3 @@
+class Application < ApplicationRecord
+  include Grape::OAuth2::ActiveRecord::Client
+end

data/spec/dummy/orm/active_record/app/models/application_record.rb

@@ -0,0 +1,3 @@
+class ApplicationRecord < ::ActiveRecord::Base
+  self.abstract_class = true
+end

data/spec/dummy/orm/active_record/app/models/user.rb

@@ -0,0 +1,10 @@
+class User < ApplicationRecord
+  has_secure_password
+
+  def self.oauth_authenticate(_client, username, password)
+    user = find_by(username: username)
+    return if user.nil?
+
+    user.authenticate(password)
+  end
+end

data/spec/dummy/orm/active_record/app/twitter.rb

@@ -0,0 +1,36 @@
+require 'otr-activerecord'
+require 'grape'
+
+require File.expand_path('../../../../../../lib/grape_oauth2', __FILE__)
+
+# Database
+load File.expand_path('../config/db.rb', __FILE__)
+
+# Grape::OAuth2 config
+load File.expand_path('../../../../grape_oauth2_config.rb', __FILE__)
+
+# Models
+require_relative 'models/application_record'
+require_relative 'models/access_token'
+require_relative 'models/access_code'
+require_relative 'models/application'
+require_relative 'models/user'
+
+# Twitter Endpoints
+require_relative '../../../endpoints/custom_token'
+require_relative '../../../endpoints/custom_authorization'
+require_relative '../../../endpoints/status'
+
+module Twitter
+  class API < Grape::API
+    version 'v1', using: :path
+    format :json
+    prefix :api
+
+    include Grape::OAuth2.api
+
+    mount Twitter::Endpoints::Status
+    mount Twitter::Endpoints::CustomToken
+    mount Twitter::Endpoints::CustomAuthorization
+  end
+end

data/spec/dummy/orm/active_record/config.ru

@@ -0,0 +1,7 @@
+$:.unshift(File.dirname(__FILE__))
+
+require 'app/twitter'
+
+use OTR::ActiveRecord::ConnectionManagement
+
+run Twitter::API

data/spec/dummy/orm/active_record/db/schema.rb

@@ -0,0 +1,53 @@
+ActiveRecord::Schema.define(version: 3) do
+  create_table :users do |t|
+    t.string :name
+    t.string :username
+    t.string :password_digest
+  end
+
+  create_table :applications do |t|
+    t.string :name
+    t.string :key
+    t.string :secret
+    t.string :redirect_uri
+
+    t.timestamps null: false
+  end
+
+  add_index :applications, :key, unique: true
+
+  create_table :access_tokens do |t|
+    t.integer :resource_owner_id
+    t.integer :client_id
+
+    t.string :token, null: false
+    t.string :refresh_token
+    t.string :scopes
+
+    t.datetime :expires_at
+    t.datetime :revoked_at
+    t.datetime :created_at, null: false
+  end
+
+  create_table :access_codes do |t|
+    t.integer :resource_owner_id
+    t.integer :client_id
+
+    t.string :token, null: false
+    t.string :redirect_uri
+    t.string :scopes
+
+    t.datetime :expires_at
+    t.datetime :revoked_at
+    t.datetime :created_at, null: false
+  end
+
+  add_index :access_tokens, :token, unique: true
+  add_index :access_tokens, :resource_owner_id
+  add_index :access_tokens, :client_id
+  add_index :access_tokens, :refresh_token, unique: true
+
+  add_index :access_codes, :token, unique: true
+  add_index :access_codes, :resource_owner_id
+  add_index :access_codes, :client_id
+end

data/spec/dummy/orm/mongoid/app/config/db.rb

@@ -0,0 +1,6 @@
+Mongoid.load!(File.expand_path('../mongoid.yml', __FILE__), :test)
+
+Mongoid.raise_not_found_error = false
+
+Mongoid.logger.level = Logger::ERROR
+Mongo::Logger.logger.level = Logger::ERROR

data/spec/dummy/orm/mongoid/app/config/mongoid.yml

@@ -0,0 +1,21 @@
+development:
+  clients:
+    default:
+      database: mongoid-dev
+      hosts:
+        - localhost:27017
+      options:
+        raise_not_found_error: false
+        write:
+          w: 1
+
+test:
+  clients:
+    default:
+      database: mongoid-test
+      hosts:
+        - localhost:27017
+      options:
+        raise_not_found_error: false
+        write:
+          w: 1

data/spec/dummy/orm/mongoid/app/models/access_code.rb

@@ -0,0 +1,3 @@
+class AccessCode
+  include Grape::OAuth2::Mongoid::AccessGrant
+end

data/spec/dummy/orm/mongoid/app/models/access_token.rb

@@ -0,0 +1,3 @@
+class AccessToken
+  include Grape::OAuth2::Mongoid::AccessToken
+end

data/spec/dummy/orm/mongoid/app/models/application.rb

@@ -0,0 +1,3 @@
+class Application
+  include Grape::OAuth2::Mongoid::Client
+end

data/spec/dummy/orm/mongoid/app/models/user.rb

@@ -0,0 +1,11 @@
+class User
+  include Mongoid::Document
+  include Mongoid::Timestamps
+
+  field :username, type: String
+  field :password, type: String
+
+  def self.oauth_authenticate(_client, username, password)
+    find_by(username: username, password: password)
+  end
+end

data/spec/dummy/orm/mongoid/app/twitter.rb

@@ -0,0 +1,34 @@
+require 'grape'
+
+require File.expand_path('../../../../../../lib/grape_oauth2', __FILE__)
+
+# Database
+load File.expand_path('../config/db.rb', __FILE__)
+
+# Grape::OAuth2 config
+load File.expand_path('../../../../grape_oauth2_config.rb', __FILE__)
+
+# Models
+require_relative 'models/access_token'
+require_relative 'models/access_code'
+require_relative 'models/application'
+require_relative 'models/user'
+
+# Twitter Endpoints
+require_relative '../../../endpoints/custom_token'
+require_relative '../../../endpoints/custom_authorization'
+require_relative '../../../endpoints/status'
+
+module Twitter
+  class API < Grape::API
+    version 'v1', using: :path
+    format :json
+    prefix :api
+
+    include Grape::OAuth2.api
+
+    mount Twitter::Endpoints::Status
+    mount Twitter::Endpoints::CustomToken
+    mount Twitter::Endpoints::CustomAuthorization
+  end
+end

data/spec/dummy/orm/mongoid/config.ru

@@ -0,0 +1,5 @@
+$:.unshift(File.dirname(__FILE__))
+
+require 'app/twitter'
+
+run Twitter::API

data/spec/dummy/orm/sequel/app/config/db.rb

@@ -0,0 +1 @@
+load File.expand_path('../../../db/schema.rb', __FILE__)

data/spec/dummy/orm/sequel/app/models/access_code.rb

@@ -0,0 +1,4 @@
+class AccessCode < ApplicationRecord
+  set_dataset :access_codes
+  include Grape::OAuth2::Sequel::AccessGrant
+end

data/spec/dummy/orm/sequel/app/models/access_token.rb

@@ -0,0 +1,4 @@
+class AccessToken < ApplicationRecord
+  set_dataset :access_tokens
+  include Grape::OAuth2::Sequel::AccessToken
+end

data/spec/dummy/orm/sequel/app/models/application.rb

@@ -0,0 +1,4 @@
+class Application < ApplicationRecord
+  set_dataset :applications
+  include Grape::OAuth2::Sequel::Client
+end

data/spec/dummy/orm/sequel/app/models/application_record.rb

@@ -0,0 +1,2 @@
+class ApplicationRecord < ::Sequel::Model
+end

data/spec/dummy/orm/sequel/app/models/user.rb

@@ -0,0 +1,11 @@
+class User < ApplicationRecord
+  set_dataset :users
+  plugin :secure_password, include_validations: false
+
+  def self.oauth_authenticate(_client, username, password)
+    user = find(username: username)
+    return if user.nil?
+
+    user.authenticate(password)
+  end
+end

data/spec/dummy/orm/sequel/app/twitter.rb

@@ -0,0 +1,47 @@
+require 'grape'
+
+require File.expand_path('../../../../../../lib/grape_oauth2', __FILE__)
+
+# SQLite memory database
+DB = if defined?(JRUBY_VERSION)
+       Sequel.connect('jdbc:sqlite::memory:')
+     else
+       Sequel.sqlite
+     end
+
+# Database
+load File.expand_path('../config/db.rb', __FILE__)
+
+# Grape::OAuth2 config
+load File.expand_path('../../../../grape_oauth2_config.rb', __FILE__)
+
+# Models
+require_relative 'models/application_record'
+require_relative 'models/access_token'
+require_relative 'models/access_code'
+require_relative 'models/application'
+require_relative 'models/user'
+
+# Twitter Endpoints
+require_relative '../../../endpoints/custom_token'
+require_relative '../../../endpoints/custom_authorization'
+require_relative '../../../endpoints/status'
+
+module Twitter
+  class API < Grape::API
+    version 'v1', using: :path
+    format :json
+    prefix :api
+
+    use *Grape::OAuth2.middleware
+
+    helpers Grape::OAuth2::Helpers::AccessTokenHelpers
+
+    mount Grape::OAuth2::Endpoints::Token
+    mount Grape::OAuth2::Endpoints::Authorize
+
+    mount Twitter::Endpoints::Status
+    mount Twitter::Endpoints::CustomToken
+    mount Twitter::Endpoints::CustomAuthorization
+  end
+end