RubyGems - grape_oauth2 - Versions diffs - 0.1.1 - Mend

grape_oauth2 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (93) hide show

checksums.yaml +7 -0
data/.gitignore +11 -0
data/.rspec +2 -0
data/.rubocop.yml +18 -0
data/.travis.yml +42 -0
data/Gemfile +23 -0
data/README.md +820 -0
data/Rakefile +11 -0
data/gemfiles/active_record.rb +25 -0
data/gemfiles/mongoid.rb +14 -0
data/gemfiles/sequel.rb +24 -0
data/grape_oauth2.gemspec +27 -0
data/grape_oauth2.png +0 -0
data/lib/grape_oauth2.rb +129 -0
data/lib/grape_oauth2/configuration.rb +143 -0
data/lib/grape_oauth2/configuration/class_accessors.rb +36 -0
data/lib/grape_oauth2/configuration/validation.rb +71 -0
data/lib/grape_oauth2/endpoints/authorize.rb +34 -0
data/lib/grape_oauth2/endpoints/token.rb +72 -0
data/lib/grape_oauth2/gem_version.rb +24 -0
data/lib/grape_oauth2/generators/authorization.rb +44 -0
data/lib/grape_oauth2/generators/base.rb +26 -0
data/lib/grape_oauth2/generators/token.rb +62 -0
data/lib/grape_oauth2/helpers/access_token_helpers.rb +54 -0
data/lib/grape_oauth2/helpers/oauth_params.rb +41 -0
data/lib/grape_oauth2/mixins/active_record/access_grant.rb +47 -0
data/lib/grape_oauth2/mixins/active_record/access_token.rb +75 -0
data/lib/grape_oauth2/mixins/active_record/client.rb +35 -0
data/lib/grape_oauth2/mixins/mongoid/access_grant.rb +58 -0
data/lib/grape_oauth2/mixins/mongoid/access_token.rb +88 -0
data/lib/grape_oauth2/mixins/mongoid/client.rb +41 -0
data/lib/grape_oauth2/mixins/sequel/access_grant.rb +68 -0
data/lib/grape_oauth2/mixins/sequel/access_token.rb +86 -0
data/lib/grape_oauth2/mixins/sequel/client.rb +46 -0
data/lib/grape_oauth2/responses/authorization.rb +10 -0
data/lib/grape_oauth2/responses/base.rb +56 -0
data/lib/grape_oauth2/responses/token.rb +10 -0
data/lib/grape_oauth2/scopes.rb +74 -0
data/lib/grape_oauth2/strategies/authorization_code.rb +38 -0
data/lib/grape_oauth2/strategies/base.rb +47 -0
data/lib/grape_oauth2/strategies/client_credentials.rb +20 -0
data/lib/grape_oauth2/strategies/password.rb +22 -0
data/lib/grape_oauth2/strategies/refresh_token.rb +47 -0
data/lib/grape_oauth2/unique_token.rb +20 -0
data/lib/grape_oauth2/version.rb +14 -0
data/spec/configuration/config_spec.rb +231 -0
data/spec/configuration/version_spec.rb +12 -0
data/spec/dummy/endpoints/custom_authorization.rb +25 -0
data/spec/dummy/endpoints/custom_token.rb +35 -0
data/spec/dummy/endpoints/status.rb +25 -0
data/spec/dummy/grape_oauth2_config.rb +11 -0
data/spec/dummy/orm/active_record/app/config/db.rb +7 -0
data/spec/dummy/orm/active_record/app/models/access_code.rb +3 -0
data/spec/dummy/orm/active_record/app/models/access_token.rb +3 -0
data/spec/dummy/orm/active_record/app/models/application.rb +3 -0
data/spec/dummy/orm/active_record/app/models/application_record.rb +3 -0
data/spec/dummy/orm/active_record/app/models/user.rb +10 -0
data/spec/dummy/orm/active_record/app/twitter.rb +36 -0
data/spec/dummy/orm/active_record/config.ru +7 -0
data/spec/dummy/orm/active_record/db/schema.rb +53 -0
data/spec/dummy/orm/mongoid/app/config/db.rb +6 -0
data/spec/dummy/orm/mongoid/app/config/mongoid.yml +21 -0
data/spec/dummy/orm/mongoid/app/models/access_code.rb +3 -0
data/spec/dummy/orm/mongoid/app/models/access_token.rb +3 -0
data/spec/dummy/orm/mongoid/app/models/application.rb +3 -0
data/spec/dummy/orm/mongoid/app/models/user.rb +11 -0
data/spec/dummy/orm/mongoid/app/twitter.rb +34 -0
data/spec/dummy/orm/mongoid/config.ru +5 -0
data/spec/dummy/orm/sequel/app/config/db.rb +1 -0
data/spec/dummy/orm/sequel/app/models/access_code.rb +4 -0
data/spec/dummy/orm/sequel/app/models/access_token.rb +4 -0
data/spec/dummy/orm/sequel/app/models/application.rb +4 -0
data/spec/dummy/orm/sequel/app/models/application_record.rb +2 -0
data/spec/dummy/orm/sequel/app/models/user.rb +11 -0
data/spec/dummy/orm/sequel/app/twitter.rb +47 -0
data/spec/dummy/orm/sequel/config.ru +5 -0
data/spec/dummy/orm/sequel/db/schema.rb +50 -0
data/spec/lib/scopes_spec.rb +50 -0
data/spec/mixins/active_record/access_token_spec.rb +185 -0
data/spec/mixins/active_record/client_spec.rb +95 -0
data/spec/mixins/mongoid/access_token_spec.rb +185 -0
data/spec/mixins/mongoid/client_spec.rb +95 -0
data/spec/mixins/sequel/access_token_spec.rb +185 -0
data/spec/mixins/sequel/client_spec.rb +96 -0
data/spec/requests/flows/authorization_code_spec.rb +67 -0
data/spec/requests/flows/client_credentials_spec.rb +101 -0
data/spec/requests/flows/password_spec.rb +210 -0
data/spec/requests/flows/refresh_token_spec.rb +222 -0
data/spec/requests/flows/revoke_token_spec.rb +103 -0
data/spec/requests/protected_resources_spec.rb +64 -0
data/spec/spec_helper.rb +60 -0
data/spec/support/api_helper.rb +11 -0
metadata +257 -0

data/spec/configuration/version_spec.rb ADDED Viewed

@@ -0,0 +1,12 @@
+require 'spec_helper'
+describe 'Grape::OAuth2 Version' do
+  it 'has a version string' do
+    expect(Grape::OAuth2::VERSION::STRING).to be_present
+  end
+  it 'returns version as an instance of Gem::Version' do
+    expect(Grape::OAuth2.gem_version).to be_an_instance_of(Gem::Version)
+    expect(Grape::OAuth2.version).to be_an_instance_of(Gem::Version)
+  end
+end

data/spec/dummy/endpoints/custom_authorization.rb ADDED Viewed

@@ -0,0 +1,25 @@
+module Twitter
+  module Endpoints
+    class CustomAuthorization < ::Grape::API
+      helpers Grape::OAuth2::Helpers::OAuthParams
+      namespace :oauth do
+        params do
+          use :oauth_authorization_params
+        end
+        post :custom_authorize do
+          response = Grape::OAuth2::Generators::Authorization.generate_for(env) do |request, response|
+            request.unsupported_response_type!
+          end
+          # Status
+          status response.status
+          # Body
+          body response.body
+        end
+      end
+    end
+  end
+end

data/spec/dummy/endpoints/custom_token.rb ADDED Viewed

@@ -0,0 +1,35 @@
+module Twitter
+  module Endpoints
+    class CustomToken < ::Grape::API
+      helpers Grape::OAuth2::Helpers::OAuthParams
+      namespace :oauth do
+        params do
+          use :oauth_token_params
+        end
+        post :custom_token do
+          token_response = Grape::OAuth2::Generators::Token.generate_for(env) do |request, response|
+            # Custom client authentication:
+            client = Grape::OAuth2::Strategies::Base.authenticate_client(request)
+            request.invalid_client! if client.nil? || client.name != 'Admin'
+            resource_owner = Grape::OAuth2::Strategies::Base.authenticate_resource_owner(client, request)
+            request.invalid_grant! if resource_owner.nil?
+            token = AccessToken.create_for(client, resource_owner, request.scope.join(' '))
+            response.access_token = Grape::OAuth2::Strategies::Base.expose_to_bearer_token(token)
+          end
+          status token_response.status
+          token_response.headers.each do |key, value|
+            header key, value
+          end
+          body token_response.body
+        end
+      end
+    end
+  end
+end

data/spec/dummy/endpoints/status.rb ADDED Viewed

@@ -0,0 +1,25 @@
+module Twitter
+  module Endpoints
+    class Status < Grape::API
+      before do
+        access_token_required!
+      end
+      resources :status do
+        get do
+          { value: 'Nice day!', current_user: current_resource_owner.username }
+        end
+        get :single_scope, scopes: [:read] do
+          { value: 'Access granted' }
+        end
+        get :multiple_scopes, scopes: [:read, :write] do
+          access_token_required!
+          { value: 'Access granted' }
+        end
+      end
+    end
+  end
+end

data/spec/dummy/grape_oauth2_config.rb ADDED Viewed

@@ -0,0 +1,11 @@
+# Common config across all the ORMs
+Grape::OAuth2.configure do |config|
+  config.client_class_name = 'Application'
+  config.access_token_class_name = 'AccessToken'
+  config.resource_owner_class_name = 'User'
+  config.access_grant_class_name = 'AccessCode'
+  config.realm = 'Custom Realm'
+  config.allowed_grant_types << 'refresh_token'
+end

data/spec/dummy/orm/active_record/app/config/db.rb ADDED Viewed

@@ -0,0 +1,7 @@
+OTR::ActiveRecord.configure_from_hash!(adapter: 'sqlite3', database: ':memory:')
+::ActiveRecord::Base.default_timezone = :utc
+::ActiveRecord::Base.logger = ENV['RAILS_ENV'] == 'test' ? nil : Logger.new(STDOUT)
+::ActiveRecord::Migration.verbose = false
+load File.expand_path('../../../db/schema.rb', __FILE__)

data/spec/dummy/orm/active_record/app/models/access_code.rb ADDED Viewed

@@ -0,0 +1,3 @@
+class AccessCode < ApplicationRecord
+  include Grape::OAuth2::ActiveRecord::AccessGrant
+end

data/spec/dummy/orm/active_record/app/models/access_token.rb ADDED Viewed

@@ -0,0 +1,3 @@
+class AccessToken < ApplicationRecord
+  include Grape::OAuth2::ActiveRecord::AccessToken
+end

data/spec/dummy/orm/active_record/app/models/application.rb ADDED Viewed

@@ -0,0 +1,3 @@
+class Application < ApplicationRecord
+  include Grape::OAuth2::ActiveRecord::Client
+end

data/spec/dummy/orm/active_record/app/models/application_record.rb ADDED Viewed

@@ -0,0 +1,3 @@
+class ApplicationRecord < ::ActiveRecord::Base
+  self.abstract_class = true
+end

data/spec/dummy/orm/active_record/app/models/user.rb ADDED Viewed

@@ -0,0 +1,10 @@
+class User < ApplicationRecord
+  has_secure_password
+  def self.oauth_authenticate(_client, username, password)
+    user = find_by(username: username)
+    return if user.nil?
+    user.authenticate(password)
+  end
+end

data/spec/dummy/orm/active_record/app/twitter.rb ADDED Viewed

@@ -0,0 +1,36 @@
+require 'otr-activerecord'
+require 'grape'
+require File.expand_path('../../../../../../lib/grape_oauth2', __FILE__)
+# Database
+load File.expand_path('../config/db.rb', __FILE__)
+# Grape::OAuth2 config
+load File.expand_path('../../../../grape_oauth2_config.rb', __FILE__)
+# Models
+require_relative 'models/application_record'
+require_relative 'models/access_token'
+require_relative 'models/access_code'
+require_relative 'models/application'
+require_relative 'models/user'
+# Twitter Endpoints
+require_relative '../../../endpoints/custom_token'
+require_relative '../../../endpoints/custom_authorization'
+require_relative '../../../endpoints/status'
+module Twitter
+  class API < Grape::API
+    version 'v1', using: :path
+    format :json
+    prefix :api
+    include Grape::OAuth2.api
+    mount Twitter::Endpoints::Status
+    mount Twitter::Endpoints::CustomToken
+    mount Twitter::Endpoints::CustomAuthorization
+  end
+end

data/spec/dummy/orm/active_record/config.ru ADDED Viewed

@@ -0,0 +1,7 @@
+$:.unshift(File.dirname(__FILE__))
+require 'app/twitter'
+use OTR::ActiveRecord::ConnectionManagement
+run Twitter::API

data/spec/dummy/orm/active_record/db/schema.rb ADDED Viewed

@@ -0,0 +1,53 @@
+ActiveRecord::Schema.define(version: 3) do
+  create_table :users do |t|
+    t.string :name
+    t.string :username
+    t.string :password_digest
+  end
+  create_table :applications do |t|
+    t.string :name
+    t.string :key
+    t.string :secret
+    t.string :redirect_uri
+    t.timestamps null: false
+  end
+  add_index :applications, :key, unique: true
+  create_table :access_tokens do |t|
+    t.integer :resource_owner_id
+    t.integer :client_id
+    t.string :token, null: false
+    t.string :refresh_token
+    t.string :scopes
+    t.datetime :expires_at
+    t.datetime :revoked_at
+    t.datetime :created_at, null: false
+  end
+  create_table :access_codes do |t|
+    t.integer :resource_owner_id
+    t.integer :client_id
+    t.string :token, null: false
+    t.string :redirect_uri
+    t.string :scopes
+    t.datetime :expires_at
+    t.datetime :revoked_at
+    t.datetime :created_at, null: false
+  end
+  add_index :access_tokens, :token, unique: true
+  add_index :access_tokens, :resource_owner_id
+  add_index :access_tokens, :client_id
+  add_index :access_tokens, :refresh_token, unique: true
+  add_index :access_codes, :token, unique: true
+  add_index :access_codes, :resource_owner_id
+  add_index :access_codes, :client_id
+end

data/spec/dummy/orm/mongoid/app/config/db.rb ADDED Viewed

@@ -0,0 +1,6 @@
+Mongoid.load!(File.expand_path('../mongoid.yml', __FILE__), :test)
+Mongoid.raise_not_found_error = false
+Mongoid.logger.level = Logger::ERROR
+Mongo::Logger.logger.level = Logger::ERROR

data/spec/dummy/orm/mongoid/app/config/mongoid.yml ADDED Viewed

@@ -0,0 +1,21 @@
+development:
+  clients:
+    default:
+      database: mongoid-dev
+      hosts:
+        - localhost:27017
+      options:
+        raise_not_found_error: false
+        write:
+          w: 1
+test:
+  clients:
+    default:
+      database: mongoid-test
+      hosts:
+        - localhost:27017
+      options:
+        raise_not_found_error: false
+        write:
+          w: 1

data/spec/dummy/orm/mongoid/app/models/access_code.rb ADDED Viewed

@@ -0,0 +1,3 @@
+class AccessCode
+  include Grape::OAuth2::Mongoid::AccessGrant
+end

data/spec/dummy/orm/mongoid/app/models/access_token.rb ADDED Viewed

@@ -0,0 +1,3 @@
+class AccessToken
+  include Grape::OAuth2::Mongoid::AccessToken
+end

data/spec/dummy/orm/mongoid/app/models/application.rb ADDED Viewed

@@ -0,0 +1,3 @@
+class Application
+  include Grape::OAuth2::Mongoid::Client
+end

data/spec/dummy/orm/mongoid/app/models/user.rb ADDED Viewed

@@ -0,0 +1,11 @@
+class User
+  include Mongoid::Document
+  include Mongoid::Timestamps
+  field :username, type: String
+  field :password, type: String
+  def self.oauth_authenticate(_client, username, password)
+    find_by(username: username, password: password)
+  end
+end

data/spec/dummy/orm/mongoid/app/twitter.rb ADDED Viewed

@@ -0,0 +1,34 @@
+require 'grape'
+require File.expand_path('../../../../../../lib/grape_oauth2', __FILE__)
+# Database
+load File.expand_path('../config/db.rb', __FILE__)
+# Grape::OAuth2 config
+load File.expand_path('../../../../grape_oauth2_config.rb', __FILE__)
+# Models
+require_relative 'models/access_token'
+require_relative 'models/access_code'
+require_relative 'models/application'
+require_relative 'models/user'
+# Twitter Endpoints
+require_relative '../../../endpoints/custom_token'
+require_relative '../../../endpoints/custom_authorization'
+require_relative '../../../endpoints/status'
+module Twitter
+  class API < Grape::API
+    version 'v1', using: :path
+    format :json
+    prefix :api
+    include Grape::OAuth2.api
+    mount Twitter::Endpoints::Status
+    mount Twitter::Endpoints::CustomToken
+    mount Twitter::Endpoints::CustomAuthorization
+  end
+end

data/spec/dummy/orm/mongoid/config.ru ADDED Viewed

@@ -0,0 +1,5 @@
+$:.unshift(File.dirname(__FILE__))
+require 'app/twitter'
+run Twitter::API

data/spec/dummy/orm/sequel/app/config/db.rb ADDED Viewed

	@@ -0,0 +1 @@
1	+ load File.expand_path('../../../db/schema.rb', __FILE__)

data/spec/dummy/orm/sequel/app/models/access_code.rb ADDED Viewed

@@ -0,0 +1,4 @@
+class AccessCode < ApplicationRecord
+  set_dataset :access_codes
+  include Grape::OAuth2::Sequel::AccessGrant
+end

data/spec/dummy/orm/sequel/app/models/access_token.rb ADDED Viewed

@@ -0,0 +1,4 @@
+class AccessToken < ApplicationRecord
+  set_dataset :access_tokens
+  include Grape::OAuth2::Sequel::AccessToken
+end

data/spec/dummy/orm/sequel/app/models/application.rb ADDED Viewed

@@ -0,0 +1,4 @@
+class Application < ApplicationRecord
+  set_dataset :applications
+  include Grape::OAuth2::Sequel::Client
+end

data/spec/dummy/orm/sequel/app/models/application_record.rb ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ class ApplicationRecord < ::Sequel::Model
2	+ end

data/spec/dummy/orm/sequel/app/models/user.rb ADDED Viewed

@@ -0,0 +1,11 @@
+class User < ApplicationRecord
+  set_dataset :users
+  plugin :secure_password, include_validations: false
+  def self.oauth_authenticate(_client, username, password)
+    user = find(username: username)
+    return if user.nil?
+    user.authenticate(password)
+  end
+end

data/spec/dummy/orm/sequel/app/twitter.rb ADDED Viewed

@@ -0,0 +1,47 @@
+require 'grape'
+require File.expand_path('../../../../../../lib/grape_oauth2', __FILE__)
+# SQLite memory database
+DB = if defined?(JRUBY_VERSION)
+       Sequel.connect('jdbc:sqlite::memory:')
+     else
+       Sequel.sqlite
+     end
+# Database
+load File.expand_path('../config/db.rb', __FILE__)
+# Grape::OAuth2 config
+load File.expand_path('../../../../grape_oauth2_config.rb', __FILE__)
+# Models
+require_relative 'models/application_record'
+require_relative 'models/access_token'
+require_relative 'models/access_code'
+require_relative 'models/application'
+require_relative 'models/user'
+# Twitter Endpoints
+require_relative '../../../endpoints/custom_token'
+require_relative '../../../endpoints/custom_authorization'
+require_relative '../../../endpoints/status'
+module Twitter
+  class API < Grape::API
+    version 'v1', using: :path
+    format :json
+    prefix :api
+    use *Grape::OAuth2.middleware
+    helpers Grape::OAuth2::Helpers::AccessTokenHelpers
+    mount Grape::OAuth2::Endpoints::Token
+    mount Grape::OAuth2::Endpoints::Authorize
+    mount Twitter::Endpoints::Status
+    mount Twitter::Endpoints::CustomToken
+    mount Twitter::Endpoints::CustomAuthorization
+  end
+end