RubyGems - houston-oauth-plugin - Versions diffs - 0.5.1 - Mend

houston-oauth-plugin 0.5.1

Files changed (172) hide show

data/generators/oauth_provider/templates/_form.html.erb ADDED Viewed

@@ -0,0 +1,17 @@
+<%%= error_messages_for :client_application %>
+<div class="field">
+  <label for="client_application_name">Name*</label><br/>
+  <%%= f.text_field :name %>
+</div>
+<div class="field">
+  <label for="client_application_url">Main Application URL*</label><br/>
+  <%%= f.text_field :url %>
+</div>
+<div class="field">
+  <label for="client_application_callback_url">Callback URL*</label><br/>
+  <%%= f.text_field :callback_url %>
+</div>
+<div class="field">
+  <label for="client_application_support_url">Support URL</label><br/>
+  <%%= f.text_field :support_url %>
+</div>

data/generators/oauth_provider/templates/_form.html.haml ADDED Viewed

@@ -0,0 +1,21 @@
+=error_messages_for :client_application
+.field
+  %label{:for=>"client_application_name"} Name*
+  %br
+  = f.text_field :name
+.field
+  %label{:for=>"client_application_url"} Main Application URL*
+  %br
+  = f.text_field :url
+.field
+  %label{:for=>"client_application_callback_url"} Callback URL*
+  %br
+  = f.text_field :callback_url
+.field
+  %label{:for=>"client_application_support_url"} Support URL
+  %br
+  = f.text_field :support_url

data/generators/oauth_provider/templates/access_token.rb ADDED Viewed

@@ -0,0 +1,16 @@
+class AccessToken < OauthToken
+  validates_presence_of :user, :secret
+  before_create :set_authorized_at
+  # Implement this to return a hash or array of the capabilities the access token has
+  # This is particularly useful if you have implemented user defined permissions.
+  # def capabilities
+  #   {:invalidate=>"/oauth/invalidate",:capabilities=>"/oauth/capabilities"}
+  # end
+  protected
+  def set_authorized_at
+    self.authorized_at = Time.now
+  end
+end

data/generators/oauth_provider/templates/authorize.html.erb ADDED Viewed

@@ -0,0 +1,14 @@
+<h1>Authorize access to your account</h1>
+<p>Would you like to authorize <%%= link_to @token.client_application.name,@token.client_application.url %> (<%%= link_to @token.client_application.url,@token.client_application.url %>) to access your account?</p>
+<%% form_tag authorize_url do %>
+  <%%= hidden_field_tag "oauth_token", @token.token %>
+  <%%- if params[:oauth_callback] -%>
+  <%%= hidden_field_tag "oauth_callback", params[:oauth_callback] %>
+<%%- end -%>
+<p>
+  <%%= check_box_tag 'authorize' %> authorize access
+</p>
+<p>
+  <%%= submit_tag %>
+</p>
+<%% end %>

data/generators/oauth_provider/templates/authorize.html.haml ADDED Viewed

@@ -0,0 +1,16 @@
+%h1 Authorize access to your account
+%p
+  Would you like to authorize
+  = link_to @token.client_application.name,@token.client_application.url
+  (
+  = link_to @token.client_application.url,@token.client_application.url
+  ) to access your account?
+- form_tag authorize_url do
+  = hidden_field_tag "oauth_token", @token.token
+  - if params[:oauth_callback]
+    = hidden_field_tag "oauth_callback", params[:oauth_callback]
+  %p
+    = check_box_tag 'authorize'
+    authorize access
+  %p
+    = submit_tag

data/generators/oauth_provider/templates/authorize_failure.html.erb ADDED Viewed

	@@ -0,0 +1 @@
1	+ <h1>You have disallowed this request</h1>

data/generators/oauth_provider/templates/authorize_failure.html.haml ADDED Viewed

	@@ -0,0 +1 @@
1	+ %h1 You have disallowed this request

data/generators/oauth_provider/templates/authorize_success.html.erb ADDED Viewed

	@@ -0,0 +1 @@
1	+ <h1>You have allowed this request</h1>

data/generators/oauth_provider/templates/authorize_success.html.haml ADDED Viewed

	@@ -0,0 +1 @@
1	+ %h1 You have allowed this request

data/generators/oauth_provider/templates/client_application.rb ADDED Viewed

@@ -0,0 +1,57 @@
+require 'oauth'
+class ClientApplication < ActiveRecord::Base
+  belongs_to :user
+  has_many :tokens, :class_name => "OauthToken"
+  has_many :access_tokens
+  has_many :oauth2_verifiers
+  has_many :oauth_tokens
+  validates_presence_of :name, :url, :key, :secret
+  validates_uniqueness_of :key
+  before_validation_on_create :generate_keys
+  validates_format_of :url, :with => /\Ahttp(s?):\/\/(\w+:{0,1}\w*@)?(\S+)(:[0-9]+)?(\/|\/([\w#!:.?+=&%@!\-\/]))?/i
+  validates_format_of :support_url, :with => /\Ahttp(s?):\/\/(\w+:{0,1}\w*@)?(\S+)(:[0-9]+)?(\/|\/([\w#!:.?+=&%@!\-\/]))?/i, :allow_blank=>true
+  validates_format_of :callback_url, :with => /\Ahttp(s?):\/\/(\w+:{0,1}\w*@)?(\S+)(:[0-9]+)?(\/|\/([\w#!:.?+=&%@!\-\/]))?/i, :allow_blank=>true
+  attr_accessor :token_callback_url
+  def self.find_token(token_key)
+    token = OauthToken.find_by_token(token_key, :include => :client_application)
+    if token && token.authorized?
+      token
+    else
+      nil
+    end
+  end
+  def self.verify_request(request, options = {}, &block)
+    begin
+      signature = OAuth::Signature.build(request, options, &block)
+      return false unless OauthNonce.remember(signature.request.nonce, signature.request.timestamp)
+      value = signature.verify
+      value
+    rescue OAuth::Signature::UnknownSignatureMethod => e
+      false
+    end
+  end
+  def oauth_server
+    @oauth_server ||= OAuth::Server.new("http://your.site")
+  end
+  def credentials
+    @oauth_client ||= OAuth::Consumer.new(key, secret)
+  end
+  # If your application requires passing in extra parameters handle it here
+  def create_request_token(params={})
+    RequestToken.create :client_application => self, :callback_url=>self.token_callback_url
+  end
+protected
+  def generate_keys
+    self.key = OAuth::Helper.generate_key(40)[0,40]
+    self.secret = OAuth::Helper.generate_key(40)[0,40]
+  end
+end

data/generators/oauth_provider/templates/client_application_spec.rb ADDED Viewed

@@ -0,0 +1,29 @@
+require File.dirname(__FILE__) + '/../spec_helper'
+describe ClientApplication do
+  fixtures :users, :client_applications, :oauth_tokens
+  before(:each) do
+    @application = ClientApplication.create :name => "Agree2", :url => "http://agree2.com", :user => users(:quentin)
+  end
+  it "should be valid" do
+    @application.should be_valid
+  end
+  it "should not have errors" do
+    @application.errors.full_messages.should == []
+  end
+  it "should have key and secret" do
+    @application.key.should_not be_nil
+    @application.secret.should_not be_nil
+  end
+  it "should have credentials" do
+    @application.credentials.should_not be_nil
+    @application.credentials.key.should == @application.key
+    @application.credentials.secret.should == @application.secret
+  end
+end

data/generators/oauth_provider/templates/client_application_test.rb ADDED Viewed

@@ -0,0 +1,42 @@
+require File.dirname(__FILE__) + '/../test_helper'
+module OAuthHelpers
+  def create_consumer
+    @consumer=OAuth::Consumer.new(@application.key,@application.secret,
+      {
+        :site=>@application.oauth_server.base_url
+      })
+  end
+end
+class ClientApplicationTest < ActiveSupport::TestCase
+  include OAuthHelpers
+  fixtures :users,:client_applications,:oauth_tokens
+  def setup
+    @application = ClientApplication.create :name => "Agree2", :url => "http://agree2.com", :user => users(:quentin)
+    create_consumer
+  end
+  def test_should_be_valid
+    assert @application.valid?
+  end
+  def test_should_not_have_errors
+    assert_equal [], @application.errors.full_messages
+  end
+  def test_should_have_key_and_secret
+    assert_not_nil @application.key
+    assert_not_nil @application.secret
+  end
+  def test_should_have_credentials
+    assert_not_nil @application.credentials
+    assert_equal @application.key, @application.credentials.key
+    assert_equal @application.secret, @application.credentials.secret
+  end
+end

data/generators/oauth_provider/templates/client_applications.yml ADDED Viewed

@@ -0,0 +1,23 @@
+# Read about fixtures at http://ar.rubyonrails.org/classes/Fixtures.html
+one:
+  id: 1
+  name: MyString
+  url: http://test.com
+  support_url: http://test.com/support
+  callback_url: http://test.com/callback
+  key: one_key
+  secret: MyString
+  user_id: 1
+  created_at: 2007-11-17 16:56:51
+  updated_at: 2007-11-17 16:56:51
+two:
+  id: 2
+  name: MyString
+  url: http://test.com
+  support_url: http://test.com/support
+  callback_url: http://test.com/callback
+  key: two_key
+  secret: MyString
+  user_id: 1
+  created_at: 2007-11-17 16:56:51
+  updated_at: 2007-11-17 16:56:51

data/generators/oauth_provider/templates/clients_controller.rb ADDED Viewed

@@ -0,0 +1,52 @@
+class OauthClientsController < ApplicationController
+  before_filter :login_required
+  before_filter :get_client_application, :only => [:show, :edit, :update, :destroy]
+  def index
+    @client_applications = current_user.client_applications
+    @tokens = current_user.tokens.find :all, :conditions => 'oauth_tokens.invalidated_at is null and oauth_tokens.authorized_at is not null'
+  end
+  def new
+    @client_application = ClientApplication.new
+  end
+  def create
+    @client_application = current_user.client_applications.build(params[:client_application])
+    if @client_application.save
+      flash[:notice] = "Registered the information successfully"
+      redirect_to :action => "show", :id => @client_application.id
+    else
+      render :action => "new"
+    end
+  end
+  def show
+  end
+  def edit
+  end
+  def update
+    if @client_application.update_attributes(params[:client_application])
+      flash[:notice] = "Updated the client information successfully"
+      redirect_to :action => "show", :id => @client_application.id
+    else
+      render :action => "edit"
+    end
+  end
+  def destroy
+    @client_application.destroy
+    flash[:notice] = "Destroyed the client application registration"
+    redirect_to :action => "index"
+  end
+  private
+  def get_client_application
+    unless @client_application = current_user.client_applications.find(params[:id])
+      flash.now[:error] = "Wrong application id"
+      raise ActiveRecord::RecordNotFound
+    end
+  end
+end

data/generators/oauth_provider/templates/clients_controller_spec.rb ADDED Viewed

@@ -0,0 +1,176 @@
+require File.dirname(__FILE__) + '/../spec_helper'
+require File.dirname(__FILE__) + '/oauth_controller_spec_helper'
+require 'oauth/client/action_controller_request'
+describe OauthClientsController do
+  if defined?(Devise)
+    include Devise::TestHelpers
+  end
+  include OAuthControllerSpecHelper
+  fixtures :client_applications, :oauth_tokens, :users
+  before(:each) do
+    login_as_application_owner
+  end
+  describe "index" do
+    before do
+      @client_applications = @user.client_applications
+    end
+    def do_get
+      get :index
+    end
+    it "should be successful" do
+      do_get
+      response.should be_success
+    end
+    it "should assign client_applications" do
+      do_get
+      assigns[:client_applications].should==@client_applications
+    end
+    it "should render index template" do
+      do_get
+      response.should render_template('index')
+    end
+  end
+  describe "show" do
+    def do_get
+      get :show, :id => '1'
+    end
+    it "should be successful" do
+      do_get
+      response.should be_success
+    end
+    it "should assign client_applications" do
+      do_get
+      assigns[:client_application].should == current_client_application
+    end
+    it "should render show template" do
+      do_get
+      response.should render_template('show')
+    end
+  end
+  describe "new" do
+    def do_get
+      get :new
+    end
+    it "should be successful" do
+      do_get
+      response.should be_success
+    end
+    it "should assign client_applications" do
+      do_get
+      assigns[:client_application].class.should == ClientApplication
+    end
+    it "should render show template" do
+      do_get
+      response.should render_template('new')
+    end
+  end
+  describe "edit" do
+    def do_get
+      get :edit, :id => '1'
+    end
+    it "should be successful" do
+      do_get
+      response.should be_success
+    end
+    it "should assign client_applications" do
+      do_get
+      assigns[:client_application].should == current_client_application
+    end
+    it "should render edit template" do
+      do_get
+      response.should render_template('edit')
+    end
+  end
+  describe "create" do
+    def do_valid_post
+      post :create, 'client_application' => {'name' => 'my site', :url => "http://test.com"}
+      @client_application = ClientApplication.last
+    end
+    def do_invalid_post
+      post :create
+    end
+    it "should redirect to new client_application" do
+      do_valid_post
+      response.should be_redirect
+      response.should redirect_to(:action => "show", :id => @client_application.id)
+    end
+    it "should render show template" do
+      do_invalid_post
+      response.should render_template('new')
+    end
+  end
+  describe "destroy" do
+    def do_delete
+      delete :destroy, :id => '1'
+    end
+    it "should destroy client applications" do
+      do_delete
+      ClientApplication.should_not be_exists(1)
+    end
+    it "should redirect to list" do
+      do_delete
+      response.should be_redirect
+      response.should redirect_to(:action => 'index')
+    end
+  end
+  describe "update" do
+    def do_valid_update
+      put :update, :id => '1', 'client_application' => {'name' => 'updated site'}
+    end
+    def do_invalid_update
+      put :update, :id => '1', 'client_application' => {'name' => nil}
+    end
+    it "should redirect to show client_application" do
+      do_valid_update
+      response.should be_redirect
+      response.should redirect_to(:action => "show", :id => 1)
+    end
+    it "should assign client_applications" do
+      do_invalid_update
+      assigns[:client_application].should == ClientApplication.find(1)
+    end
+    it "should render show template" do
+      do_invalid_update
+      response.should render_template('edit')
+    end
+  end
+end