RubyGems - houston-oauth-plugin - Versions diffs - 0.5.1 - Mend

houston-oauth-plugin 0.5.1

Files changed (172) hide show

data/lib/generators/active_record/oauth_provider_templates/oauth_nonce.rb ADDED Viewed

@@ -0,0 +1,13 @@
+# Simple store of nonces. The OAuth Spec requires that any given pair of nonce and timestamps are unique.
+# Thus you can use the same nonce with a different timestamp and viceversa.
+class OauthNonce < ActiveRecord::Base
+  validates_presence_of :nonce, :timestamp
+  validates_uniqueness_of :nonce, :scope => :timestamp
+  # Remembers a nonce and it's associated timestamp. It returns false if it has already been used
+  def self.remember(nonce, timestamp)
+    oauth_nonce = OauthNonce.create(:nonce => nonce, :timestamp => timestamp)
+    return false if oauth_nonce.new_record?
+    oauth_nonce
+  end
+end

data/lib/generators/active_record/oauth_provider_templates/oauth_token.rb ADDED Viewed

@@ -0,0 +1,30 @@
+class OauthToken < ActiveRecord::Base
+  belongs_to :client_application
+  belongs_to :user
+  validates_uniqueness_of :token
+  validates_presence_of :client_application, :token
+  before_validation :generate_keys, :on => :create
+  def invalidated?
+    invalidated_at != nil
+  end
+  def invalidate!
+    update_attribute(:invalidated_at, Time.now)
+  end
+  def authorized?
+    authorized_at != nil && !invalidated?
+  end
+  def to_query
+    "oauth_token=#{token}&oauth_token_secret=#{secret}"
+  end
+  protected
+  def generate_keys
+    self.token = OAuth::Helper.generate_key(40)[0,40]
+    self.secret = OAuth::Helper.generate_key(40)[0,40]
+  end
+end

data/lib/generators/active_record/oauth_provider_templates/request_token.rb ADDED Viewed

@@ -0,0 +1,40 @@
+class RequestToken < OauthToken
+  attr_accessor :provided_oauth_verifier
+  def authorize!(user)
+    return false if authorized?
+    self.user = user
+    self.authorized_at = Time.now
+    self.verifier=OAuth::Helper.generate_key(20)[0,20] unless oauth10?
+    self.save
+  end
+  def exchange!
+    return false unless authorized?
+    return false unless oauth10? || verifier==provided_oauth_verifier
+    RequestToken.transaction do
+      access_token = AccessToken.create(:user => user, :client_application => client_application)
+      invalidate!
+      access_token
+    end
+  end
+  def to_query
+    if oauth10?
+      super
+    else
+      "#{super}&oauth_callback_confirmed=true"
+    end
+  end
+  def oob?
+    callback_url.nil? || callback_url.downcase == 'oob'
+  end
+  def oauth10?
+    (defined? OAUTH_10_SUPPORT) && OAUTH_10_SUPPORT && self.callback_url.blank?
+  end
+end

data/lib/generators/erb/oauth_consumer_generator.rb ADDED Viewed

@@ -0,0 +1,14 @@
+require 'rails/generators/erb'
+module Erb
+  module Generators
+    class OauthConsumerGenerator < Erb::Generators::Base
+      source_root File.expand_path('../oauth_consumer_templates', __FILE__)
+      def copy_view_files
+        template 'index.html.erb',              File.join('app/views', class_path, 'oauth_consumers', 'index.html.erb')
+        template 'show.html.erb',               File.join('app/views', class_path, 'oauth_consumers', 'show.html.erb')
+      end
+    end
+  end
+end

data/lib/generators/erb/oauth_consumer_templates/index.html.erb ADDED Viewed

@@ -0,0 +1,29 @@
+<h1>Services</h1>
+<%% if @consumer_tokens.empty? %>
+  <p>
+    You are currently not connected to any external services.
+  </p>
+<%% else %>
+  <p>
+    You are connected to the following services:
+  </p>
+  <ul>
+    <%% @consumer_tokens.each do |token| %>
+      <li>
+        <%%= link_to token.class.service_name.to_s.humanize, oauth_consumer_path(token.class.service_name) %>
+      </li>
+    <%% end %>
+  </ul>
+<%% end %>
+<%% unless @services.empty? %>
+<h3>You can connect to the following services:</h3>
+<ul>
+  <%% @services.each do |service| %>
+    <li>
+      <%%= link_to service.to_s.humanize, oauth_consumer_path(service) %>
+    </li>
+  <%% end %>
+</ul>
+<%% end %>

data/lib/generators/erb/oauth_consumer_templates/show.html.erb ADDED Viewed

@@ -0,0 +1,7 @@
+<h1>You are already Connected to <%%=params[:id].humanize%></h1>
+<%% form_tag oauth_consumer_path(params[:id]),:method=>:delete do %>
+  <%%=submit_tag "Disconnect" %>
+  or
+  <%%=submit_tag "Reconnect" %>
+  if you experienced a problem.
+<%% end %>

data/lib/generators/erb/oauth_provider_generator.rb ADDED Viewed

@@ -0,0 +1,23 @@
+require 'rails/generators/erb'
+module Erb
+  module Generators
+    class OauthProviderGenerator < Erb::Generators::Base
+      source_root File.expand_path('../oauth_provider_templates', __FILE__)
+      argument :name, :type => :string, :default => 'Oauth'
+      def copy_view_files
+        template '_form.html.erb',              File.join('app/views', class_path, 'oauth_clients', '_form.html.erb')
+        template 'new.html.erb',                File.join('app/views', class_path, 'oauth_clients', 'new.html.erb')
+        template 'index.html.erb',              File.join('app/views', class_path, 'oauth_clients', 'index.html.erb')
+        template 'show.html.erb',               File.join('app/views', class_path, 'oauth_clients', 'show.html.erb')
+        template 'edit.html.erb',               File.join('app/views', class_path, 'oauth_clients', 'edit.html.erb')
+        template 'authorize.html.erb',          File.join('app/views', class_path, file_name, 'authorize.html.erb')
+        template 'oauth2_authorize.html.erb',   File.join('app/views', class_path, file_name, 'oauth2_authorize.html.erb')
+        template 'authorize_success.html.erb',  File.join('app/views', class_path, file_name, 'authorize_success.html.erb')
+        template 'authorize_failure.html.erb',  File.join('app/views', class_path, file_name, 'authorize_failure.html.erb')
+      end
+    end
+  end
+end

data/lib/generators/erb/oauth_provider_templates/_form.html.erb ADDED Viewed

@@ -0,0 +1,17 @@
+<%%= error_messages_for :client_application %>
+<div class="field">
+  <label for="client_application_name">Name*</label><br/>
+  <%%= f.text_field :name %>
+</div>
+<div class="field">
+  <label for="client_application_url">Main Application URL*</label><br/>
+  <%%= f.text_field :url %>
+</div>
+<div class="field">
+  <label for="client_application_callback_url">Callback URL*</label><br/>
+  <%%= f.text_field :callback_url %>
+</div>
+<div class="field">
+  <label for="client_application_support_url">Support URL</label><br/>
+  <%%= f.text_field :support_url %>
+</div>

data/lib/generators/erb/oauth_provider_templates/authorize.html.erb ADDED Viewed

@@ -0,0 +1,14 @@
+<h1>Authorize access to your account</h1>
+<p>Would you like to authorize <%%= link_to @token.client_application.name,@token.client_application.url %> (<%%= link_to @token.client_application.url,@token.client_application.url %>) to access your account?</p>
+<%%= form_tag authorize_url do %>
+  <%%= hidden_field_tag "oauth_token", @token.token %>
+  <%%- if params[:oauth_callback] -%>
+  <%%= hidden_field_tag "oauth_callback", params[:oauth_callback] %>
+<%%- end -%>
+<p>
+  <%%= check_box_tag 'authorize' %> authorize access
+</p>
+<p>
+  <%%= submit_tag %>
+</p>
+<%% end %>

data/lib/generators/erb/oauth_provider_templates/authorize_failure.html.erb ADDED Viewed

	@@ -0,0 +1 @@
1	+ <h1>You have disallowed this request</h1>

data/lib/generators/erb/oauth_provider_templates/authorize_success.html.erb ADDED Viewed

	@@ -0,0 +1 @@
1	+ <h1>You have allowed this request</h1>

data/lib/generators/erb/oauth_provider_templates/edit.html.erb ADDED Viewed

@@ -0,0 +1,7 @@
+<h1>Edit your application</h1>
+<%%= form_for :client_application, @client_application, :url => oauth_client_path(@client_application), :html => {:method => :put}  do |f| %>
+       <%%= render :partial => "form", :locals => { :f => f } %>
+       <%%= submit_tag "Edit" %>
+<%% end %>
+<%%= link_to 'Show', oauth_client_path(@client_application) %> |
+<%%= link_to 'Back', oauth_clients_path %>

data/lib/generators/erb/oauth_provider_templates/index.html.erb ADDED Viewed

@@ -0,0 +1,43 @@
+<div class="flash"><%%= flash[:notice] %></div>
+<h1>OAuth Client Applications</h1>
+<%% unless @tokens.empty? %>
+<p>The following tokens have been issued to applications in your name</p>
+<table>
+  <tr><th>Application</th><th>Issued</th><th>&nbsp;</th></tr>
+  <%% @tokens.each do |token|%>
+    <%% content_tag_for :tr, token do %>
+      <td><%%= link_to token.client_application.name, token.client_application.url %></td>
+      <td><%%= token.authorized_at %></td>
+      <td>
+        <%% form_tag :controller => 'oauth', :action => 'revoke' do %>
+        <%%= hidden_field_tag 'token', token.token %>
+        <%%= submit_tag "Revoke!" %>
+        <%% end %>
+      </td>
+    <%% end %>
+  <%% end %>
+</table>
+<%% end %>
+<h3>Application Developers</h3>
+<%% if @client_applications.empty? %>
+  <p>
+    Do you have an application you would like to register for use with us using the <a href="http://oauth.net">OAuth</a> standard?
+  </p>
+  <p>
+    You must register your web application before it can make OAuth requests to this service
+  </p>
+<%% else %>
+  <p>
+    You have the following client applications registered:
+  </p>
+  <%% @client_applications.each do |client|%>
+    <%% div_for client do %>
+      <%%= link_to client.name, oauth_client_path(client) %>-
+        <%%= link_to 'Edit', edit_oauth_client_path(client) %>
+        <%%= link_to 'Delete', oauth_client_path(client), :confirm => "Are you sure?", :method => :delete %>
+    <%% end %>
+  <%% end %>
+<%% end %>
+<br />
+<h3><%%= link_to "Register your application", :action => :new %></h3>

data/lib/generators/erb/oauth_provider_templates/new.html.erb ADDED Viewed

@@ -0,0 +1,5 @@
+<h1>Register a new application</h1>
+<%%= form_for :client_application, :url => { :action => :create } do |f| %>
+   <%%= render :partial => "form", :locals => { :f => f } %>
+   <%%= submit_tag "Register" %>
+<%% end %>

data/lib/generators/erb/oauth_provider_templates/oauth2_authorize.html.erb ADDED Viewed

@@ -0,0 +1,16 @@
+<h1>Authorize access to your account</h1>
+<p>Would you like to authorize <%%= link_to @token.client_application.name,@token.client_application.url %> (<%%= link_to @token.client_application.url,@token.client_application.url %>) to access your account?</p>
+<%%= form_tag authorize_url do %>
+  <%%= hidden_field_tag "response_type", params[:response_type]%>
+  <%%= hidden_field_tag "client_id", params[:client_id]%>
+  <%%= hidden_field_tag "redirect_uri", params[:redirect_uri]%>
+  <%%= hidden_field_tag "state", params[:state]%>
+  <%%= hidden_field_tag "scope", params[:scope]%>
+<p>
+  <%%= check_box_tag 'authorize' %> authorize access
+</p>
+<p>
+  <%%= submit_tag %>
+</p>
+<%% end %>

data/lib/generators/erb/oauth_provider_templates/show.html.erb ADDED Viewed

@@ -0,0 +1,27 @@
+<h1>OAuth details for <%%=@client_application.name %></h1>
+<p>
+  <strong>Consumer Key:</strong>
+  <code><%%=@client_application.key %></code>
+</p>
+<p>
+  <strong>Consumer Secret:</strong>
+  <code><%%=@client_application.secret %></code>
+</p>
+<p>
+  <strong>Request Token URL</strong>
+  <code>http<%%='s' if request.ssl? %>://<%%= request.host_with_port %><%%=@client_application.oauth_server.request_token_path %></code>
+</p>
+<p>
+  <strong>Access Token URL</strong>
+  <code>http<%%='s' if request.ssl? %>://<%%= request.host_with_port %><%%=@client_application.oauth_server.access_token_path %></code>
+</p>
+<p>
+  <strong>Authorize URL</strong>
+  <code>http<%%='s' if request.ssl? %>://<%%= request.host_with_port %><%%=@client_application.oauth_server.authorize_path %></code>
+</p>
+<p>
+  We support hmac-sha1 (recommended) as well as plain text in ssl mode.
+</p>
+<%%= link_to 'Edit', edit_oauth_client_path(@client_application) %> |
+<%%= link_to 'Back', oauth_clients_path %>

data/lib/generators/haml/oauth_consumer_generator.rb ADDED Viewed

@@ -0,0 +1,21 @@
+require 'rails/generators/erb/controller/controller_generator'
+module Haml
+  module Generators
+    class OauthConsumerGenerator < Erb::Generators::Base
+      source_root File.expand_path('../oauth_consumer_templates', __FILE__)
+      argument :name, :type => :string, :default => 'Oauth'
+      def copy_view_files
+        template 'index.html.haml',              File.join('app/views', class_path, 'oauth_consumers', 'index.html.haml')
+        template 'show.html.haml',               File.join('app/views', class_path, 'oauth_consumers', 'show.html.haml')
+      end
+      protected
+      def handler
+        :haml
+      end
+    end
+  end
+end

data/lib/generators/haml/oauth_consumer_templates/index.html.haml ADDED Viewed

@@ -0,0 +1,18 @@
+%h1 Services
+-if @consumer_tokens.empty?
+  %p
+    You are currently not connected to any external services.
+-else
+  %p You are connected to the following services:
+  %ul
+    -@consumer_tokens.each do |token|
+      %li
+        =link_to token.class.service_name.to_s.humanize, oauth_consumer_path(token.class.service_name)
+-unless @services.empty?
+  %h3 You can connect to the following services:
+  %ul
+    -@services.each do |service|
+      %li
+        =link_to service.to_s.humanize,oauth_consumer_path(service)

data/lib/generators/haml/oauth_consumer_templates/show.html.haml ADDED Viewed

@@ -0,0 +1,8 @@
+%h1
+  You are already Connected to
+  =params[:id].humanize
+-form_tag oauth_consumer_path(params[:id]),:method=>:delete do
+  =submit_tag "Disconnect"
+  or
+  =submit_tag "Reconnect"
+  if you experienced a problem.

data/lib/generators/haml/oauth_provider_generator.rb ADDED Viewed

@@ -0,0 +1,28 @@
+require 'rails/generators/erb/controller/controller_generator'
+module Haml
+  module Generators
+    class OauthProviderGenerator < Erb::Generators::Base
+      source_root File.expand_path('../oauth_provider_templates', __FILE__)
+      argument :name, :type => :string, :default => 'Oauth'
+      def copy_view_files
+        template '_form.html.haml',              File.join('app/views', class_path, 'oauth_clients', '_form.html.haml')
+        template 'new.html.haml',                File.join('app/views', class_path, 'oauth_clients', 'new.html.haml')
+        template 'index.html.haml',              File.join('app/views', class_path, 'oauth_clients', 'index.html.haml')
+        template 'show.html.haml',               File.join('app/views', class_path, 'oauth_clients', 'show.html.haml')
+        template 'edit.html.haml',               File.join('app/views', class_path, 'oauth_clients', 'edit.html.haml')
+        template 'authorize.html.haml',          File.join('app/views', class_path, file_name, 'authorize.html.haml')
+        template 'oauth2_authorize.html.haml',   File.join('app/views', class_path, file_name, 'oauth2_authorize.html.haml')
+        template 'authorize_success.html.haml',  File.join('app/views', class_path, file_name, 'authorize_success.html.haml')
+        template 'authorize_failure.html.haml',  File.join('app/views', class_path, file_name, 'authorize_failure.html.haml')
+      end
+      protected
+      def handler
+        :haml
+      end
+    end
+  end
+end

data/lib/generators/haml/oauth_provider_templates/_form.html.haml ADDED Viewed

@@ -0,0 +1,21 @@
+=error_messages_for :client_application
+.field
+  %label{:for=>"client_application_name"} Name*
+  %br
+  = f.text_field :name
+.field
+  %label{:for=>"client_application_url"} Main Application URL*
+  %br
+  = f.text_field :url
+.field
+  %label{:for=>"client_application_callback_url"} Callback URL*
+  %br
+  = f.text_field :callback_url
+.field
+  %label{:for=>"client_application_support_url"} Support URL
+  %br
+  = f.text_field :support_url

data/lib/generators/haml/oauth_provider_templates/authorize.html.haml ADDED Viewed

@@ -0,0 +1,16 @@
+%h1 Authorize access to your account
+%p
+  Would you like to authorize
+  = link_to @token.client_application.name,@token.client_application.url
+  (
+  = link_to @token.client_application.url,@token.client_application.url
+  ) to access your account?
+= form_tag authorize_url do
+  = hidden_field_tag "oauth_token", @token.token
+  - if params[:oauth_callback]
+    = hidden_field_tag "oauth_callback", params[:oauth_callback]
+  %p
+    = check_box_tag 'authorize'
+    authorize access
+  %p
+    = submit_tag

data/lib/generators/haml/oauth_provider_templates/authorize_failure.html.haml ADDED Viewed

	@@ -0,0 +1 @@
1	+ %h1 You have disallowed this request