jive_rails 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 88c38d3144f4414cfe5df91349a9de4d4c82174c
+  data.tar.gz: 2aea2d8d81be11e62f3114c7dc434d93296843e1
+SHA512:
+  metadata.gz: 5b457ae6d7086a091abce0be38dc6b1d6bc0fe9ef45c42a18aaddddf77a3220aeda3b60209a11742bdd7a51dd66304240b062993b32d57397a00fad39ab29090
+  data.tar.gz: 4b187fb0d2f5c64ed126f23a236ea94a532b2c4e5b6e7eb25d0c0dc6132590cdd86e31ae02993308045bccc50cb3fa50765fad97fca38bbdbc276eefea01a9b3

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2015 Butch Marshall
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,3 @@
+= JiveRails
+
+This project rocks and uses MIT-LICENSE.

data/Rakefile

@@ -0,0 +1,37 @@
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+
+require 'rdoc/task'
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'JiveRails'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+APP_RAKEFILE = File.expand_path("../test/dummy/Rakefile", __FILE__)
+load 'rails/tasks/engine.rake'
+
+
+load 'rails/tasks/statistics.rake'
+
+
+
+Bundler::GemHelper.install_tasks
+
+require 'rake/testtask'
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'lib'
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = false
+end
+
+
+task default: :test

data/app/assets/javascripts/jive_rails/application.js

@@ -0,0 +1,13 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or any plugin's vendor/assets/javascripts directory can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// compiled file.
+//
+// Read Sprockets README (https://github.com/rails/sprockets#sprockets-directives) for details
+// about supported directives.
+//
+//= require_tree .

data/app/assets/javascripts/jive_rails/oauth2client.js

@@ -0,0 +1,182 @@
+var realTile = Boolean(jive.tile);//flag for later usage determination.
+jive.tile = jive.tile || {};//if is not defined then define it so that callback ticket can be set internally.
+var OAuth2ServerFlow = null;//defined here so it is visible in other files.
+
+
+if (!gadgets.oauth || !gadgets.oauth.Popup) {
+	osapi.jive.core.container.sendNotification({message: 'Use of oauth2client.js requires the oauthpopup feature to be in app.xml. ( <Require feature="oauthpopup"/> )', severity: 'error'});
+} else {
+
+	OAuth2ServerFlow = function(options) {
+
+		// required
+		var serviceHost = options['serviceHost'];
+		var grantDOMElementID = options['grantDOMElementID'];
+		var ticketErrorCallback = options['ticketErrorCallback'];
+		var jiveAuthorizeUrlErrorCallback = options['jiveAuthorizeUrlErrorCallback'];
+		var oauth2SuccessCallback = options['oauth2SuccessCallback'];
+		var preOauth2DanceCallback = options['preOauth2DanceCallback'];
+		var onLoadCallback = options['onLoadCallback'];
+		var jiveOAuth2Dance = options['jiveOAuth2Dance'];
+
+		// has defaults
+		var authorizeUrl = options['authorizeUrl'] || serviceHost + '/authorizeUrl';
+		var ticketURL = options['ticketURL'];
+		var authz = options['authz'] || 'signed';
+		var context = options['context'];
+		var extraAuthParams = options['extraAuthParams'];
+		var popupWindowHeight = options['popupWindowHeight'] || '600';
+		var popupWindowWidth = options['popupWindowWidth'] || '400';
+		var popupWindowProps = options['popUpWindowProps'];
+
+		var doOAuthDance = function (viewerID, oauth2CallbackUrl, jiveTenantID) {
+			// do any preparation things necessary
+			if (preOauth2DanceCallback) {
+				preOauth2DanceCallback();
+			}
+
+			//Fetch the jive callback url - eg. http://server//gadgets/jiveOAuth2Callback
+			var url = authorizeUrl + "?callback=" + oauth2CallbackUrl
+				+ "&ts=" + new Date().getTime() + "&viewerID=" + viewerID;
+
+			if (jiveTenantID && jiveOAuth2Dance) {
+				url += "&jiveTenantID=" + jiveTenantID;
+			}
+
+			// any extra state to inform downstream operations
+			if (context) {
+				url += "&context=" + encodeURIComponent(JSON.stringify(context));
+			}
+
+			// any extra auth parameters to attach
+			if (extraAuthParams) {
+				url += "&extraAuthParams=" + encodeURIComponent(JSON.stringify(extraAuthParams));
+			}
+
+			//Pre open condition check
+			var openCallback = function () {
+				return true;
+			};
+
+			//Post condition check
+			var closeCallback = function () {
+				oauth2SuccessCallback(jive.tile.oauthReceivedCallbackTicket_);
+			};
+
+			// obtain the oauth url (points to oauth creds store like SFDC)
+			osapi.http.get({
+				'href': url,
+				'authz': authz,
+				'noCache': true
+			}).execute(function (response) {
+				if (response.status >= 400 && response.status <= 599) {
+					jiveAuthorizeUrlErrorCallback(response);
+					return;
+				}
+
+				// pop open oauth url
+				var data = JSON.parse(response.content);
+
+				$(grantDOMElementID).click(
+					new gadgets.oauth.Popup(data.url,
+							popupWindowProps || ( 'width=' + popupWindowWidth + ',height=' + popupWindowHeight + ',scrollbars=yes'),
+						openCallback, closeCallback
+					).createOpenerOnClick());
+
+			});
+		};
+
+		return {
+			launch: function (addOptions) {
+
+				addOptions = addOptions || {};
+
+				var doLaunch = function (config, options) {
+
+					gadgets.window.adjustHeight();
+					if (typeof config === "string") {
+						config = JSON.parse(config);
+					}
+
+					// state
+					var identifiers = realTile ? jive.tile.getIdentifiers() : {};
+					var viewerID = addOptions.viewerID || identifiers['viewer'];   // user ID
+					if(!realTile && !viewerID){
+						osapi.jive.core.container.sendNotification({message: 'Apps must pass viewerID into OAuth 2 launch function', severity: 'error'});
+					}
+					var ticket = config["ticketID"]; // may or may not be there
+					var oauth2CallbackUrl = realTile ? jive.tile.getOAuth2CallbackUrl() :
+						function () {
+							var containerUrl = location.href;
+							if (containerUrl && containerUrl.indexOf('/gadgets/ifr') > -1) {
+								containerUrl = containerUrl.substr(0, containerUrl.indexOf('/gadgets/ifr'));
+							}
+
+							return containerUrl + '/gadgets/jiveOAuth2Callback';
+						}();
+					var jiveTenantID = gadgets.config.get()['jive-opensocial-ext-v1']['jiveTenantID'];
+
+					if (onLoadCallback) {
+						onLoadCallback(config, identifiers);
+					}
+
+					if (ticketURL) {
+						//
+						// check ticket state
+						// since a ticket endpoint was provided
+						//
+						osapi.http.get({
+							'href': serviceHost + ticketURL + '?' + (
+								ticket ? ('ticketID=' + ticket) : ('viewerID=' + viewerID + "&ts=" +
+									new Date().getTime())
+								),
+							'format': 'json',
+							'authz': authz,
+							'noCache': true
+						}).execute(function (response) {
+							if (response.status >= 400 && response.status <= 599) {
+								if (ticketErrorCallback) {
+									ticketErrorCallback(response);
+								}
+								return;
+							}
+
+							var data = response.content;
+							if (data.status === 'ok') {
+								// ticket is still ok
+								// skip authentication
+								ticket = data.ticketID;
+								if (!ticket) {
+									doOAuthDance(viewerID, oauth2CallbackUrl, jiveTenantID);
+								}
+								else {
+									oauth2SuccessCallback();
+								}
+							}
+							else {
+								// ticket is not ok
+								// proceed with authentication
+								doOAuthDance(viewerID, oauth2CallbackUrl, jiveTenantID);
+							}
+						});
+
+					}
+					else {
+						// proceed with authentication since
+						// there is no ticket endpoint to check for
+						// origin server access token validity.
+						doOAuthDance(viewerID, oauth2CallbackUrl, jiveTenantID);
+					}
+
+				};
+				if (realTile) {
+					jive.tile.onOpen(doLaunch);
+				}
+				else {
+					doLaunch(addOptions, addOptions);
+				}
+			}
+		};
+
+	}
+}

data/app/assets/stylesheets/jive_rails/addons.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/app/assets/stylesheets/jive_rails/application.css

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or any plugin's vendor/assets/stylesheets directory can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any styles
+ * defined in the other CSS/SCSS files in this directory. It is generally better to create a new
+ * file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/app/assets/stylesheets/jive_rails/oauth.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/app/assets/stylesheets/jive_rails/tiles.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/app/controllers/jive_rails/addons_controller.rb

@@ -0,0 +1,48 @@
+require_dependency "jive_rails/application_controller"
+
+module JiveRails
+	class AddonsController < ApplicationController
+		respond_to :json
+
+		def install
+			JiveRails::AddOn.create(install_params)
+
+			respond_to do |format|
+				format.json { render :json => {} }
+			end
+		end
+
+		def uninstall
+			@add_on = JiveRails::AddOn.where(uninstall_params).first
+
+			respond_to do |format|
+				if @add_on && @add_on.update_attributes(:uninstalled => true)
+					format.json { render :json => {} }
+				else
+					format.json { render :json => {}, status: :not_found }
+				end
+
+			end
+		end
+
+		def uninstall_params
+			params.tap { |whitelisted|
+				whitelisted[:tenant_id] = params[:tenantId]
+				whitelisted[:client_id] = params[:clientId]
+				whitelisted[:jive_url] = params[:jiveUrl]
+				whitelisted[:jive_signature_url] = params[:jiveSignatureURL]
+			}.permit(:tenant_id,:client_id,:jive_url,:jive_signature_url)
+		end
+
+		def install_params
+			params.tap { |whitelisted|
+				whitelisted[:tenant_id] = params[:tenantId]
+				whitelisted[:client_id] = params[:clientId]
+				whitelisted[:client_secret] = params[:clientSecret]
+				whitelisted[:jive_url] = params[:jiveUrl]
+				whitelisted[:jive_signature] = params[:jiveSignature]
+				whitelisted[:jive_signature_url] = params[:jiveSignatureURL]
+			}.permit(:tenant_id,:client_id,:client_secret,:jive_url,:jive_signature,:jive_signature_url)
+		end
+	end
+end

data/app/controllers/jive_rails/application_controller.rb

@@ -0,0 +1,4 @@
+module JiveRails
+  class ApplicationController < ActionController::Base
+  end
+end

data/app/controllers/jive_rails/oauth_controller.rb

@@ -0,0 +1,101 @@
+require_dependency "jive_rails/application_controller"
+require "cgi"
+require "jive/signed_request"
+require "jive/oauth2"
+
+module JiveRails
+	class OauthController < ApplicationController
+		respond_to :json, :html
+
+		def oauth2Callback
+			code = params[:code]
+			@state = params[:state]
+
+			# Decode state
+			@state = ::Base64.decode64 @state
+			# No idea why JSON.parse doesn't work here...
+			@state = ActiveSupport::JSON.decode @state
+			@state = ActiveSupport::JSON.decode @state
+
+			jive_tenant_id = (@state["context"].is_a?(Hash) && !@state["context"]["jiveTenantID"].to_s.empty?) ? @state["context"]["jiveTenantID"] : nil
+			viewer_id = @state["viewerID"] || nil
+			client_id = @state["client_id"] || nil
+			origin_jive_tenant_id = (@state["context"].is_a?(Hash) && !@state["context"]["originJiveTenantID"].to_s.empty?) ? @state["context"]["originJiveTenantID"] : nil
+
+			app = JiveRails::AddOn.where(:client_id => client_id, :tenant_id => jive_tenant_id).first
+			jive_url = app.jive_url
+
+			args = {
+				:jiveTenantID => jive_tenant_id,
+				:originJiveTenantID => origin_jive_tenant_id,
+				:clientId => client_id,
+				:clientOAuth2CallbackUrl => oauth_oauth2Callback_url,
+				:oauth2ConsumerKey => client_id,
+				:oauth2ConsumerSecret => app.client_secret,
+				:originServerTokenRequestUrl => "#{jive_url}/oauth2/token",
+			}
+			post_object = Jive::OAuth2.build_oauth2_callback_object(args, code)
+
+			@result = Jive::OAuth2.get_oauth2_token(args, post_object);
+			@jive_redirect_url = "#{@state["jiveRedirectUrl"]}?ticket=#{viewer_id}"
+
+			respond_to do |format|
+				format.html
+			end
+		end
+
+		def authorizeUrl
+			authorization = CGI.parse((request.headers["Authorization"] || "").gsub(/^JiveEXTN\s/,''))
+			client_id = authorization["client_id"].first
+			jive_url = authorization["jive_url"].first
+
+			viewerId = params[:viewerID]
+			jiveTenantID = params[:jiveTenantID]
+			callback = params[:callback]
+			extra_auth_params = {}
+			context = {}
+
+			originJiveTenantID = request.headers["X-Tenant-Id"] || ""
+			targetJiveTenantID = (authorization["tenant_id"] || []).first
+
+			app = JiveRails::AddOn.where(:client_id => client_id, :tenant_id => targetJiveTenantID).first
+			client_secret = app.client_secret
+
+			if !params[:context].to_s.empty?
+				context = ::JSON.parse(params[:context].to_s)
+			end
+	
+			# encode the origin jiveTenantID in the context
+			if !originJiveTenantID.empty?
+				context[:originJiveTenantID] = originJiveTenantID
+			end
+
+			# encode the jiveTenantID in the context
+			if !jiveTenantID.empty?
+				context[:jiveTenantID] = jiveTenantID
+			end
+
+			if !params[:extraAuthParams].to_s.empty?
+				extra_auth_params = ::JSON.parse(URI.unescape(params[:extraAuthParams].to_s))
+			end
+
+			args = {
+				:clientOAuth2CallbackUrl => oauth_oauth2Callback_url,
+				:oauth2ConsumerKey => client_id,
+				:oauth2ConsumerSecret => client_secret,
+				:originServerAuthorizationUrl => "#{jive_url}/oauth2/authorize",
+				:originServerTokenRequestUrl => "#{jive_url}/oauth2/token",
+				:oauth2CallbackExtraParams => nil,
+			}
+
+			response = Jive::OAuth2.build_authorize_url_response_map(args, callback, {
+				:viewerID => viewerId,
+				:context => context
+			}, extra_auth_params)
+
+			respond_to do |format|
+				format.json { render :json => response }
+			end
+		end
+	end
+end