knock-oauth2_code_verifier 0.1.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 9c65963c83357c644ae118da22b15e9011a2d206b127b888b13c8def0175ca12
+  data.tar.gz: 731c2e0e32f0da4b4ab9968adbd00257da7d26cf18b9b94a93828b9d0aca9f24
+SHA512:
+  metadata.gz: 3ab7ea1aa6251a7c1417f0ffba4e026654d7b317c34ecc5a2c308d3b7cde375c52878470bad2e4b5bedb821b0d7253505efd59b57ddf4b03f18a0bd17f580dc8
+  data.tar.gz: c61954204e4dc435dba41cfab64ecce63f54bbccc9ffd068b884e747199231bd0cae2127e3264da3a4fdbe969153c56b41b9d18e64d4c9d20c905d6b441db549

data/.gitignore

@@ -0,0 +1,16 @@
+/.bundle/
+/.yardoc
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+
+Gemfile.lock
+
+# rspec failure tracking
+.rspec_status
+
+# Built gems
+*.gem

data/.rspec

@@ -0,0 +1,3 @@
+--format documentation
+--color
+--require spec_helper

data/.rubocop.yml

@@ -0,0 +1,43 @@
+AllCops:
+  NewCops: enable
+
+Layout/LineLength:
+  Max: 80
+
+Layout/MultilineMethodCallIndentation:
+  EnforcedStyle: indented
+
+Metrics/BlockLength:
+  Exclude:
+    - config/**/*
+    - spec/**/*
+
+Lint/AmbiguousBlockAssociation:
+  Exclude:
+    - spec/**/*
+
+Style/Documentation:
+  Enabled: false
+
+# Rails' autoloading will load modules so that there's no namespacing issue
+# when using compact style
+Style/ClassAndModuleChildren:
+  Enabled: false
+
+# Having a comma at the end of a list of multi-line aruments avoids extra diffs
+# on otherwise-untouched lines of code when adding a new item to the end
+Style/TrailingCommaInArrayLiteral:
+  EnforcedStyleForMultiline: comma
+Style/TrailingCommaInHashLiteral:
+  EnforcedStyleForMultiline: comma
+Style/TrailingCommaInArguments:
+  EnforcedStyleForMultiline: comma
+
+# https://anti-pattern.com/always-use-double-quoted-strings-in-ruby
+Style/StringLiterals:
+  EnforcedStyle: double_quotes
+
+# Defaults to 'e', which is an uncomminicative name by reek's rules
+# See some discussion here: https://github.com/rubocop-hq/rubocop/pull/6460
+Naming/RescuedExceptionsVariableName:
+  PreferredName: error

data/.ruby-gemset

@@ -0,0 +1 @@
+knock-oauth2_code_verifier

data/.ruby-version

@@ -0,0 +1 @@
+2.7.2

data/.travis.yml

@@ -0,0 +1,6 @@
+---
+language: ruby
+cache: bundler
+rvm:
+  - 2.7.2
+before_install: gem install bundler -v 2.1.4

data/CODE_OF_CONDUCT.md

@@ -0,0 +1,74 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+In the interest of fostering an open and welcoming environment, we as
+contributors and maintainers pledge to making participation in our project and
+our community a harassment-free experience for everyone, regardless of age, body
+size, disability, ethnicity, gender identity and expression, level of experience,
+nationality, personal appearance, race, religion, or sexual identity and
+orientation.
+
+## Our Standards
+
+Examples of behavior that contributes to creating a positive environment
+include:
+
+* Using welcoming and inclusive language
+* Being respectful of differing viewpoints and experiences
+* Gracefully accepting constructive criticism
+* Focusing on what is best for the community
+* Showing empathy towards other community members
+
+Examples of unacceptable behavior by participants include:
+
+* The use of sexualized language or imagery and unwelcome sexual attention or
+advances
+* Trolling, insulting/derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or electronic
+  address, without explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Our Responsibilities
+
+Project maintainers are responsible for clarifying the standards of acceptable
+behavior and are expected to take appropriate and fair corrective action in
+response to any instances of unacceptable behavior.
+
+Project maintainers have the right and responsibility to remove, edit, or
+reject comments, commits, code, wiki edits, issues, and other contributions
+that are not aligned to this Code of Conduct, or to ban temporarily or
+permanently any contributor for other behaviors that they deem inappropriate,
+threatening, offensive, or harmful.
+
+## Scope
+
+This Code of Conduct applies both within project spaces and in public spaces
+when an individual is representing the project or its community. Examples of
+representing a project or community include using an official project e-mail
+address, posting via an official social media account, or acting as an appointed
+representative at an online or offline event. Representation of a project may be
+further defined and clarified by project maintainers.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported by contacting the project team at me@bmulholland.ca. All
+complaints will be reviewed and investigated and will result in a response that
+is deemed necessary and appropriate to the circumstances. The project team is
+obligated to maintain confidentiality with regard to the reporter of an incident.
+Further details of specific enforcement policies may be posted separately.
+
+Project maintainers who do not follow or enforce the Code of Conduct in good
+faith may face temporary or permanent repercussions as determined by other
+members of the project's leadership.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4,
+available at [https://contributor-covenant.org/version/1/4][version]
+
+[homepage]: https://contributor-covenant.org
+[version]: https://contributor-covenant.org/version/1/4/

data/Gemfile

@@ -0,0 +1,7 @@
+source "https://rubygems.org"
+
+# Specify your gem's dependencies in knock-oauth2_code_verifier.gemspec
+gemspec
+
+gem "rake", "~> 12.0"
+gem "rspec", "~> 3.0"

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2020 Brendan Mulholland
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,158 @@
+# Backend provider of code verification for Oauth2 Authorization Code Request
+
+Frontend libraries implement Oauth2 flows that authenticate the user with your
+SPA, but are only part of the picture. If you're storing user data on a backend,
+you'll need to authenticate them on both the frontend and the backend. That's
+what Oauth2   Authorization Code Request does, with PKCE thrown in for added
+security. This gem provides the backend authorization needed, taking in a
+verification request and logging the user in via JWT with Knock. If you're using
+Vue/React/etc with a frontend authorization library like @nuxt/auth, and you're
+running Rails in API mode for your backend, this gem completes the picture.
+
+Suggestions for improvement, bugs, and PRs are very welcomed.
+
+## Requirements
+
+[knock](https://github.com/nsarno/knock) for JWT authentication 
+
+I'd be happy to split this into an independent gem if you want to use it for
+another auth library; file an issue with that request if you want (matching
+PR preferred, of course).
+
+**Note: if you're using Rails 6, you may have to use the master branch:**
+
+```ruby
+# Gemfile
+# See https://davidgay.org/programming/jwt-auth-rails-6-knock/
+# and https://github.com/nsarno/knock/issues/250
+gem "knock", github: "nsarno/knock", branch: "master",
+             ref: "9214cd027422df8dc31eb67c60032fbbf8fc100b"
+```
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'knock-oauth2_code_verifier'
+```
+
+And then execute:
+
+    $ bundle install
+
+Or install it yourself as:
+
+    $ gem install knock-oauth2_code_verifier
+
+## Usage
+
+Set up the routes and controller:
+
+```ruby
+# config/routes.rb
+post "auth_token/:provider", to: "auth_token#create"
+```
+
+And create the controller:
+
+```ruby
+# app/controllers/auth_token_controller.rb
+class AuthTokenController < Knock::Oauth2CodeVerifier::AuthTokenController
+  def create
+    # knock-oauth2_code_verifier exposes:
+    # access_token - the user's access token for the provider
+    # refresh_token - the user's refresh_token, when first registering (blank on
+    #   login)
+    # user_info - hash of user's info, with keys :name, :email, and :raw
+    #   :raw contains the raw info hash from the provider
+
+    # Your code to create and login user here
+    # e.g. user = User.find_or_create_by!(user_info[:email])
+
+    # Then return a JWT payload; auth_token provided by Knock
+    render json: { token: auth_token }, status: :created
+  end
+end
+```
+
+And finally configure the gem (use providers as necessary; Google Oauth2 and
+Microsoft Azure Active Directory [NOT the B2C flavour] shown as examples):
+
+```ruby
+# config/initializers/knock_oauth2_code_verifier.rb
+Knock::Oauth2CodeVerifier.configure do |config|
+  # The first argument, provder name, is inferred from the request URL:
+  # e.g. POST /auth_token/google
+  config.add_provider(
+    :google,
+    Rails.application.credentials.google_app[:client_id],
+    Rails.application.credentials.google_app[:client_secret],
+    {
+      token_url: "https://accounts.google.com/o/oauth2/token",
+      userinfo_url: "https://www.googleapis.com/oauth2/v3/userinfo"
+    }
+  )
+
+  config.add_provider(
+    :microsoft365,
+    Rails.application.credentials.microsoft_app[:client_id],
+    Rails.application.credentials.microsoft_app[:client_secret],
+    {
+      token_url: "https://login.microsoftonline.com/common/oauth2/v2.0/token",
+      userinfo_url: "https://graph.microsoft.com/v1.0/me"
+    }
+  )
+end
+```
+
+Then you can set your client library to forward code challenges to POST
+`/auth_token/:provider`, e.g. `/auth_token/microsoft365`. For @nuxt/auth, that
+looks like:
+
+```javascript
+# nuxt.config.js
+export default {
+  auth: {
+    strategies: {
+      google: {
+        endpoints: {
+          token: 'http://localhost:4000/auth_token/google'
+        }
+      }
+    }
+  }
+}
+```
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then,
+run `rake spec` to run the tests. You can also run `bin/console` for an
+interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To
+release a new version, update the version number in `version.rb`, and then run
+`bundle exec rake release`, which will create a git tag for the version, push
+git commits and tags, and push the `.gem` file to
+[rubygems.org](https://rubygems.org).
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at
+https://github.com/recitalsoftware/knock-oauth2_code_verifier. This project is
+intended to be a safe, welcoming space for collaboration, and contributors are
+expected to adhere to the
+[code of conduct](https://github.com/recitalsoftware/knock-oauth2_code_verifier/blob/master/CODE_OF_CONDUCT.md).
+
+
+## License
+
+The gem is available as open source under the terms of the
+[MIT License](https://opensource.org/licenses/MIT).
+
+## Code of Conduct
+
+Everyone interacting in the Knock::Oauth2CodeVerifier project's codebases, issue
+trackers, chat rooms and mailing lists is expected to follow the
+[code of conduct](https://github.com/recitalsoftware/knock-oauth2_code_verifier/blob/master/CODE_OF_CONDUCT.md).

data/Rakefile

@@ -0,0 +1,6 @@
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new(:spec)
+
+task :default => :spec

data/app/controllers/knock/oauth2_code_verifier/application_controller.rb

@@ -0,0 +1,7 @@
+module Knock
+  module Oauth2CodeVerifier
+    class ApplicationController < ActionController::Base
+      protect_from_forgery with: :exception
+    end
+  end
+end

data/app/controllers/knock/oauth2_code_verifier/auth_token_controller.rb

@@ -0,0 +1,66 @@
+# frozen_string_literal: true
+
+require "oauth2"
+
+module Knock
+  module Oauth2CodeVerifier
+    class AuthTokenController < Knock::AuthTokenController
+      # Knock provides a bunch of auth stuff for us, so we base on that
+      # controller, but we don't want their default auth method (we need to auth
+      # them via OAuth, not the default email/password check)
+      skip_before_action :authenticate
+
+      def create
+        raise "Implement #create in your controller"
+      end
+
+      private
+
+      def config
+        Knock::Oauth2CodeVerifier.configuration.for_provider(params[:provider])
+      end
+
+      def client
+        @client ||= OAuth2::Client.new(
+          config.client_id,
+          config.client_secret,
+          authorize_url: config.authorize_url,
+          token_url: config.token_url,
+          logger: Rails.logger,
+        )
+      end
+
+      def access_token
+        @access_token ||= client
+          .auth_code
+          .get_token(
+            params[:code],
+            {
+              redirect_uri: params[:redirect_uri],
+              code_verifier: params[:code_verifier],
+            },
+          )
+      end
+
+      def refresh_token
+        # Only set on the first auth, and perhaps if the access token expires?
+        # e.g. https://developers.google.com/identity/protocols/oauth2#expiration
+        access_token&.refresh_token
+      end
+
+      def user_info
+        return @user_info if @user_info
+
+        info = JSON.parse(access_token.get(config[:userinfo_url]).body)
+
+        @user_info = {
+          auth_provider: params[:provider],
+          name: info["name"] || info["displayName"],
+          email: info["email"] || info["mail"],
+          refresh_token: refresh_token,
+          raw_info: info,
+        }
+      end
+    end
+  end
+end

data/bin/console

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "knock/oauth2_code_verifier"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start(__FILE__)

data/bin/rails

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+# This command will automatically be run when you run "rails" with Rails gems
+# installed from the root of your application.
+
+ENGINE_ROOT = File.expand_path('..', __dir__)
+ENGINE_PATH = File.expand_path('../lib/knock/oauth2_code_verifier/engine', __dir__)
+APP_PATH = File.expand_path('../test/dummy/config/application', __dir__)
+
+# Set up gems listed in the Gemfile.
+ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../Gemfile', __dir__)
+require 'bundler/setup' if File.exist?(ENV['BUNDLE_GEMFILE'])
+
+require 'rails/all'
+require 'rails/engine/commands'

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/config/routes.rb

@@ -0,0 +1,2 @@
+Knock::Oauth2CodeVerifier::Engine.routes.draw do
+end

data/knock-oauth2_code_verifier.gemspec

@@ -0,0 +1,47 @@
+# frozen_string_literal: true
+
+$:.push File.expand_path("lib", __dir__)
+
+require "knock/oauth2_code_verifier/version"
+
+Gem::Specification.new do |spec|
+  spec.name          = "knock-oauth2_code_verifier"
+  spec.version       = Knock::Oauth2CodeVerifier::VERSION
+  spec.authors       = ["Brendan Mulholland"]
+  spec.email         = ["brendan@recital.software"]
+
+  spec.summary       = "Backend provider of code verification for OAuth2\
+Authorization Code Request"
+  spec.description   = "Frontend libraries implement OAuth2 flows that \
+authenticate the user with your SPA, but are only part of the picture. If you're\
+storing user data on a backend, you'll need to authenticate them on both the\
+frontend and the backend. That's what Oauth2 Authorization Code Request does,\
+with PKCE thrown in for added security. This gem provides the backend\
+authorization needed, taking in a verification request and logging the user in\
+via JWT with Knock. If you're using Vue/React/etc with a frontend authorization\
+library like @nuxt/auth, and you're running Rails in API mode for your backend,\
+this gem completes the picture."
+  spec.homepage      = "https://github.com/recitalsoftware/knock-oauth2_code_verifier"
+  spec.license       = "MIT"
+  spec.required_ruby_version = Gem::Requirement.new(">= 2.3.0")
+
+  spec.metadata["allowed_push_host"] = "https://rubygems.org/"
+
+  spec.metadata["homepage_uri"] = spec.homepage
+  spec.metadata["source_code_uri"] = spec.homepage
+  spec.metadata["changelog_uri"] = "#{spec.homepage}/CHANGELOG.md"
+
+  # Specify which files should be added to the gem when it is released.
+  # The `git ls-files -z` loads the files in the RubyGem that have been added
+  # into git.
+  spec.files = Dir.chdir(File.expand_path('..', __FILE__)) do
+    `git ls-files -z`.split("\x0").reject { |f|
+      f.match(%r{^(test|spec|features)/})
+    }
+  end
+  spec.require_paths = %w[app lib]
+
+  spec.add_dependency "rails", ">= 5"
+  spec.add_dependency "knock", ">= 2.1.0"
+  spec.add_dependency "oauth2", ">= 1.4.0"
+end

data/lib/knock/oauth2_code_verifier.rb

@@ -0,0 +1,23 @@
+# frozen_string_literal: true
+
+require "knock/oauth2_code_verifier/configuration"
+require "knock/oauth2_code_verifier/engine"
+require "knock/oauth2_code_verifier/version"
+
+module Knock
+  module Oauth2CodeVerifier
+    class Error < StandardError; end
+
+    class << self
+      attr_writer :configuration
+    end
+
+    def self.configuration
+      @configuration ||= Configuration.new
+    end
+
+    def self.configure
+      yield(configuration)
+    end
+  end
+end

data/lib/knock/oauth2_code_verifier/configuration.rb

@@ -0,0 +1,34 @@
+# frozen_string_literal: true
+
+
+
+module Knock
+  module Oauth2CodeVerifier
+    class Configuration
+      attr_accessor :providers
+
+      def initialize
+        @providers = {}
+      end
+
+      def add_provider(provider, client_id, client_secret, urls)
+        raise "provider is required" unless provider
+        raise "client ID for provider is required" unless client_id
+        raise "client secret for provider is required" unless client_secret
+        raise "URL for token is required" unless urls[:token_url]
+        raise "URL for user info is required" unless urls[:userinfo_url]
+
+        @providers[provider] = {
+          client_id: client_id,
+          client_secret: client_secret,
+          token_url: urls[:token_url],
+          userinfo_url: urls[:userinfo_url],
+        }
+      end
+
+      def for_provider(provider)
+        OpenStruct.new(@providers[provider.to_sym])
+      end
+    end
+  end
+end

data/lib/knock/oauth2_code_verifier/engine.rb

@@ -0,0 +1,7 @@
+module Knock
+  module Oauth2CodeVerifier
+    class Engine < ::Rails::Engine
+      isolate_namespace Knock::Oauth2CodeVerifier
+    end
+  end
+end

data/lib/knock/oauth2_code_verifier/version.rb

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+module Knock
+  module Oauth2CodeVerifier
+    VERSION = "0.1.1"
+  end
+end

data/lib/tasks/knock/oauth2_code_verifier_tasks.rake

@@ -0,0 +1,4 @@
+# desc "Explaining what the task does"
+# task :knock_oauth2_code_verifier do
+#   # Task goes here
+# end

metadata

@@ -0,0 +1,121 @@
+--- !ruby/object:Gem::Specification
+name: knock-oauth2_code_verifier
+version: !ruby/object:Gem::Version
+  version: 0.1.1
+platform: ruby
+authors:
+- Brendan Mulholland
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2020-10-20 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '5'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '5'
+- !ruby/object:Gem::Dependency
+  name: knock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.1.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.1.0
+- !ruby/object:Gem::Dependency
+  name: oauth2
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.4.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.4.0
+description: Frontend libraries implement OAuth2 flows that authenticate the user
+  with your SPA, but are only part of the picture. If you'restoring user data on a
+  backend, you'll need to authenticate them on both thefrontend and the backend. That's
+  what Oauth2 Authorization Code Request does,with PKCE thrown in for added security.
+  This gem provides the backendauthorization needed, taking in a verification request
+  and logging the user invia JWT with Knock. If you're using Vue/React/etc with a
+  frontend authorizationlibrary like @nuxt/auth, and you're running Rails in API mode
+  for your backend,this gem completes the picture.
+email:
+- brendan@recital.software
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- ".rubocop.yml"
+- ".ruby-gemset"
+- ".ruby-version"
+- ".travis.yml"
+- CHANGELOG.md
+- CODE_OF_CONDUCT.md
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- app/controllers/knock/oauth2_code_verifier/application_controller.rb
+- app/controllers/knock/oauth2_code_verifier/auth_token_controller.rb
+- bin/console
+- bin/rails
+- bin/setup
+- config/routes.rb
+- knock-oauth2_code_verifier.gemspec
+- lib/knock/oauth2_code_verifier.rb
+- lib/knock/oauth2_code_verifier/configuration.rb
+- lib/knock/oauth2_code_verifier/engine.rb
+- lib/knock/oauth2_code_verifier/version.rb
+- lib/tasks/knock/oauth2_code_verifier_tasks.rake
+homepage: https://github.com/recitalsoftware/knock-oauth2_code_verifier
+licenses:
+- MIT
+metadata:
+  allowed_push_host: https://rubygems.org/
+  homepage_uri: https://github.com/recitalsoftware/knock-oauth2_code_verifier
+  source_code_uri: https://github.com/recitalsoftware/knock-oauth2_code_verifier
+  changelog_uri: https://github.com/recitalsoftware/knock-oauth2_code_verifier/CHANGELOG.md
+post_install_message:
+rdoc_options: []
+require_paths:
+- app
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.3.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.4
+signing_key:
+specification_version: 4
+summary: Backend provider of code verification for OAuth2Authorization Code Request
+test_files: []