ldap-rails 0.1.0

data/LICENSE.txt

@@ -0,0 +1,20 @@
+Copyright 2012 Ben Weissmann
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,49 @@
+# LDAP-Rails
+
+## Radically simple LDAP authentication
+
+ldap-rails is a Rails plugin that makes it easy to authenticate users against
+your organization's LDAP server.
+
+It's designed for Rails 3.1 and above.
+
+ldap-rails is developed and maintained by
+[Ben Weissmann](http://benweissmann.com). If you have bug reports or
+feature requests, please
+[file an issue](https://github.com/benweissmann/ldap-rails/issues) or email
+me at [ben@benweissmann.com](mailto:ben@benweissmann.com).
+
+## Setup
+
+1. Add "gem ldap-rails" to your Gemfile.
+2. Run "bundle install" to install the new gem.
+3. Run "rails generate ldap_auth ldap.your-org.com"
+
+That's it. You're done. Users will be presented with a login form when they
+visit your site, and will need to log in with LDAP before they can access your
+site.
+
+## Configuration
+
+ldap-rails will try to guess your LDAP server's configuration based on the
+the URL you give to the rails generate command. Note that you can specify
+the for as part of the URL -- for example, if your LDAP server runs on port
+1000, use "rails generate ldap_auth ldap.your-org.com:1000". ldap-rails will
+automatically try to use and SSL connection to your LDAP server if your LDAP
+server is on port 636.
+
+You can customize the LDAP connection configuration after you've run the
+generator in config/initializer/ldap_auth.rb. See the instruction in that
+file for more detail.
+
+## Roadmap
+
+Planned features:
+
+* Access control based on LDAP groups.
+* Integration with ActiveRecord to easily store authenticated users in your
+  database.
+
+## License
+
+ldap-rails is licensed under the MIT license. See LICENSE.txt for details.

data/Rakefile

@@ -0,0 +1,37 @@
+#!/usr/bin/env rake
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+begin
+  require 'rdoc/task'
+rescue LoadError
+  require 'rdoc/rdoc'
+  require 'rake/rdoctask'
+  RDoc::Task = Rake::RDocTask
+end
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'LdapRails'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+
+
+Bundler::GemHelper.install_tasks
+
+require 'rake/testtask'
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'lib'
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = false
+end
+
+
+task :default => :test

data/lib/generators/ldap_auth/ldap_auth_generator.rb

@@ -0,0 +1,34 @@
+class LdapAuthGenerator < Rails::Generators::Base
+  desc "Creates the views and controllers for LDAP authentication"
+  source_root File.expand_path("../templates", __FILE__)
+  argument :ldap_host, :type => :string
+
+  def create_initializer
+    LdapRails.configure :host => ldap_host
+    template "ldap_auth.rb.erb", "config/initializers/ldap_auth.rb"
+  end
+
+  def add_before_filter
+    inject_into_class "app/controllers/application_controller.rb", ApplicationController do
+     "  before_filter :require_ldap_auth, :except => [:ldap_login, :persist_ldap_login, :ldap_logout]\n"
+    end
+  end
+
+  def add_routes
+    route "get '/ldap_login' => 'LdapLogins#ldap_login', :as => :ldap_login"
+    route "post '/ldap_login' => 'LdapLogins#persist_ldap_login', :as => :persist_ldap_login"
+    route "post '/ldap_logout' => 'LdapLogins#ldap_logout', :as => :ldap_logout"
+  end
+
+  def create_controller
+    copy_file "ldap_logins_controller.rb", "app/controllers/ldap_logins_controller.rb"
+  end
+
+  def create_views
+    copy_file "ldap_login.html.erb", "app/views/ldap_logins/ldap_login.html.erb"
+  end
+
+  def instructions
+    readme "README"
+  end
+end

data/lib/generators/ldap_auth/templates/README

@@ -0,0 +1,25 @@
+
+
+You're all set up for authentication. Just double-check that the settings
+in config/initializers/ldap_auth.rb are correct.
+
+YOu can style the login page with CSS, or just use Bootstrap
+(http://twitter.github.com/bootstrap/) -- the login page is set up to
+loog great with Bootstrap.
+
+In your controllers, use "ldap_user.username" to get the username of the
+logged in user. In your views, use "@controller.ldap_user.username".
+
+To create a simple login status display with a logout link
+(e.g. "You are logged in as someuser. <a href="/logout">Log Out</a>.")
+use:
+
+<%= ldap_status %>
+
+To log out a user, submit a POST request to "/logout_ldap". You can
+create a logout link in your views with:
+
+<%= link_to 'Log Out', ldap_logout_path, :method => :post %>
+
+For more documentation, go to http://github.com/benweissmann/ldap-rails
+

data/lib/generators/ldap_auth/templates/ldap_auth.rb.erb

@@ -0,0 +1,16 @@
+# Make sure to restart your server whenever you edit this file.
+
+# The configuration parameters here are inferred from the hostname you provided
+# to the generator, and are usually correct. You can edit them to match
+# your LDAP server's configuration.
+#
+# host: The hostname of the LDAP server
+# port: The port to connect to the LDAP server on. The default for non-SSL
+#       connections in 389 and the default of SSL connections is 636.
+# ssl:  If true, LdapRails will connect using SSL/TLS.
+# 
+# base_dn, login_key, login_prefix: Ask you LDAP server administrator
+# for these value. When authenticating, LdapRails constructs the LDAP
+# DN for the user based on their username and these values:
+# DN: <login_key>=<username>,<login_suffix>,<base_dn>
+LdapRails.configure(<%= LdapRails.config.inspect %>)

data/lib/generators/ldap_auth/templates/ldap_login.html.erb

@@ -0,0 +1,25 @@
+<% if flash[:ldap_login_error] %>
+  <div class="alert alert-error">
+    <%= flash[:ldap_login_error] %>
+  </div>
+<% end %>
+
+<%= form_tag :html => {:class => 'ldap-login-form form-horizontal'} do %>
+  <legend>Log in with your LDAP username and password</legend>
+  <div class="control-group">
+    <label class="control-label" for="username">Username</label>
+    <div class="controls">
+      <input type="text" class="input-xlarge" id="username" name="username">
+    </div>
+  </div>
+  <div class="control-group">
+    <label class="control-label" for="password">Password</label>
+    <div class="controls">
+      <input type="password" class="input-xlarge" id="password" name="password">
+    </div>
+  </div>
+
+  <div class="form-actions">
+    <button type="submit" class="btn btn-primary">Log In</buton>
+  </div>
+<% end %>

data/lib/generators/ldap_auth/templates/ldap_logins_controller.rb

@@ -0,0 +1,32 @@
+class LdapLoginsController < ApplicationController
+  # GET /ldap_login
+  def ldap_login
+    # ldap_logins.erb
+  end
+
+  # POST /ldap_login
+  def persist_ldap_login
+    user = LdapRails::LdapUser.auth params[:username], params[:password]
+
+    if user.nil?
+      flash[:ldap_login_error] = "Incorrect username or password."
+      redirect_to ldap_login_path
+    else
+      session[:ldap_user] = user.to_hash
+      flash[:notice] = "Logged in as #{user.username}."
+
+      # Clear return_to so it doesn't get re-used if the user logs out
+      # and logs in again.
+      target = (session[:return_to] || '/')
+      session.delete :return_to
+
+      redirect_to target
+    end
+  end
+
+  # POST /ldap_logout
+  def ldap_logout
+    session[:ldap_user] = nil
+    redirect_to '/'
+  end
+end

data/lib/ldap-rails.rb

@@ -0,0 +1,3 @@
+Dir[File.join(File.dirname(__FILE__), 'ldap-rails', '**', '*.rb')].each do |f|
+  require f
+end

data/lib/ldap-rails/config.rb

@@ -0,0 +1,65 @@
+require 'uri'
+
+module LdapRails
+  class << self
+    attr_reader :config
+    attr_reader :ldap
+
+    def configure config
+      # config[:host] is required
+      unless config[:host]
+        raise InvalidConfigurationError.new("Must provide :host to LdapRails.configure")
+      end
+
+      # store and autocomplete the config
+      @config = config
+      autocomplete_config
+
+      # create a Net::LDAP
+      opts = {:host => config[:host], :port => config[:port]}
+
+      if config[:ssl]
+        opts[:encryption] = :simple_tls
+      end
+
+      @ldap = Net::LDAP.new opts
+    end
+
+    private
+
+    def autocomplete_config
+      # split port from host
+      if @config[:port].nil? and @config[:host] and config[:host].include? ':'
+        @config[:host], @config[:port] = @config[:host].split(':')
+        @config[:port] = @config[:port].to_i
+      end
+
+      # default port to 389
+      @config[:port] ||= 389
+
+      # infer TLS from port
+      if @config[:ssl].nil? and @config[:port] == 636
+        @config[:ssl] = true
+      end
+
+      # default TLS to false
+      @config[:ssl] ||= false
+
+      # infer base_dn from host
+      if @config[:host] and @config[:base_dn].nil?
+        parts = @config[:host].split('.')
+        if parts.length == 1
+          @config[:base_dn] = "dc=#{parts[0]}"
+        elsif parts.length > 1
+          @config[:base_dn] = "dc=#{parts[-2]},dc=#{parts[-1]}"
+        end
+      end
+
+      # default login key to 'uid' and login suffix to ''
+      @config[:login_key] ||= 'uid' 
+      @config[:login_suffix] ||= ''
+    end
+  end
+
+  class InvalidConfigurationError < StandardError; end
+end

data/lib/ldap-rails/controller_extensions.rb

@@ -0,0 +1,21 @@
+module LdapRails
+  module ControllerExtensions
+    def ldap_user
+      if session[:ldap_user]
+        @ldap_user = LdapRails::LdapUser.new session[:ldap_user]
+      end
+
+      return @ldap_user
+    end
+
+    def require_ldap_auth
+      if ldap_user.nil?
+        session[:return_to] = request.path
+        flash[:error] = "You must log in."
+        redirect_to ldap_login_path
+      end
+    end
+  end
+end
+
+ActionController::Base.send :include, LdapRails::ControllerExtensions

data/lib/ldap-rails/helper_extensions.rb

@@ -0,0 +1,16 @@
+module LdapRails
+  module HelperExtensions
+    def ldap_user
+      controller.ldap_user
+    end
+
+    def ldap_status
+      return '' unless ldap_user
+
+      link = link_to('Log Out', ldap_logout_path, :method => :post)
+      return "Logged in as #{ldap_user.username}. #{link}.".html_safe
+    end
+  end
+end
+
+ActionView::Base.send :include, LdapRails::HelperExtensions

data/lib/ldap-rails/ldap_user.rb

@@ -0,0 +1,40 @@
+require 'net-ldap'
+
+module LdapRails
+  class LdapUser
+    attr_reader :username
+
+    def initialize hash
+      @username = hash[:username]
+    end
+
+    def to_hash
+      {:username => @username}
+    end
+
+    # Tries to authenticate using the given username and password. Returns
+    # an LdapUser is successful, nil if unsuccessful.
+    def self.auth username, password
+      unless LdapRails.config
+        raise NoConfigurationError.new("You must have a call to LdapRails.configure in an initializer.")
+      end
+
+      LdapRails.ldap.auth dn_for(username), password
+      if LdapRails.ldap.bind
+        return new(:username => username)
+      else
+        return nil
+      end
+    end
+
+    def self.dn_for username
+      dn = "#{LdapRails.config[:login_key]}=#{username}"
+      if LdapRails.config[:login_suffix].length > 0
+        dn += ",#{LdapRails.config[:login_suffix]}"
+      end
+    end
+    private_class_method :dn_for
+  end
+
+  class NoConfigurationError < StandardError; end
+end

data/lib/ldap-rails/version.rb

@@ -0,0 +1,3 @@
+module LdapRails
+  VERSION = "0.1.0"
+end

data/lib/tasks/ldap-rails_tasks.rake

@@ -0,0 +1,4 @@
+# desc "Explaining what the task does"
+# task :ldap-rails do
+#   # Task goes here
+# end

data/test/config_test.rb

@@ -0,0 +1,84 @@
+require 'test_helper'
+
+class LdapRailsTest < ActiveSupport::TestCase
+  test "configure, all specified" do
+    LdapRails.configure :host => 'foo.example.com',
+                        :port => 100,
+                        :ssl => true,
+                        :base_dn => 'dc=a,dc=b',
+                        :login_suffix => 'ou=hello,ou=world',
+                        :login_key => 'userid'
+
+    assert_equal 'foo.example.com', LdapRails.config[:host]
+    assert_equal 100, LdapRails.config[:port]
+    assert_equal true, LdapRails.config[:ssl]
+    assert_equal 'dc=a,dc=b', LdapRails.config[:base_dn]
+    assert_equal 'ou=hello,ou=world', LdapRails.config[:login_suffix]
+    assert_equal 'userid', LdapRails.config[:login_key]
+  end
+
+  test "configure, default port" do
+    LdapRails.configure :host => 'foo.example.com',
+                        :ssl => true,
+                        :base_dn => 'dc=a,dc=b'
+
+    assert_equal 'foo.example.com', LdapRails.config[:host]
+    assert_equal 389, LdapRails.config[:port]
+    assert_equal true, LdapRails.config[:ssl]
+    assert_equal 'dc=a,dc=b', LdapRails.config[:base_dn]
+  end
+
+  test "configure, infer port" do
+    LdapRails.configure :host => 'foo.example.com:1000',
+                        :ssl => true,
+                        :base_dn => 'dc=a,dc=b'
+
+    assert_equal 'foo.example.com', LdapRails.config[:host]
+    assert_equal 1000, LdapRails.config[:port]
+    assert_equal true, LdapRails.config[:ssl]
+    assert_equal 'dc=a,dc=b', LdapRails.config[:base_dn]
+  end
+
+  test "configure, default ssl" do
+    LdapRails.configure :host => 'foo.example.com',
+                        :port => 100,
+                        :base_dn => 'dc=a,dc=b'
+
+    assert_equal 'foo.example.com', LdapRails.config[:host]
+    assert_equal 100, LdapRails.config[:port]
+    assert_equal false, LdapRails.config[:ssl]
+    assert_equal 'dc=a,dc=b', LdapRails.config[:base_dn]
+  end
+
+  test "configure, infer ssl" do
+    LdapRails.configure :host => 'foo.example.com:636',
+                        :base_dn => 'dc=a,dc=b'
+
+    assert_equal 'foo.example.com', LdapRails.config[:host]
+    assert_equal 636, LdapRails.config[:port]
+    assert_equal true, LdapRails.config[:ssl]
+    assert_equal 'dc=a,dc=b', LdapRails.config[:base_dn]
+  end
+
+  test "configure, infer all" do
+    LdapRails.configure :host => 'foo.example.com:636'
+
+    assert_equal 'foo.example.com', LdapRails.config[:host]
+    assert_equal 636, LdapRails.config[:port]
+    assert_equal true, LdapRails.config[:ssl]
+    assert_equal 'dc=example,dc=com', LdapRails.config[:base_dn]
+    assert_nil   LdapRails.config[:login_suffix]
+    assert_equal 'uid', LdapRails.config[:login_key]
+  end
+
+  test "configure, no host" do
+    assert_raise LdapRails::InvalidConfigurationError do
+      LdapRails.configure :port => 100,
+                          :ssl => true,
+                          :base_dn => 'dc=a,dc=b',
+                          :login_suffix => 'ou=hello,ou=world',
+                          :login_key => 'userid'
+    end
+  end
+end
+

data/test/dummy/Rakefile

@@ -0,0 +1,7 @@
+#!/usr/bin/env rake
+# Add your own tasks in files placed in lib/tasks ending in .rake,
+# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
+
+require File.expand_path('../config/application', __FILE__)
+
+Dummy::Application.load_tasks

data/test/dummy/app/assets/javascripts/application.js

@@ -0,0 +1,9 @@
+// This is a manifest file that'll be compiled into including all the files listed below.
+// Add new JavaScript/Coffee code in separate files in this directory and they'll automatically
+// be included in the compiled file accessible from http://example.com/assets/application.js
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// the compiled file.
+//
+//= require jquery
+//= require jquery_ujs
+//= require_tree .

data/test/dummy/app/assets/stylesheets/application.css

@@ -0,0 +1,7 @@
+/*
+ * This is a manifest file that'll automatically include all the stylesheets available in this directory
+ * and any sub-directories. You're free to add application-wide styles to this file and they'll appear at
+ * the top of the compiled file, but it's generally better to create a new file per style scope.
+ *= require_self
+ *= require_tree . 
+*/

data/test/dummy/app/controllers/application_controller.rb

@@ -0,0 +1,3 @@
+class ApplicationController < ActionController::Base
+  protect_from_forgery
+end

data/test/dummy/app/helpers/application_helper.rb

@@ -0,0 +1,2 @@
+module ApplicationHelper
+end

data/test/dummy/app/views/layouts/application.html.erb

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Dummy</title>
+  <%= stylesheet_link_tag    "application" %>
+  <%= javascript_include_tag "application" %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+
+<%= yield %>
+
+</body>
+</html>

data/test/dummy/config.ru

@@ -0,0 +1,4 @@
+# This file is used by Rack-based servers to start the application.
+
+require ::File.expand_path('../config/environment',  __FILE__)
+run Dummy::Application

data/test/dummy/config/application.rb

@@ -0,0 +1,45 @@
+require File.expand_path('../boot', __FILE__)
+
+require 'rails/all'
+
+Bundler.require
+require "ldap-rails"
+
+module Dummy
+  class Application < Rails::Application
+    # Settings in config/environments/* take precedence over those specified here.
+    # Application configuration should go into files in config/initializers
+    # -- all .rb files in that directory are automatically loaded.
+
+    # Custom directories with classes and modules you want to be autoloadable.
+    # config.autoload_paths += %W(#{config.root}/extras)
+
+    # Only load the plugins named here, in the order given (default is alphabetical).
+    # :all can be used as a placeholder for all plugins not explicitly named.
+    # config.plugins = [ :exception_notification, :ssl_requirement, :all ]
+
+    # Activate observers that should always be running.
+    # config.active_record.observers = :cacher, :garbage_collector, :forum_observer
+
+    # Set Time.zone default to the specified zone and make Active Record auto-convert to this zone.
+    # Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC.
+    # config.time_zone = 'Central Time (US & Canada)'
+
+    # The default locale is :en and all translations from config/locales/*.rb,yml are auto loaded.
+    # config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s]
+    # config.i18n.default_locale = :de
+
+    # Configure the default encoding used in templates for Ruby 1.9.
+    config.encoding = "utf-8"
+
+    # Configure sensitive parameters which will be filtered from the log file.
+    config.filter_parameters += [:password]
+
+    # Enable the asset pipeline
+    config.assets.enabled = true
+
+    # Version of your assets, change this if you want to expire all your assets
+    config.assets.version = '1.0'
+  end
+end
+

data/test/dummy/config/boot.rb

@@ -0,0 +1,10 @@
+require 'rubygems'
+gemfile = File.expand_path('../../../../Gemfile', __FILE__)
+
+if File.exist?(gemfile)
+  ENV['BUNDLE_GEMFILE'] = gemfile
+  require 'bundler'
+  Bundler.setup
+end
+
+$:.unshift File.expand_path('../../../../lib', __FILE__)

data/test/dummy/config/database.yml

@@ -0,0 +1,25 @@
+# SQLite version 3.x
+#   gem install sqlite3
+#
+#   Ensure the SQLite 3 gem is defined in your Gemfile
+#   gem 'sqlite3'
+development:
+  adapter: sqlite3
+  database: db/development.sqlite3
+  pool: 5
+  timeout: 5000
+
+# Warning: The database defined as "test" will be erased and
+# re-generated from your development database when you run "rake".
+# Do not set this db to the same as development or production.
+test:
+  adapter: sqlite3
+  database: db/test.sqlite3
+  pool: 5
+  timeout: 5000
+
+production:
+  adapter: sqlite3
+  database: db/production.sqlite3
+  pool: 5
+  timeout: 5000

data/test/dummy/config/environment.rb

@@ -0,0 +1,5 @@
+# Load the rails application
+require File.expand_path('../application', __FILE__)
+
+# Initialize the rails application
+Dummy::Application.initialize!

data/test/dummy/config/environments/development.rb

@@ -0,0 +1,30 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # In the development environment your application's code is reloaded on
+  # every request.  This slows down response time but is perfect for development
+  # since you don't have to restart the web server when you make code changes.
+  config.cache_classes = false
+
+  # Log error messages when you accidentally call methods on nil.
+  config.whiny_nils = true
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Don't care if the mailer can't send
+  config.action_mailer.raise_delivery_errors = false
+
+  # Print deprecation notices to the Rails logger
+  config.active_support.deprecation = :log
+
+  # Only use best-standards-support built into browsers
+  config.action_dispatch.best_standards_support = :builtin
+
+  # Do not compress assets
+  config.assets.compress = false
+
+  # Expands the lines which load the assets
+  config.assets.debug = true
+end

data/test/dummy/config/environments/production.rb

@@ -0,0 +1,60 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # Code is not reloaded between requests
+  config.cache_classes = true
+
+  # Full error reports are disabled and caching is turned on
+  config.consider_all_requests_local       = false
+  config.action_controller.perform_caching = true
+
+  # Disable Rails's static asset server (Apache or nginx will already do this)
+  config.serve_static_assets = false
+
+  # Compress JavaScripts and CSS
+  config.assets.compress = true
+
+  # Don't fallback to assets pipeline if a precompiled asset is missed
+  config.assets.compile = false
+
+  # Generate digests for assets URLs
+  config.assets.digest = true
+
+  # Defaults to Rails.root.join("public/assets")
+  # config.assets.manifest = YOUR_PATH
+
+  # Specifies the header that your server uses for sending files
+  # config.action_dispatch.x_sendfile_header = "X-Sendfile" # for apache
+  # config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for nginx
+
+  # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies.
+  # config.force_ssl = true
+
+  # See everything in the log (default is :info)
+  # config.log_level = :debug
+
+  # Use a different logger for distributed setups
+  # config.logger = SyslogLogger.new
+
+  # Use a different cache store in production
+  # config.cache_store = :mem_cache_store
+
+  # Enable serving of images, stylesheets, and JavaScripts from an asset server
+  # config.action_controller.asset_host = "http://assets.example.com"
+
+  # Precompile additional assets (application.js, application.css, and all non-JS/CSS are already added)
+  # config.assets.precompile += %w( search.js )
+
+  # Disable delivery errors, bad email addresses will be ignored
+  # config.action_mailer.raise_delivery_errors = false
+
+  # Enable threaded mode
+  # config.threadsafe!
+
+  # Enable locale fallbacks for I18n (makes lookups for any locale fall back to
+  # the I18n.default_locale when a translation can not be found)
+  config.i18n.fallbacks = true
+
+  # Send deprecation notices to registered listeners
+  config.active_support.deprecation = :notify
+end

data/test/dummy/config/environments/test.rb

@@ -0,0 +1,42 @@
+Dummy::Application.configure do
+  # Settings specified here will take precedence over those in config/application.rb
+
+  # The test environment is used exclusively to run your application's
+  # test suite.  You never need to work with it otherwise.  Remember that
+  # your test database is "scratch space" for the test suite and is wiped
+  # and recreated between test runs.  Don't rely on the data there!
+  config.cache_classes = true
+
+  # Configure static asset server for tests with Cache-Control for performance
+  config.serve_static_assets = true
+  config.static_cache_control = "public, max-age=3600"
+
+  # Log error messages when you accidentally call methods on nil
+  config.whiny_nils = true
+
+  # Show full error reports and disable caching
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Raise exceptions instead of rendering exception templates
+  config.action_dispatch.show_exceptions = false
+
+  # Disable request forgery protection in test environment
+  config.action_controller.allow_forgery_protection    = false
+
+  # Tell Action Mailer not to deliver emails to the real world.
+  # The :test delivery method accumulates sent emails in the
+  # ActionMailer::Base.deliveries array.
+  config.action_mailer.delivery_method = :test
+
+  # Use SQL instead of Active Record's schema dumper when creating the test database.
+  # This is necessary if your schema can't be completely dumped by the schema dumper,
+  # like if you have constraints or database-specific column types
+  # config.active_record.schema_format = :sql
+
+  # Print deprecation notices to the stderr
+  config.active_support.deprecation = :stderr
+
+  # Allow pass debug_assets=true as a query parameter to load pages with unpackaged assets
+  config.assets.allow_debugging = true
+end

data/test/dummy/config/initializers/backtrace_silencers.rb

@@ -0,0 +1,7 @@
+# Be sure to restart your server when you modify this file.
+
+# You can add backtrace silencers for libraries that you're using but don't wish to see in your backtraces.
+# Rails.backtrace_cleaner.add_silencer { |line| line =~ /my_noisy_library/ }
+
+# You can also remove all the silencers if you're trying to debug a problem that might stem from framework code.
+# Rails.backtrace_cleaner.remove_silencers!

data/test/dummy/config/initializers/inflections.rb

@@ -0,0 +1,10 @@
+# Be sure to restart your server when you modify this file.
+
+# Add new inflection rules using the following format
+# (all these examples are active by default):
+# ActiveSupport::Inflector.inflections do |inflect|
+#   inflect.plural /^(ox)$/i, '\1en'
+#   inflect.singular /^(ox)en/i, '\1'
+#   inflect.irregular 'person', 'people'
+#   inflect.uncountable %w( fish sheep )
+# end

data/test/dummy/config/initializers/ldap_rails.rb

@@ -0,0 +1 @@
+LdapRails.configure :host => 'ceviche.local'

data/test/dummy/config/initializers/mime_types.rb

@@ -0,0 +1,5 @@
+# Be sure to restart your server when you modify this file.
+
+# Add new mime types for use in respond_to blocks:
+# Mime::Type.register "text/richtext", :rtf
+# Mime::Type.register_alias "text/html", :iphone

data/test/dummy/config/initializers/secret_token.rb

@@ -0,0 +1,7 @@
+# Be sure to restart your server when you modify this file.
+
+# Your secret key for verifying the integrity of signed cookies.
+# If you change this key, all old signed cookies will become invalid!
+# Make sure the secret is at least 30 characters and all random,
+# no regular words or you'll be exposed to dictionary attacks.
+Dummy::Application.config.secret_token = 'a2f155ce453fd3fea9ba23634191f5a29628e90f7ac6b3b5a01d059ceb0481e7b0708e342b293f015d556b63c8292c0756844af0ad48ae675e8818aa2479bbf1'

data/test/dummy/config/initializers/session_store.rb

@@ -0,0 +1,8 @@
+# Be sure to restart your server when you modify this file.
+
+Dummy::Application.config.session_store :cookie_store, key: '_dummy_session'
+
+# Use the database for sessions instead of the cookie-based default,
+# which shouldn't be used to store highly confidential information
+# (create the session table with "rails generate session_migration")
+# Dummy::Application.config.session_store :active_record_store

data/test/dummy/config/initializers/wrap_parameters.rb

@@ -0,0 +1,14 @@
+# Be sure to restart your server when you modify this file.
+#
+# This file contains settings for ActionController::ParamsWrapper which
+# is enabled by default.
+
+# Enable parameter wrapping for JSON. You can disable this by setting :format to an empty array.
+ActiveSupport.on_load(:action_controller) do
+  wrap_parameters format: [:json]
+end
+
+# Disable root element in JSON by default.
+ActiveSupport.on_load(:active_record) do
+  self.include_root_in_json = false
+end

data/test/dummy/config/locales/en.yml

@@ -0,0 +1,5 @@
+# Sample localization file for English. Add more files in this directory for other locales.
+# See https://github.com/svenfuchs/rails-i18n/tree/master/rails%2Flocale for starting points.
+
+en:
+  hello: "Hello world"

data/test/dummy/config/routes.rb

@@ -0,0 +1,58 @@
+Dummy::Application.routes.draw do
+  # The priority is based upon order of creation:
+  # first created -> highest priority.
+
+  # Sample of regular route:
+  #   match 'products/:id' => 'catalog#view'
+  # Keep in mind you can assign values other than :controller and :action
+
+  # Sample of named route:
+  #   match 'products/:id/purchase' => 'catalog#purchase', :as => :purchase
+  # This route can be invoked with purchase_url(:id => product.id)
+
+  # Sample resource route (maps HTTP verbs to controller actions automatically):
+  #   resources :products
+
+  # Sample resource route with options:
+  #   resources :products do
+  #     member do
+  #       get 'short'
+  #       post 'toggle'
+  #     end
+  #
+  #     collection do
+  #       get 'sold'
+  #     end
+  #   end
+
+  # Sample resource route with sub-resources:
+  #   resources :products do
+  #     resources :comments, :sales
+  #     resource :seller
+  #   end
+
+  # Sample resource route with more complex sub-resources
+  #   resources :products do
+  #     resources :comments
+  #     resources :sales do
+  #       get 'recent', :on => :collection
+  #     end
+  #   end
+
+  # Sample resource route within a namespace:
+  #   namespace :admin do
+  #     # Directs /admin/products/* to Admin::ProductsController
+  #     # (app/controllers/admin/products_controller.rb)
+  #     resources :products
+  #   end
+
+  # You can have the root of your site routed with "root"
+  # just remember to delete public/index.html.
+  # root :to => 'welcome#index'
+
+  # See how all your routes lay out with "rake routes"
+
+  # This is a legacy wild controller route that's not recommended for RESTful applications.
+  # Note: This route will make all actions in every controller accessible via GET requests.
+  # match ':controller(/:action(/:id(.:format)))'
+end

data/test/dummy/public/404.html

@@ -0,0 +1,26 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>The page you were looking for doesn't exist (404)</title>
+  <style type="text/css">
+    body { background-color: #fff; color: #666; text-align: center; font-family: arial, sans-serif; }
+    div.dialog {
+      width: 25em;
+      padding: 0 4em;
+      margin: 4em auto 0 auto;
+      border: 1px solid #ccc;
+      border-right-color: #999;
+      border-bottom-color: #999;
+    }
+    h1 { font-size: 100%; color: #f00; line-height: 1.5em; }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/404.html -->
+  <div class="dialog">
+    <h1>The page you were looking for doesn't exist.</h1>
+    <p>You may have mistyped the address or the page may have moved.</p>
+  </div>
+</body>
+</html>

data/test/dummy/public/422.html

@@ -0,0 +1,26 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>The change you wanted was rejected (422)</title>
+  <style type="text/css">
+    body { background-color: #fff; color: #666; text-align: center; font-family: arial, sans-serif; }
+    div.dialog {
+      width: 25em;
+      padding: 0 4em;
+      margin: 4em auto 0 auto;
+      border: 1px solid #ccc;
+      border-right-color: #999;
+      border-bottom-color: #999;
+    }
+    h1 { font-size: 100%; color: #f00; line-height: 1.5em; }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/422.html -->
+  <div class="dialog">
+    <h1>The change you wanted was rejected.</h1>
+    <p>Maybe you tried to change something you didn't have access to.</p>
+  </div>
+</body>
+</html>

data/test/dummy/public/500.html

@@ -0,0 +1,26 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>We're sorry, but something went wrong (500)</title>
+  <style type="text/css">
+    body { background-color: #fff; color: #666; text-align: center; font-family: arial, sans-serif; }
+    div.dialog {
+      width: 25em;
+      padding: 0 4em;
+      margin: 4em auto 0 auto;
+      border: 1px solid #ccc;
+      border-right-color: #999;
+      border-bottom-color: #999;
+    }
+    h1 { font-size: 100%; color: #f00; line-height: 1.5em; }
+  </style>
+</head>
+
+<body>
+  <!-- This file lives in public/500.html -->
+  <div class="dialog">
+    <h1>We're sorry, but something went wrong.</h1>
+    <p>We've been notified about this issue and we'll take a look at it shortly.</p>
+  </div>
+</body>
+</html>

data/test/dummy/script/rails

@@ -0,0 +1,6 @@
+#!/usr/bin/env ruby
+# This command will automatically be run when you run "rails" with Rails 3 gems installed from the root of your application.
+
+APP_PATH = File.expand_path('../../config/application',  __FILE__)
+require File.expand_path('../../config/boot',  __FILE__)
+require 'rails/commands'

data/test/test_helper.rb

@@ -0,0 +1,10 @@
+# Configure Rails Environment
+ENV["RAILS_ENV"] = "test"
+
+require File.expand_path("../dummy/config/environment.rb",  __FILE__)
+require "rails/test_help"
+
+Rails.backtrace_cleaner.remove_silencers!
+
+# Load support files
+Dir["#{File.dirname(__FILE__)}/support/**/*.rb"].each { |f| require f }

data/test/version_test.rb

@@ -0,0 +1,7 @@
+require 'test_helper'
+
+class LdapRailsTest < ActiveSupport::TestCase
+  test "version" do
+    assert_equal '0.1.0', LdapRails::VERSION
+  end
+end

metadata

@@ -0,0 +1,165 @@
+--- !ruby/object:Gem::Specification
+name: ldap-rails
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+  prerelease: 
+platform: ruby
+authors:
+- Ben Weissmann
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2012-08-05 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: &14503000 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 3.1.0
+  type: :runtime
+  prerelease: false
+  version_requirements: *14503000
+- !ruby/object:Gem::Dependency
+  name: net-ldap
+  requirement: &14502340 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.3.1
+  type: :runtime
+  prerelease: false
+  version_requirements: *14502340
+- !ruby/object:Gem::Dependency
+  name: sqlite3
+  requirement: &14501860 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: *14501860
+description: Generator that enabled LDAP authentication with a single command.
+email:
+- ben@benweissmann.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/tasks/ldap-rails_tasks.rake
+- lib/generators/ldap_auth/ldap_auth_generator.rb
+- lib/generators/ldap_auth/templates/ldap_auth.rb.erb
+- lib/generators/ldap_auth/templates/README
+- lib/generators/ldap_auth/templates/ldap_logins_controller.rb
+- lib/generators/ldap_auth/templates/ldap_login.html.erb
+- lib/ldap-rails/controller_extensions.rb
+- lib/ldap-rails/version.rb
+- lib/ldap-rails/helper_extensions.rb
+- lib/ldap-rails/config.rb
+- lib/ldap-rails/ldap_user.rb
+- lib/ldap-rails.rb
+- LICENSE.txt
+- Rakefile
+- README.md
+- test/version_test.rb
+- test/config_test.rb
+- test/dummy/log/test.log
+- test/dummy/config/database.yml
+- test/dummy/config/locales/en.yml
+- test/dummy/config/application.rb
+- test/dummy/config/environments/test.rb
+- test/dummy/config/environments/production.rb
+- test/dummy/config/environments/development.rb
+- test/dummy/config/boot.rb
+- test/dummy/config/initializers/wrap_parameters.rb
+- test/dummy/config/initializers/session_store.rb
+- test/dummy/config/initializers/secret_token.rb
+- test/dummy/config/initializers/inflections.rb
+- test/dummy/config/initializers/backtrace_silencers.rb
+- test/dummy/config/initializers/ldap_rails.rb
+- test/dummy/config/initializers/mime_types.rb
+- test/dummy/config/environment.rb
+- test/dummy/config/routes.rb
+- test/dummy/config.ru
+- test/dummy/script/rails
+- test/dummy/db/test.sqlite3
+- test/dummy/app/views/layouts/application.html.erb
+- test/dummy/app/helpers/application_helper.rb
+- test/dummy/app/controllers/application_controller.rb
+- test/dummy/app/assets/stylesheets/application.css
+- test/dummy/app/assets/javascripts/application.js
+- test/dummy/public/500.html
+- test/dummy/public/422.html
+- test/dummy/public/404.html
+- test/dummy/public/favicon.ico
+- test/dummy/Rakefile
+- test/test_helper.rb
+homepage: http://github.com/benweissmann/ldap-rails
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+      segments:
+      - 0
+      hash: -3351325667015385517
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+      segments:
+      - 0
+      hash: -3351325667015385517
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.6
+signing_key: 
+specification_version: 3
+summary: Radically simple LDAP authentication for Rails.
+test_files:
+- test/version_test.rb
+- test/config_test.rb
+- test/dummy/log/test.log
+- test/dummy/config/database.yml
+- test/dummy/config/locales/en.yml
+- test/dummy/config/application.rb
+- test/dummy/config/environments/test.rb
+- test/dummy/config/environments/production.rb
+- test/dummy/config/environments/development.rb
+- test/dummy/config/boot.rb
+- test/dummy/config/initializers/wrap_parameters.rb
+- test/dummy/config/initializers/session_store.rb
+- test/dummy/config/initializers/secret_token.rb
+- test/dummy/config/initializers/inflections.rb
+- test/dummy/config/initializers/backtrace_silencers.rb
+- test/dummy/config/initializers/ldap_rails.rb
+- test/dummy/config/initializers/mime_types.rb
+- test/dummy/config/environment.rb
+- test/dummy/config/routes.rb
+- test/dummy/config.ru
+- test/dummy/script/rails
+- test/dummy/db/test.sqlite3
+- test/dummy/app/views/layouts/application.html.erb
+- test/dummy/app/helpers/application_helper.rb
+- test/dummy/app/controllers/application_controller.rb
+- test/dummy/app/assets/stylesheets/application.css
+- test/dummy/app/assets/javascripts/application.js
+- test/dummy/public/500.html
+- test/dummy/public/422.html
+- test/dummy/public/404.html
+- test/dummy/public/favicon.ico
+- test/dummy/Rakefile
+- test/test_helper.rb