leash_provider 0.0.3 → 0.0.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 3d929c6d8f1db0374e9c4bdcb1a35662444643a4
-  data.tar.gz: 43eb6480e8c26cc79d89d02d924ef8ab95669825
+  metadata.gz: e9f8943e22d719e5c719c1d8bd3fd2c3403f1381
+  data.tar.gz: 62427c00a7295768294e536c42274d1fd7655553
 SHA512:
-  metadata.gz: 7d7e2e761d88e35a2a88963f3a48d65e4480a8604dc674c1df6fe5ca0d37da8665f13f197fdb750192c6b05e48ff5d43b13e7afe377d6b9456176a9bdf193754
-  data.tar.gz: 828888b133c37b9647b08008c4495e74fdb8c9e79bb48b4d38327080e4d7f691253e64e25e664aa12a31309cb7886b72942a62c0008b6b484e0fbc88496b88a4
+  metadata.gz: 12abd987b0297a74fa11c795b2e31adcde8a5c4c185a3bafc5c6ba33af88888035c2217a526ca351b14ae0b4e026b004ac613a46b8450dd976b9a5fd5c576287
+  data.tar.gz: ced279adaf543ecf142b691431ac05b65147023cbe1966615e23fde3f124264e7b73bb425a98d550f89107ed69dd9132e3ddb1de4e00697a3592febf86dd6a31

data/.gitignore

@@ -2,3 +2,4 @@
 *.sqlite
 /spec/internal/log/
 *.gem
+Gemfile.lock

data/app/controllers/leash/provider/authorize_controller.rb

@@ -1,6 +1,7 @@
 class Leash::Provider::AuthorizeController < Leash::ProviderController
   RESPONSE_TYPES   = [ "token", "code" ].freeze
 
+  before_action :set_no_cache_headers
   before_action :determine_response_type!
   before_action :determine_client_id!
   before_action :determine_redirect_url!
@@ -28,15 +29,15 @@ class Leash::Provider::AuthorizeController < Leash::ProviderController
       redirect_to params[:redirect_uri] + "#access_token=#{URI.encode(access_token)}"
 
     when "code"
-      auth_code = Leash::Provider::AuthCode.assign! @app_name, current_owner
+      auth_code = Leash::Provider::AuthCode.assign! @app_name, current_owner, params[:redirect_uri]
 
       Rails.logger.info "[Leash::Provider] Authorize ok: response_type=#{@response_type} current_owner=#{current_owner.class.name}##{current_owner.id} auth_code=#{auth_code} request_ip=#{request.remote_ip} request_user_agent=#{request.user_agent}"
 
       if params.has_key? :state
-        redirect_to params[:redirect_uri] + "?code=#{URI.encode(auth_code)}&state=#{URI.encode(params[:state])}"
+        redirect_to params[:redirect_uri] + "?code=#{URI.encode(auth_code)}&state=#{URI.encode(params[:state])}" # FIXME ensure that params are joined correctly
 
       else
-        redirect_to params[:redirect_uri] + "?code=#{URI.encode(auth_code)}"
+        redirect_to params[:redirect_uri] + "?code=#{URI.encode(auth_code)}" # FIXME ensure that params are joined correctly
       end
       
     else
@@ -76,7 +77,7 @@ class Leash::Provider::AuthorizeController < Leash::ProviderController
       @user_role_underscored = params[:user_role].underscore.gsub("/", "_")
 
     else
-      callback_with_error "invalid_user_role", "Authorize error: Unknown role of '#{params[:user_role]}'"
+      callback_with_error "unknown_user_role", "Authorize error: Unknown role of '#{params[:user_role]}'"
     end
   end
 

data/app/controllers/leash/provider/token_controller.rb

@@ -1,22 +1,27 @@
 class Leash::Provider::TokenController < Leash::ProviderController
   GRANT_TYPES = [ "authorization_code" ].freeze
 
+  before_action :set_no_cache_headers
   before_action :determine_grant_type!
 
-
   def token
     case @grant_type
     when "authorization_code"
       params.require("code")
 
-      if Leash::Provider::AuthCode.valid?(params[:code])
-        access_token = Leash::Provider::AccessToken.assign_from_auth_code! Leash::Provider::AuthCode.find_by_auth_code(params[:code])
+      # Rails.logger.info "[Leash::Provider] Code<->Token exchange: #{params.inspect}"
+      callback_with_error "invalid_grant", "Given auth code does not exist" and return unless Leash::Provider::AuthCode.present?(params[:code])
+
+      auth_code = Leash::Provider::AuthCode.find_by_auth_code(params[:code])
+      callback_with_error "invalid_grant", "Given redirect URI does not match one specified in the authorization request" and return unless auth_code.redirect_uri == params[:redirect_uri]
+      # TODO if client_id and client_secret is present, try to match it with ENV vars
 
-        render json: { access_token: access_token, token_type: "bearer" }
-      end
+      access_token = Leash::Provider::AccessToken.assign_from_auth_code! Leash::Provider::AuthCode.find_by_auth_code(params[:code])
+      Rails.logger.info "[Leash::Provider] Code<->Token exchange ok: grant_type=#{@grant_type} auth_code=#{params[:code]} access_token=#{access_token} request_ip=#{request.remote_ip} request_user_agent=#{request.user_agent}"
+      render json: { access_token: access_token, token_type: "bearer" }
 
     else
-      fail "Should not be reached"
+      fail # Should not be reached
     end
   end
 
@@ -29,7 +34,7 @@ class Leash::Provider::TokenController < Leash::ProviderController
 
     case @grant_type
     when "authorization_code"
-      render json: { error: error_code }, status: :unprocessable_entity
+      render json: { error: error_code, error_description: message }, status: :unprocessable_entity
     end
   end
 
@@ -40,7 +45,7 @@ class Leash::Provider::TokenController < Leash::ProviderController
     if GRANT_TYPES.include? params[:grant_type]
       @grant_type = params[:grant_type]
     else
-      callback_with_error "unknown_grant_type", "Unknown grant type of '#{params[:grant_type]}'"
+      callback_with_error "unsupported_grant_type", "Unknown grant type of '#{params[:grant_type]}'"
     end
   end
 end

data/app/controllers/leash/provider/user_info_controller.rb

@@ -1,24 +1,28 @@
 class Leash::Provider::UserInfoController < Leash::ProviderController
   def info
-    render text: "missing_authorization_header", status: :unauthorized unless request.headers["Authorization"]
-    render text: "missing_authorization_bearer", status: :unauthorized unless request.headers["Authorization"].starts_with? "Bearer "
+    render json: { error: "missing_authorization_header" }, status: :unauthorized and return unless request.headers["Authorization"]
+    render json: { error: "missing_authorization_bearer" }, status: :unauthorized and return unless request.headers["Authorization"].start_with? "Bearer "
 
     access_token_raw = request.headers["Authorization"].split(" ", 2).last
 
-    render text: "invalid_access_token", status: :forbidden unless Leash::Provider::AccessToken.valid?(access_token_raw)
+    render json: { error: "unknown_access_token" }, status: :forbidden and return unless Leash::Provider::AccessToken.present?(access_token_raw)
 
     access_token =  Leash::Provider::AccessToken.find_by_access_token(access_token_raw)
     owner = access_token.owner_instance
 
     if owner.respond_to? :for_leash_provider
-      data = owner.for_leash_provider
+      data = owner.for_leash_provider.as_json
     else
-      data = owner
+      data = owner.as_json
     end
 
+    full_data = { owner.class.name => data }
+
+    Rails.logger.info "[Leash::Provider] User info ok: access_token=#{access_token_raw} request_ip=#{request.remote_ip} request_user_agent=#{request.user_agent}"
+
     respond_to do |format|
       format.json do
-        render json: data
+        render json: full_data
       end
     end
   end

data/app/controllers/leash/provider_controller.rb

@@ -10,6 +10,12 @@ class Leash::ProviderController < LeashController
   end
 
 
+  def set_no_cache_headers
+    response.headers["Cache-Control"] = "no-store"
+    response.headers["Pragma"] = "no-cache"
+  end
+
+
   def determine_client_id!
     params.require("client_id")
 
@@ -33,12 +39,41 @@ class Leash::ProviderController < LeashController
     @redirect_url = ENV["APP_#{@env_name}_OAUTH2_REDIRECT_URL"]
     if @redirect_url and not @redirect_url.blank?
       @redirect_urls = @redirect_url.split(" ")
-      unless @redirect_urls.include? params[:redirect_uri]
-        callback_with_error "invalid_redirect_uri", "Redirect URL mismatch (should be '#{@redirect_url}', given '#{params[:redirect_uri]}'"
+
+      begin
+        redirect_uri_parsed = URI.parse(params[:redirect_uri])
+      rescue URI::InvalidURIError => e
+        callback_with_error "invalid_redirect_uri", "Redirect URL has invalid syntax, given '#{params[:redirect_uri]}'"
+        return
       end
 
+      unless redirect_uri_parsed.fragment.nil?
+        callback_with_error "invalid_redirect_uri", "Redirect URL contains fragment, given '#{params[:redirect_uri]}'"
+        return
+      end
+
+    
+      @redirect_urls.each do |known_redirect_url|
+        if known_redirect_url.end_with? "*"
+          if params[:redirect_uri].start_with? known_redirect_url[0..-2] 
+            # Found!
+            return
+          end
+
+        else 
+          if known_redirect_url == params[:redirect_uri]
+            # Found!
+            return
+          end
+        end
+      end    
+
+      callback_with_error "unknown_redirect_uri", "Redirect URL mismatch (should be one of '#{@redirect_url}', given '#{params[:redirect_uri]}'"
+      return
+      
     else
-      callback_with_error "unknown_redirect_uri", "Unable to find redirect URL associated with app '#{@app_name}'"
+      callback_with_error "configuration_error", "Unable to find redirect URLs associated with app '#{@app_name}'"
+      return
     end
   end
 
@@ -49,10 +84,10 @@ class Leash::ProviderController < LeashController
     @client_secret = ENV["APP_#{@env_name}_OAUTH2_SECRET"]
     if @client_secret
       unless @client_secret == params[:client_secret]
-        callback_with_error "invalid_secret", "Secret mismatch"
+        callback_with_error "unknown_secret", "Secret mismatch"
       end
     else
-      callback_with_error "unknown_secret", "Unable to find secret associated with app '#{@app_name}'"
+      callback_with_error "configuration_error", "Unable to find secret associated with app '#{@app_name}'"
     end
   end
 

data/app/models/leash/provider/access_token.rb

@@ -43,7 +43,7 @@ class Leash::Provider::AccessToken < Ohm::Model
   end
 
 
-  def self.valid?(access_token)
+  def self.present?(access_token)
     self.find(access_token: access_token).size != 0
   end
 
@@ -77,4 +77,6 @@ class Leash::Provider::AccessToken < Ohm::Model
   def touch!
     update accessed_at: Time.now.to_i
   end
-end
+end
+
+::Leash::Provider::AccessToken.redis = Redic.new(::Leash::Provider.redis_url)

data/app/models/leash/provider/auth_code.rb

@@ -4,6 +4,7 @@ class Leash::Provider::AuthCode < Ohm::Model
   attribute :app_name
   attribute :auth_code
   attribute :owner
+  attribute :redirect_uri
   attribute :created_at
 
   index :owner
@@ -11,7 +12,7 @@ class Leash::Provider::AuthCode < Ohm::Model
   unique :auth_code
 
 
-  def self.assign!(app_name, owner)
+  def self.assign!(app_name, owner, redirect_uri)
     tries = 0
     auth_code = nil
 
@@ -19,7 +20,7 @@ class Leash::Provider::AuthCode < Ohm::Model
       begin
         auth_code = SecureRandom.urlsafe_base64(32)
         timestamp = Time.now.to_i
-        self.create app_name: app_name, owner: owner_key(owner), auth_code: auth_code, created_at: timestamp
+        self.create app_name: app_name, owner: owner_key(owner), auth_code: auth_code, redirect_uri: redirect_uri, created_at: timestamp
         break
 
       rescue Ohm::UniqueIndexViolation => e
@@ -33,7 +34,7 @@ class Leash::Provider::AuthCode < Ohm::Model
   end
 
 
-  def self.valid?(auth_code)
+  def self.present?(auth_code)
     self.find(auth_code: auth_code).size != 0
   end
 
@@ -58,3 +59,5 @@ class Leash::Provider::AuthCode < Ohm::Model
     owner_klass.classify.constantize.find(owner_id)
   end
 end
+
+::Leash::Provider::AuthCode.redis = Redic.new(::Leash::Provider.redis_url)

data/lib/leash/provider/version.rb

@@ -1,5 +1,5 @@
 module Leash
   module Provider
-    VERSION = "0.0.3"
+    VERSION = "0.0.4"
   end
 end

data/lib/leash_provider.rb

@@ -20,11 +20,14 @@ module Leash
 
     def self.configure
       yield self
+
+      establish_connection!
     end
 
 
     def self.establish_connection!
-      Ohm.redis = Redic.new(@@redis_url)
+      ::Leash::Provider::AccessToken.redis = Redic.new(@@redis_url)
+      ::Leash::Provider::AuthCode.redis = Redic.new(@@redis_url)
     end
   end
 end

data/spec/controllers/leash/provider/authorize_controller_spec.rb

@@ -18,9 +18,12 @@ RSpec.describe Leash::Provider::AuthorizeController, :type => :controller do
   let(:valid_user_role)      { "Admin" }
   let(:valid_client_id)      { ENV["APP_TEST_OAUTH2_CLIENT_ID"] }
   let(:valid_redirect_uri)   { ENV["APP_TEST_OAUTH2_REDIRECT_URL"] }
-  let(:invalid_user_role)    { "Ufo" }
-  let(:invalid_client_id)    { "098765" }
-  let(:invalid_redirect_uri) { "http://whatever.com" }
+  let(:unknown_user_role)    { "Ufo" }
+  let(:unknown_client_id)    { "098765" }
+  let(:invalid_redirect_uri_syntax) { " http://whatever.com" }
+  let(:invalid_redirect_uri_fragment_empty) { "http://whatever.com#" }
+  let(:invalid_redirect_uri_fragment_present) { "http://whatever.com#abcd" }
+  let(:unknown_redirect_uri) { "http://whatever.com" }
   let(:authentication_route) { new_admin_session_path }
 
 
@@ -33,8 +36,8 @@ RSpec.describe Leash::Provider::AuthorizeController, :type => :controller do
       context "with all necessary params" do
         let(:params) { { user_role: user_role, response_type: response_type, client_id: client_id, redirect_uri: redirect_uri } }
       
-        context "with invalid client_id" do
-          let(:client_id) { invalid_client_id }
+        context "with unknown client_id" do
+          let(:client_id) { unknown_client_id }
 
           context "with valid redirect_uri" do
             let(:redirect_uri) { valid_redirect_uri }
@@ -60,8 +63,8 @@ RSpec.describe Leash::Provider::AuthorizeController, :type => :controller do
         context "with valid client_id" do
           let(:client_id) { valid_client_id }
   
-          context "with invalid redirect_uri" do
-            let(:redirect_uri) { invalid_redirect_uri }
+          context "with unknown redirect_uri" do
+            let(:redirect_uri) { unknown_redirect_uri }
 
             context "with valid user role" do
               let(:user_role) { valid_user_role }
@@ -74,8 +77,73 @@ RSpec.describe Leash::Provider::AuthorizeController, :type => :controller do
                 expect(response.status).to eq 422
               end
 
-              it "should return 'invalid_redirect_uri' in the response" do
-                expect(response.body).to eq "invalid_redirect_uri"
+              it "should return 'unknown_redirect_uri' in the response" do
+                expect(response.body).to eq "unknown_redirect_uri"
+              end
+            end
+          end
+
+          context "with invalid redirect_uri" do
+            context "because it has invalid syntax" do
+              let(:redirect_uri) { invalid_redirect_uri_syntax }
+
+              context "with valid user role" do
+                let(:user_role) { valid_user_role }
+
+
+                before do
+                  get :authorize, params
+                end
+
+                it "should return 422 status" do
+                  expect(response.status).to eq 422
+                end
+
+                it "should return 'invalid_redirect_uri' in the response" do
+                  expect(response.body).to eq "invalid_redirect_uri"
+                end
+              end
+            end
+
+            context "because it contains an empty fragment" do
+              let(:redirect_uri) { invalid_redirect_uri_fragment_empty }
+
+              context "with valid user role" do
+                let(:user_role) { valid_user_role }
+
+
+                before do
+                  get :authorize, params
+                end
+
+                it "should return 422 status" do
+                  expect(response.status).to eq 422
+                end
+
+                it "should return 'invalid_redirect_uri' in the response" do
+                  expect(response.body).to eq "invalid_redirect_uri"
+                end
+              end
+            end
+
+            context "because it contains an non-empty fragment" do
+              let(:redirect_uri) { invalid_redirect_uri_fragment_present }
+
+              context "with valid user role" do
+                let(:user_role) { valid_user_role }
+
+
+                before do
+                  get :authorize, params
+                end
+
+                it "should return 422 status" do
+                  expect(response.status).to eq 422
+                end
+
+                it "should return 'invalid_redirect_uri' in the response" do
+                  expect(response.body).to eq "invalid_redirect_uri"
+                end
               end
             end
           end
@@ -84,7 +152,7 @@ RSpec.describe Leash::Provider::AuthorizeController, :type => :controller do
             let(:redirect_uri) { valid_redirect_uri }
 
             context "but with unknown user_role" do
-              let(:user_role) { invalid_user_role }
+              let(:user_role) { unknown_user_role }
 
               before do
                 get :authorize, params
@@ -94,8 +162,8 @@ RSpec.describe Leash::Provider::AuthorizeController, :type => :controller do
                 expect(response.status).to eq 422
               end
 
-              it "should return 'invalid_user_role' in the response" do
-                expect(response.body).to eq "invalid_user_role"
+              it "should return 'unknown_user_role' in the response" do
+                expect(response.body).to eq "unknown_user_role"
               end
             end  
 
@@ -138,8 +206,8 @@ RSpec.describe Leash::Provider::AuthorizeController, :type => :controller do
       context "with all necessary params" do
         let(:params) { { user_role: user_role, response_type: response_type, client_id: client_id, redirect_uri: redirect_uri } }
       
-        context "with invalid client_id" do
-          let(:client_id) { invalid_client_id }
+        context "with unknown client_id" do
+          let(:client_id) { unknown_client_id }
 
           context "with valid redirect_uri" do
             let(:redirect_uri) { valid_redirect_uri }
@@ -165,8 +233,8 @@ RSpec.describe Leash::Provider::AuthorizeController, :type => :controller do
         context "with valid client_id" do
           let(:client_id) { valid_client_id }
   
-          context "with invalid redirect_uri" do
-            let(:redirect_uri) { invalid_redirect_uri }
+          context "with unknown redirect_uri" do
+            let(:redirect_uri) { unknown_redirect_uri }
 
             context "with valid user role" do
               let(:user_role) { valid_user_role }
@@ -175,24 +243,78 @@ RSpec.describe Leash::Provider::AuthorizeController, :type => :controller do
                 get :authorize, params
               end
 
-              it "should redirect to the first redirect_uri specified in the app with appended '#error=invalid_redirect_uri'" do
-                expect(response).to redirect_to("#{valid_redirect_uri}#error=invalid_redirect_uri")
+              it "should redirect to the first redirect_uri specified in the app with appended '#error=unknown_redirect_uri'" do
+                expect(response).to redirect_to("#{valid_redirect_uri}#error=unknown_redirect_uri")
               end
             end
           end
 
+          context "with invalid redirect_uri" do
+            context "because it has invalid syntax" do
+              let(:redirect_uri) { invalid_redirect_uri_syntax }
+
+              context "with valid user role" do
+                let(:user_role) { valid_user_role }
+
+
+                before do
+                  get :authorize, params
+                end
+
+                it "should redirect to the first redirect_uri specified in the app with appended '#error=invalid_redirect_uri'" do
+                  expect(response).to redirect_to("#{valid_redirect_uri}#error=invalid_redirect_uri")
+                end
+              end
+            end
+
+            context "because it contains an empty fragment" do
+              let(:redirect_uri) { invalid_redirect_uri_fragment_empty }
+
+              context "with valid user role" do
+                let(:user_role) { valid_user_role }
+
+
+                before do
+                  get :authorize, params
+                end
+
+                it "should redirect to the first redirect_uri specified in the app with appended '#error=invalid_redirect_uri'" do
+                  expect(response).to redirect_to("#{valid_redirect_uri}#error=invalid_redirect_uri")
+                end
+              end
+            end
+
+            context "because it contains an non-empty fragment" do
+              let(:redirect_uri) { invalid_redirect_uri_fragment_present }
+
+              context "with valid user role" do
+                let(:user_role) { valid_user_role }
+
+
+                before do
+                  get :authorize, params
+                end
+
+                it "should redirect to the first redirect_uri specified in the app with appended '#error=invalid_redirect_uri'" do
+                  expect(response).to redirect_to("#{valid_redirect_uri}#error=invalid_redirect_uri")
+                end
+              end
+            end
+          end
+
+
           context "with valid redirect_uri" do
             let(:redirect_uri) { valid_redirect_uri }
 
             context "but with unknown user_role" do
-              let(:user_role) { invalid_user_role }
+              let(:user_role) { unknown_user_role }
 
               before do
                 get :authorize, params
               end
 
-              it "should redirect to the first redirect_uri specified in the app with appended '#error=invalid_user_role'" do
-                expect(response).to redirect_to("#{valid_redirect_uri}#error=invalid_user_role")
+              it "should redirect to the first redirect_uri specified in the app with appended '#error=unknown_user_role'" do
+                expect(response).to redirect_to("#{valid_redirect_uri}#error=unknown_user_role")
               end
             end  
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: leash_provider
 version: !ruby/object:Gem::Version
-  version: 0.0.3
+  version: 0.0.4
 platform: ruby
 authors:
 - Marcin Lewandowski
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2015-06-19 00:00:00.000000000 Z
+date: 2015-09-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -148,7 +148,6 @@ files:
 - ".rspec"
 - ".travis.yml"
 - Gemfile
-- Gemfile.lock
 - README.md
 - Rakefile
 - app/controllers/leash/provider/authorize_controller.rb

data/Gemfile.lock

@@ -1,165 +0,0 @@
-PATH
-  remote: .
-  specs:
-    leash_provider (0.0.2)
-      devise
-      ohm
-      rails (~> 4.2)
-
-GEM
-  remote: https://rubygems.org/
-  specs:
-    actionmailer (4.2.1)
-      actionpack (= 4.2.1)
-      actionview (= 4.2.1)
-      activejob (= 4.2.1)
-      mail (~> 2.5, >= 2.5.4)
-      rails-dom-testing (~> 1.0, >= 1.0.5)
-    actionpack (4.2.1)
-      actionview (= 4.2.1)
-      activesupport (= 4.2.1)
-      rack (~> 1.6)
-      rack-test (~> 0.6.2)
-      rails-dom-testing (~> 1.0, >= 1.0.5)
-      rails-html-sanitizer (~> 1.0, >= 1.0.1)
-    actionview (4.2.1)
-      activesupport (= 4.2.1)
-      builder (~> 3.1)
-      erubis (~> 2.7.0)
-      rails-dom-testing (~> 1.0, >= 1.0.5)
-      rails-html-sanitizer (~> 1.0, >= 1.0.1)
-    activejob (4.2.1)
-      activesupport (= 4.2.1)
-      globalid (>= 0.3.0)
-    activemodel (4.2.1)
-      activesupport (= 4.2.1)
-      builder (~> 3.1)
-    activerecord (4.2.1)
-      activemodel (= 4.2.1)
-      activesupport (= 4.2.1)
-      arel (~> 6.0)
-    activesupport (4.2.1)
-      i18n (~> 0.7)
-      json (~> 1.7, >= 1.7.7)
-      minitest (~> 5.1)
-      thread_safe (~> 0.3, >= 0.3.4)
-      tzinfo (~> 1.1)
-    arel (6.0.0)
-    bcrypt (3.1.10)
-    builder (3.2.2)
-    combustion (0.5.3)
-      activesupport (>= 3.0.0)
-      railties (>= 3.0.0)
-      thor (>= 0.14.6)
-    devise (3.4.1)
-      bcrypt (~> 3.0)
-      orm_adapter (~> 0.1)
-      railties (>= 3.2.6, < 5)
-      responders
-      thread_safe (~> 0.1)
-      warden (~> 1.2.3)
-    diff-lcs (1.2.5)
-    erubis (2.7.0)
-    factory_girl (4.5.0)
-      activesupport (>= 3.0.0)
-    factory_girl_rails (4.5.0)
-      factory_girl (~> 4.5.0)
-      railties (>= 3.0.0)
-    globalid (0.3.5)
-      activesupport (>= 4.1.0)
-    hiredis (0.6.0)
-    i18n (0.7.0)
-    json (1.8.2)
-    loofah (2.0.2)
-      nokogiri (>= 1.5.9)
-    mail (2.6.3)
-      mime-types (>= 1.16, < 3)
-    mime-types (2.5)
-    mini_portile (0.6.2)
-    minitest (5.6.1)
-    msgpack (0.5.12)
-    nido (0.0.1)
-    nokogiri (1.6.6.2)
-      mini_portile (~> 0.6.0)
-    ohm (2.2.0)
-      msgpack
-      nido
-      redic
-      stal
-    orm_adapter (0.5.0)
-    rack (1.6.1)
-    rack-test (0.6.3)
-      rack (>= 1.0)
-    rails (4.2.1)
-      actionmailer (= 4.2.1)
-      actionpack (= 4.2.1)
-      actionview (= 4.2.1)
-      activejob (= 4.2.1)
-      activemodel (= 4.2.1)
-      activerecord (= 4.2.1)
-      activesupport (= 4.2.1)
-      bundler (>= 1.3.0, < 2.0)
-      railties (= 4.2.1)
-      sprockets-rails
-    rails-deprecated_sanitizer (1.0.3)
-      activesupport (>= 4.2.0.alpha)
-    rails-dom-testing (1.0.6)
-      activesupport (>= 4.2.0.beta, < 5.0)
-      nokogiri (~> 1.6.0)
-      rails-deprecated_sanitizer (>= 1.0.1)
-    rails-html-sanitizer (1.0.2)
-      loofah (~> 2.0)
-    railties (4.2.1)
-      actionpack (= 4.2.1)
-      activesupport (= 4.2.1)
-      rake (>= 0.8.7)
-      thor (>= 0.18.1, < 2.0)
-    rake (10.4.2)
-    redic (1.5.0)
-      hiredis
-    responders (2.1.0)
-      railties (>= 4.2.0, < 5)
-    rspec-core (3.2.3)
-      rspec-support (~> 3.2.0)
-    rspec-expectations (3.2.1)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.2.0)
-    rspec-mocks (3.2.1)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.2.0)
-    rspec-rails (3.2.1)
-      actionpack (>= 3.0, < 4.3)
-      activesupport (>= 3.0, < 4.3)
-      railties (>= 3.0, < 4.3)
-      rspec-core (~> 3.2.0)
-      rspec-expectations (~> 3.2.0)
-      rspec-mocks (~> 3.2.0)
-      rspec-support (~> 3.2.0)
-    rspec-support (3.2.2)
-    sprockets (3.1.0)
-      rack (~> 1.0)
-    sprockets-rails (2.3.1)
-      actionpack (>= 3.0)
-      activesupport (>= 3.0)
-      sprockets (>= 2.8, < 4.0)
-    sqlite3 (1.3.10)
-    stal (0.1.0)
-      redic
-    thor (0.19.1)
-    thread_safe (0.3.5)
-    tzinfo (1.2.2)
-      thread_safe (~> 0.1)
-    warden (1.2.3)
-      rack (>= 1.0)
-
-PLATFORMS
-  ruby
-
-DEPENDENCIES
-  bundler
-  combustion (~> 0.5.3)
-  factory_girl_rails (~> 4.0)
-  leash_provider!
-  rake
-  rspec-rails
-  sqlite3