matthewtodd-openid-store-couchdb-chef 0.1.0

data/README.rdoc

@@ -0,0 +1,5 @@
+= openid-store-couchdb-chef
+
+A Chef-specific[http://wiki.opscode.com/display/chef] OpenID store for CouchDB.
+
+Extracted from skillet[http://github.com/matthewtodd/skillet], my attempt to run a Chef server on Heroku[http://heroku.com].

data/Rakefile

@@ -0,0 +1,20 @@
+this_rakefile_uses_shoe = <<END
+----------------------------------------
+Please install Shoe:
+gem sources --add http://gems.github.com
+gem install matthewtodd-shoe
+----------------------------------------
+END
+
+begin
+  gem 'matthewtodd-shoe'
+rescue Gem::LoadError
+  abort this_rakefile_uses_shoe
+else
+  require 'shoe'
+end
+
+Shoe.tie('openid-store-couchdb-chef', '0.1.0', 'A Chef-specific OpenID store for CouchDB.') do |spec|
+  spec.add_dependency 'ruby-openid'
+  spec.add_dependency 'chef'
+end

data/lib/openid-store-couchdb.rb

@@ -0,0 +1 @@
+require 'openid/store/couchdb'

data/lib/openid/store/couchdb.rb

@@ -0,0 +1,90 @@
+require 'openid'
+require 'openid/store/interface'
+require 'openid/store/couchdb/association'
+require 'openid/store/couchdb/nonce'
+
+module OpenID #:nodoc:
+  module Store #:nodoc:
+
+    # From what I can tell, the original
+    # openid-store-couchdb[http://github.com/b/openid-store-couchdb] isn't
+    # entirely complete, and there seems to be no word on the
+    # progress[http://tickets.opscode.com/browse/CHEF-199] of integrating it
+    # into Chef proper. Also, it makes use of CouchDB features I don't yet
+    # support in hideabed[http://github.com/matthewtodd/hideabed].
+    #
+    # Also note that OpenID is largely going
+    # away[http://lists.opscode.com/sympa/arc/chef-dev/2009-06/msg00001.html]
+    # in Chef 0.8, so we really just need a stopgap measure.
+    class CouchDB < Interface
+      def initialize(*args)
+        Association.create_design_document
+        Nonce.create_design_document
+      end
+
+      # Put a Association object into storage. When implementing a store,
+      # don't assume that there are any limitations on the character set of
+      # the server_url. In particular, expect to see unescaped non-url-safe
+      # characters in the server_url field.
+      def store_association(server_url, association)
+        if document = Association.load(server_url, association.handle)
+          document.association = association
+          document.save
+        else
+          Association.create(server_url, association)
+        end
+      end
+
+      # Returns a Association object from storage that matches the server_url.
+      # Returns nil if no such association is found or if the one matching
+      # association is expired. (Is allowed to GC expired associations when
+      # found.)
+      def get_association(server_url, handle=nil)
+        if document = Association.load(server_url, handle)
+          if document.expired?
+            document.destroy
+            nil
+          else
+            document.association
+          end
+        end
+      end
+
+      # If there is a matching association, remove it from the store and
+      # return true, otherwise return false.
+      def remove_association(server_url, handle)
+        Association.destroy(server_url, handle)
+      end
+
+      # Remove expired associations from the store. Not called during normal
+      # library operation, this method is for store admins to keep their
+      # storage from filling up with expired data.
+      def cleanup_associations
+        raise NotImplementedError
+      end
+
+      # Return true if the nonce has not been used before, and store it for a
+      # while to make sure someone doesn't try to use the same value again.
+      # Return false if the nonce has already been used or if the timestamp is
+      # not current. You can use OpenID::Store::Nonce::SKEW for your timestamp
+      # window.
+      #
+      # +server_url+:: URL of the server from which the nonce originated
+      # +timestamp+:: time the nonce was created in seconds since unix epoch
+      # +salt+:: A random string that makes two nonces issued by a server in
+      #          the same second unique
+      def use_nonce(server_url, timestamp, salt)
+        Nonce.create(server_url, timestamp, salt)
+      end
+
+      # Remove expired nonces from the store. Discards any nonce that is old
+      # enough that it wouldn't pass use_nonce Not called during normal
+      # library operation, this method is for store admins to keep their
+      # storage from filling up with expired data.
+      def cleanup_nonces
+        raise NotImplementedError
+      end
+    end
+
+  end
+end

data/lib/openid/store/couchdb/association.rb

@@ -0,0 +1,94 @@
+module OpenID #:nodoc:
+  module Store #:nodoc:
+    class CouchDB < Interface
+
+      class Association
+        DESIGN_DOCUMENT = {
+          'version' => 1,
+          'language' => 'javascript',
+          'views' => {}
+        }
+
+        class << self
+          def create_design_document
+            Chef::CouchDB.new.create_design_document('associations', DESIGN_DOCUMENT)
+          end
+
+          def create(server_url, association)
+            new(document_name(server_url, association.handle), association).save
+          end
+
+          def load(server_url, handle)
+            Chef::CouchDB.new.load('association', document_name(server_url, handle))
+          rescue Net::HTTPServerException
+            nil
+          end
+
+          def destroy(server_url, handle)
+            document = load(server_url, handle)
+            document ? document.destroy : false
+          end
+
+          def document_name(server_url, handle)
+            Base64.encode64("#{server_url}-#{handle}").chomp
+          end
+        end
+
+        attr_accessor :association
+
+        def initialize(name, association, couchdb_rev = nil)
+          @name        = name
+          @association = association
+          @couchdb_rev = couchdb_rev
+          @couchdb     = Chef::CouchDB.new
+        end
+
+        def destroy
+          @couchdb.delete('association', @name, @couchdb_rev)
+        rescue Net::HTTPServerException
+          false
+        else
+          true
+        end
+
+        def expired?
+          @association.expires_in <= 0
+        end
+
+        def save
+          results = @couchdb.store('association', @name, self)
+          @couchdb_rev = results['rev']
+        end
+
+        def self.json_create(attributes)
+          name        = attributes['name']
+          handle      = attributes['handle']
+          secret      = Base64.decode64(attributes['secret'])
+          issued      = Time.at(attributes['issued'])
+          lifetime    = attributes['lifetime']
+          assoc_type  = attributes['assoc_type']
+          couchdb_rev = attributes['_rev']
+          association = OpenID::Association.new(handle, secret, issued, lifetime, assoc_type)
+
+          new(name, association, couchdb_rev)
+        end
+
+        def to_json(*args)
+          result = {
+            'name' => @name,
+            'json_class' => self.class.name,
+            'chef_type' => 'association',
+            'handle' => @association.handle,
+            'secret' => Base64.encode64(@association.secret).chomp,
+            'issued' => @association.issued.to_i,
+            'lifetime' => @association.lifetime,
+            'assoc_type' => @association.assoc_type,
+          }
+          result['_rev'] = @couchdb_rev if @couchdb_rev
+          result.to_json(*args)
+        end
+      end
+
+    end
+  end
+end

data/lib/openid/store/couchdb/nonce.rb

@@ -0,0 +1,75 @@
+module OpenID #:nodoc:
+  module Store #:nodoc:
+    class CouchDB < Interface
+
+      class Nonce
+        DESIGN_DOCUMENT = {
+          'version' => 1,
+          'language' => 'javascript',
+          'views' => {}
+        }
+
+        class << self
+          def create_design_document
+            Chef::CouchDB.new.create_design_document('nonces', DESIGN_DOCUMENT)
+          end
+
+          def create(server_url, timestamp, salt)
+            new(server_url, timestamp, salt).save
+          end
+        end
+
+        def initialize(server_url, timestamp, salt, couchdb_rev = nil)
+          @server_url  = server_url
+          @timestamp   = Time.at(timestamp.to_i)
+          @salt        = salt
+          @couchdb_rev = nil
+          @couchdb     = Chef::CouchDB.new
+        end
+
+        def name
+          [@timestamp.utc.strftime(OpenID::Nonce::TIME_FMT), Base64.encode64(@server_url).chomp, Base64.encode64(@salt).chomp].join('-')
+        end
+
+        def save
+          return false unless valid?
+
+          begin
+            results = @couchdb.store('nonce', name, self)
+          rescue Net::HTTPServerException
+            false
+          else
+            @couchdb_rev = results['rev']
+            true
+          end
+        end
+
+        def valid?
+          OpenID::Nonce.check_timestamp(name)
+        end
+
+        def self.json_create(attributes)
+          server_url  = attributes['server_url']
+          timestamp   = attributes['timestamp']
+          salt        = attributes['salt']
+          couchdb_rev = attributes['_rev']
+
+          new(server_url, timestamp, salt, couchdb_rev)
+        end
+
+        def to_json(*args)
+          result = {
+            'json_class' => self.class.name,
+            'chef_type' => 'nonce',
+            'server_url' => @server_url,
+            'timestamp' => @timestamp.to_i,
+            'salt' => @salt,
+          }
+          result['_rev'] = @couchdb_rev if @couchdb_rev
+          result.to_json(*args)
+        end
+      end
+
+    end
+  end
+end

metadata

@@ -0,0 +1,95 @@
+--- !ruby/object:Gem::Specification 
+name: matthewtodd-openid-store-couchdb-chef
+version: !ruby/object:Gem::Version 
+  version: 0.1.0
+platform: ruby
+authors: 
+- Matthew Todd
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2009-07-29 00:00:00 -07:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: matthewtodd-shoe
+  type: :development
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: "0"
+    version: 
+- !ruby/object:Gem::Dependency 
+  name: ruby-openid
+  type: :runtime
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: "0"
+    version: 
+- !ruby/object:Gem::Dependency 
+  name: chef
+  type: :runtime
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: "0"
+    version: 
+description: 
+email: matthew.todd@gmail.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- README.rdoc
+files: 
+- Rakefile
+- README.rdoc
+- lib/openid
+- lib/openid/store
+- lib/openid/store/couchdb
+- lib/openid/store/couchdb/association.rb
+- lib/openid/store/couchdb/nonce.rb
+- lib/openid/store/couchdb.rb
+- lib/openid-store-couchdb.rb
+has_rdoc: false
+homepage: 
+licenses: 
+post_install_message: 
+rdoc_options: 
+- --main
+- README.rdoc
+- --title
+- openid-store-couchdb-chef-0.1.0
+- --inline-source
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.5
+signing_key: 
+specification_version: 3
+summary: A Chef-specific OpenID store for CouchDB.
+test_files: []
+