motionauth-oauth2 1.0.0

data/lib/oauth2/response.rb

@@ -0,0 +1,58 @@
+module OAuth2
+  class Response
+    attr_accessor :error, :options
+
+    # Adds a new content type parser.
+    #
+    # @param [Symbol] key A descriptive symbol key such as :json or :query.
+    # @param [Array] One or more mime types to which this parser applies.
+    # @yield [String] A block returning parsed content.
+    def self.register_parser(key, mime_types, &block)
+      key = key.to_sym
+      PARSERS[key] = block
+      Array(mime_types).each do |mime_type|
+        CONTENT_TYPES[mime_type] = key
+      end
+    end
+
+    # Procs that, when called, will parse a response body according
+    # to the specified format.
+    PARSERS = {
+      json:  ->(body) { Utils.parse_json(body) rescue body }, # rubocop:disable RescueModifier
+      query: ->(body) { Utils.params_from_query(body) },
+      text:  ->(body) { body }
+    }
+
+    # Content type assignments for various potential HTTP content types.
+    CONTENT_TYPES = {
+      "application/json"                  => :json,
+      "text/javascript"                   => :json,
+      "application/x-www-form-urlencoded" => :query,
+      "text/plain"                        => :text
+    }
+
+    # The parsed response body.
+    #   Will attempt to parse application/x-www-form-urlencoded and
+    #   application/json Content-Type response bodies
+    def parsed
+      return nil unless PARSERS.key?(parser)
+      @parsed ||= PARSERS[parser].call(body)
+    end
+
+    # Determines the parser that will be used to supply the content of #parsed
+    def parser
+      return options[:parse].to_sym if PARSERS.key?(options[:parse])
+      CONTENT_TYPES[content_type]
+    end
+  end
+end
+
+OAuth2::Response.register_parser(:xml, ["text/xml", "application/rss+xml", "application/rdf+xml", "application/atom+xml"]) do |body|
+  begin
+    # TODO: PARSE XML
+    # MultiXml.parse(body)
+    body
+  rescue
+    body
+  end
+end

data/lib/oauth2/strategy/assertion.rb

@@ -0,0 +1,59 @@
+module OAuth2
+  module Strategy
+    # The Client Assertion Strategy
+    #
+    # @see http://tools.ietf.org/html/draft-ietf-oauth-v2-10#section-4.1.3
+    #
+    # Sample usage:
+    #   client = OAuth2::Client.new(client_id, client_secret,
+    #                               :site => 'http://localhost:8080')
+    #
+    #   params = {:hmac_secret => "some secret",
+    #             # or :private_key => "private key string",
+    #             :iss => "http://localhost:3001",
+    #             :prn => "me@here.com",
+    #             :exp => Time.now.utc.to_i + 3600}
+    #
+    #   access = client.assertion.get_token(params)
+    #   access.token                 # actual access_token string
+    #   access.get("/api/stuff")     # making api calls with access token in header
+    #
+    class Assertion < Base
+      # Not used for this strategy
+      #
+      # @raise [NotImplementedError]
+      def authorize_url
+        fail(NotImplementedError, "The authorization endpoint is not used in this strategy")
+      end
+
+      # Retrieve an access token given the specified client.
+      #
+      # @param [Hash] params assertion params
+      # pass either :hmac_secret or :private_key, but not both.
+      #
+      #   params :hmac_secret, secret string.
+      #   params :private_key, private key string.
+      #
+      #   params :iss, issuer
+      #   params :aud, audience, optional
+      #   params :prn, principal, current user
+      #   params :exp, expired at, in seconds, like Time.now.utc.to_i + 3600
+      #
+      # @param [Hash] opts options
+      def get_token(params = {}, opts = {})
+        hash = build_request(params)
+        @client.get_token(hash, opts.merge("refresh_token" => nil))
+      end
+
+      def build_request(params)
+        assertion = build_assertion(params)
+        {
+          grant_type:     "assertion",
+          assertion_type: "urn:ietf:params:oauth:grant-type:jwt-bearer",
+          assertion:      assertion,
+          scope:          params[:scope]
+        }.merge(client_params)
+      end
+    end
+  end
+end

data/lib/oauth2/strategy/auth_code.rb

@@ -0,0 +1,33 @@
+module OAuth2
+  module Strategy
+    # The Authorization Code Strategy
+    #
+    # @see http://tools.ietf.org/html/draft-ietf-oauth-v2-15#section-4.1
+    class AuthCode < Base
+      # The required query parameters for the authorize URL
+      #
+      # @param [Hash] params additional query parameters
+      def authorize_params(params = {})
+        params.merge("response_type" => "code", "client_id" => @client.id)
+      end
+
+      # The authorization URL endpoint of the provider
+      #
+      # @param [Hash] params additional query parameters for the URL
+      def authorize_url(params = {})
+        @client.authorize_url(authorize_params.merge(params))
+      end
+
+      # Retrieve an access token given the specified validation code.
+      #
+      # @param [String] code The Authorization Code value
+      # @param [Hash] params additional params
+      # @param [Hash] opts options
+      # @note that you must also provide a :redirect_uri with most OAuth 2.0 providers
+      def get_token(code, params = {}, opts = {})
+        params = { "grant_type" => "authorization_code", "code" => code }.merge(client_params).merge(params)
+        @client.get_token(params, opts)
+      end
+    end
+  end
+end

data/lib/oauth2/strategy/base.rb

@@ -0,0 +1,16 @@
+module OAuth2
+  module Strategy
+    class Base
+      def initialize(client)
+        @client = client
+      end
+
+      # The OAuth client_id and client_secret
+      #
+      # @return [Hash]
+      def client_params
+        { "client_id" => @client.id, "client_secret" => @client.secret }
+      end
+    end
+  end
+end

data/lib/oauth2/strategy/client_credentials.rb

@@ -0,0 +1,30 @@
+module OAuth2
+  module Strategy
+    # The Client Credentials Strategy
+    #
+    # @see http://tools.ietf.org/html/draft-ietf-oauth-v2-15#section-4.4
+    class ClientCredentials < Base
+      # Not used for this strategy
+      #
+      # @raise [NotImplementedError]
+      def authorize_url
+        fail(NotImplementedError, "The authorization endpoint is not used in this strategy")
+      end
+
+      # Retrieve an access token given the specified client.
+      #
+      # @param [Hash] params additional params
+      # @param [Hash] opts options
+      def get_token(params = {}, opts = {})
+        request_body = opts.delete("auth_scheme") == "request_body"
+        params.merge!("grant_type" => "client_credentials")
+        params.merge!(request_body ? client_params : {
+          headers: {
+            "Authorization" => authorization(client_params["client_id"], client_params["client_secret"])
+          }
+        })
+        @client.get_token(params, opts.merge("refresh_token" => nil))
+      end
+    end
+  end
+end

data/lib/oauth2/strategy/implicit.rb

@@ -0,0 +1,29 @@
+module OAuth2
+  module Strategy
+    # The Implicit Strategy
+    #
+    # @see http://tools.ietf.org/html/draft-ietf-oauth-v2-26#section-4.2
+    class Implicit < Base
+      # The required query parameters for the authorize URL
+      #
+      # @param [Hash] params additional query parameters
+      def authorize_params(params = {})
+        params.merge("response_type" => "token", "client_id" => @client.id)
+      end
+
+      # The authorization URL endpoint of the provider
+      #
+      # @param [Hash] params additional query parameters for the URL
+      def authorize_url(params = {})
+        @client.authorize_url(authorize_params.merge(params))
+      end
+
+      # Not used for this strategy
+      #
+      # @raise [NotImplementedError]
+      def get_token(*)
+        fail(NotImplementedError, "The token is accessed differently in this strategy")
+      end
+    end
+  end
+end

data/lib/oauth2/strategy/password.rb

@@ -0,0 +1,29 @@
+module OAuth2
+  module Strategy
+    # The Resource Owner Password Credentials Authorization Strategy
+    #
+    # @see http://tools.ietf.org/html/draft-ietf-oauth-v2-15#section-4.3
+    class Password < Base
+      # Not used for this strategy
+      #
+      # @raise [NotImplementedError]
+      def authorize_url
+        fail(NotImplementedError, "The authorization endpoint is not used in this strategy")
+      end
+
+      # Retrieve an access token given the specified End User username and password.
+      #
+      # @param [String] username the End User username
+      # @param [String] password the End User password
+      # @param [Hash] params additional params
+      def get_token(username, password, params = {}, opts = {})
+        params = {
+          "grant_type" => "password",
+          "username"   => username,
+          "password"   => password
+        }.merge(client_params).merge(params)
+        @client.get_token(params, opts)
+      end
+    end
+  end
+end

data/lib/oauth2/version.rb

@@ -0,0 +1,15 @@
+module OAuth2
+  class Version
+    MAJOR = 1
+    MINOR = 0
+    PATCH = 0
+    PRE = nil
+
+    class << self
+      # @return [String]
+      def to_s
+        [MAJOR, MINOR, PATCH, PRE].compact.join(".")
+      end
+    end
+  end
+end

metadata

@@ -0,0 +1,197 @@
+--- !ruby/object:Gem::Specification
+name: motionauth-oauth2
+version: !ruby/object:Gem::Version
+  version: 1.0.0
+platform: ruby
+authors:
+- Brian Pattison
+- Michael Bleigh
+- Erik Michaels-Ober
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2015-03-17 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: motion-cocoapods
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: motion-support
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.2'
+- !ruby/object:Gem::Dependency
+  name: guard
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.6.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 2.6.1
+- !ruby/object:Gem::Dependency
+  name: guard-motion
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.1'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.1'
+- !ruby/object:Gem::Dependency
+  name: motion_print
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.0'
+- !ruby/object:Gem::Dependency
+  name: motion-redgreen
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: RackMotion
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.3'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.3'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: terminal-notifier-guard
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+description: A RubyMotion wrapper for the OAuth 2.0 protocol built with a similar
+  style to the original OAuth spec.
+email:
+- brian@brianpattison.com
+- michael@intridea.com
+- sferik@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- README.md
+- lib/oauth2-cocoa/connection.rb
+- lib/oauth2-cocoa/mac_token.rb
+- lib/oauth2-cocoa/response.rb
+- lib/oauth2-cocoa/strategy/assertion.rb
+- lib/oauth2-cocoa/strategy/client_credentials.rb
+- lib/oauth2-cocoa/utils.rb
+- lib/oauth2.rb
+- lib/oauth2/access_token.rb
+- lib/oauth2/client.rb
+- lib/oauth2/connection.rb
+- lib/oauth2/error.rb
+- lib/oauth2/mac_token.rb
+- lib/oauth2/response.rb
+- lib/oauth2/strategy/assertion.rb
+- lib/oauth2/strategy/auth_code.rb
+- lib/oauth2/strategy/base.rb
+- lib/oauth2/strategy/client_credentials.rb
+- lib/oauth2/strategy/implicit.rb
+- lib/oauth2/strategy/password.rb
+- lib/oauth2/version.rb
+homepage: https://github.com/motionauth/oauth2
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5
+signing_key: 
+specification_version: 4
+summary: A RubyMotion wrapper for the OAuth 2.0 protocol.
+test_files: []
+has_rdoc: