multi_auth 0.0.1

data/config/routes.rb

@@ -0,0 +1,51 @@
+# -*- coding: utf-8 -*-
+
+ActionController::Routing::Routes.draw do |map|
+  IdPattern    = /[0-9]+/
+  TokenPattern = /[0-9a-f]+/
+
+  if Rails.root.to_s == File.expand_path(File.join(File.dirname(__FILE__), '..'))
+    map.root :controller => "home", :action => "index"
+  end
+
+  map.connect "signup", :controller => "signup", :action => "index"
+
+  map.with_options :controller => "signup/email" do |email|
+    email.connect "signup/email/:action",                      :action => /(index|validate|validated|create|created|activate|activated)/
+    email.connect "signup/email/activation/:activation_token", :action => "activation", :activation_token => TokenPattern
+  end
+
+  map.with_options :controller => "signup/open_id" do |open_id|
+    open_id.connect "signup/open_id/:action", :action => /(index|authenticate|authenticated|create|created)/
+  end
+
+  map.connect "auth/:action", :controller => "auth", :action => /(logged_in|logout|logged_out)/
+  map.connect "auth/email/:action", :controller => "auth/email", :action => /(index|login)/
+  map.connect "auth/open_id/:action", :controller => "auth/open_id", :action => /(index|login)/
+
+  map.connect "credentials/:action", :controller => "credentials", :action => /(index)/
+
+  map.with_options :controller => "credentials/email" do |email|
+    email.connect "credentials/email/:action",                        :action => /(new|create)/
+    email.connect "credential/email/:email_credential_id/:action",    :action => /(created|edit_password|update_password|delete|destroy)/, :email_credential_id => IdPattern
+    email.connect "credential/email/token/:activation_token/:action", :action => /(activation|activate|activated)/, :activation_token => TokenPattern
+  end
+
+  map.with_options :controller => "credentials/open_id" do |open_id|
+    open_id.connect "credentials/open_id/:action",                       :action => /(new|create)/
+    open_id.connect "credential/open_id/:open_id_credential_id/:action", :action => /(delete|destroy)/, :open_id_credential_id => IdPattern
+  end
+
+  map.with_options :controller => "emails" do |emails|
+    emails.connect "emails/:action",                        :action => /(new|create)/
+    emails.connect "email/:email_address_id/:action",       :action => /(created|delete|destroy)/, :email_address_id => IdPattern
+    emails.connect "email/token/:activation_token/:action", :action => /(activation|activate|activated)/, :activation_token => TokenPattern
+  end
+
+  # MEMO: 下記2行のデフォルトルールをコメントアウトしてrake test:functionalsを
+  #       実行することにより、リンクチェックを行うことができる
+  # NOTE: この二行を有効にするとアプリケーション側の config/routes.rb で定義した
+  #       ルートが有効にならない
+  map.connect ":controller/:action/:id"
+  map.connect ":controller/:action/:id.:format"
+end

data/config/smtp.yml.example

@@ -0,0 +1,8 @@
+
+:enable_starttls_auto: true
+:address: "smtp.gmail.com"
+:port: 587
+:domain: "localhost.localdomain"
+:authentication: :plain
+:user_name: "username"
+:password: "password"

data/db/schema.rb

@@ -0,0 +1,88 @@
+# This file is auto-generated from the current state of the database. Instead of editing this file, 
+# please use the migrations feature of Active Record to incrementally modify your database, and
+# then regenerate this schema definition.
+#
+# Note that this schema.rb definition is the authoritative source for your database schema. If you need
+# to create the application database on another system, you should be using db:schema:load, not running
+# all the migrations from scratch. The latter is a flawed and unsustainable approach (the more migrations
+# you'll amass, the slower it'll run and the greater likelihood for issues).
+#
+# It's strongly recommended to check this file into your version control system.
+
+ActiveRecord::Schema.define(:version => 20090420020617) do
+
+  create_table "email_addresses", :force => true do |t|
+    t.datetime "created_at",                      :null => false
+    t.string   "activation_token", :limit => 40,  :null => false
+    t.integer  "user_id",                         :null => false
+    t.string   "email",            :limit => 200, :null => false
+    t.datetime "activated_at"
+  end
+
+  add_index "email_addresses", ["activated_at"], :name => "index_email_addresses_on_activated_at"
+  add_index "email_addresses", ["activation_token"], :name => "index_email_addresses_on_activation_token", :unique => true
+  add_index "email_addresses", ["created_at"], :name => "index_email_addresses_on_created_at"
+  add_index "email_addresses", ["email", "user_id"], :name => "index_email_addresses_on_email_and_user_id", :unique => true
+  add_index "email_addresses", ["user_id"], :name => "index_email_addresses_on_user_id"
+
+  create_table "email_credentials", :force => true do |t|
+    t.datetime "created_at",                      :null => false
+    t.string   "activation_token", :limit => 40,  :null => false
+    t.integer  "user_id",                         :null => false
+    t.string   "email",            :limit => 200, :null => false
+    t.string   "hashed_password",  :limit => 73,  :null => false
+    t.datetime "activated_at"
+    t.datetime "loggedin_at"
+  end
+
+  add_index "email_credentials", ["activated_at"], :name => "index_email_credentials_on_activated_at"
+  add_index "email_credentials", ["activation_token"], :name => "index_email_credentials_on_activation_token", :unique => true
+  add_index "email_credentials", ["created_at"], :name => "index_email_credentials_on_created_at"
+  add_index "email_credentials", ["email"], :name => "index_email_credentials_on_email", :unique => true
+  add_index "email_credentials", ["user_id"], :name => "index_email_credentials_on_user_id"
+
+  create_table "open_id_authentication_associations", :force => true do |t|
+    t.integer "issued"
+    t.integer "lifetime"
+    t.string  "handle"
+    t.string  "assoc_type"
+    t.binary  "server_url"
+    t.binary  "secret"
+  end
+
+  create_table "open_id_authentication_nonces", :force => true do |t|
+    t.integer "timestamp",  :null => false
+    t.string  "server_url"
+    t.string  "salt",       :null => false
+  end
+
+  create_table "open_id_credentials", :force => true do |t|
+    t.datetime "created_at",                  :null => false
+    t.integer  "user_id",                     :null => false
+    t.string   "identity_url", :limit => 200, :null => false
+    t.datetime "loggedin_at"
+  end
+
+  add_index "open_id_credentials", ["identity_url"], :name => "index_open_id_credentials_on_identity_url", :unique => true
+  add_index "open_id_credentials", ["user_id"], :name => "index_open_id_credentials_on_user_id"
+
+  create_table "sessions", :force => true do |t|
+    t.datetime "created_at",               :null => false
+    t.datetime "updated_at",               :null => false
+    t.string   "session_id", :limit => 64, :null => false
+    t.text     "data"
+  end
+
+  add_index "sessions", ["session_id"], :name => "index_sessions_on_session_id", :unique => true
+  add_index "sessions", ["updated_at"], :name => "index_sessions_on_updated_at"
+
+  create_table "users", :force => true do |t|
+    t.datetime "created_at",               :null => false
+    t.datetime "updated_at",               :null => false
+    t.string   "user_token", :limit => 40, :null => false
+    t.string   "nickname",   :limit => 40
+  end
+
+  add_index "users", ["user_token"], :name => "index_users_on_user_token", :unique => true
+
+end

data/lib/action_mailer_util.rb

@@ -0,0 +1,15 @@
+
+# アクションメーラユーティリティ
+module ActionMailerUtil
+  private
+
+  def build_message(options)
+    sent_on(Time.now)
+    subject(options[:subject] || raise(ArgumentError))
+    from(options[:from] || raise(ArgumentError))
+    recipients(options[:recipients] || raise(ArgumentError))
+    body(options[:body] || raise(ArgumentError))
+
+    return nil
+  end
+end

data/lib/multi_auth.rb

@@ -0,0 +1,64 @@
+# -*- coding: utf-8 -*-
+
+class MultiAuth
+
+  class << self
+    attr_accessor_with_default :application_name, 'app'
+    attr_accessor_with_default :from_address, 'noreply@example.com'
+    attr_accessor_with_default :user_model, 'User'
+    def setup
+      yield self
+    end
+
+    def self.user_model_class
+      @user_model.constantize
+    end
+  end
+
+  module ClassMethods
+    def verify_method_post(options = {})
+      verify({
+               :method => :post,
+               :render => {:text => "Method Not Allowed", :status => 405},
+             }.merge(options))
+    end
+  end
+
+  module InstanceMethods
+
+    private
+
+    def authentication(user_id = session[:user_id])
+      @login_user = User.find_by_id(user_id)
+      return true
+    end
+
+    def authentication_required
+      if @login_user
+        return true
+      else
+        set_error("ログインが必要です。")
+        redirect_to(root_path)
+        return false
+      end
+    end
+
+    def set_notice(message)
+      flash[:notice] = @flash_notice = message
+      flash[:error]  = @flash_error  = nil
+    end
+
+    def set_error(message)
+      flash[:notice] = @flash_notice = nil
+      flash[:error]  = @flash_error  = message
+    end
+
+    def set_error_now(message)
+      flash.now[:notice] = @flash_notice = nil
+      flash.now[:error]  = @flash_error  = message
+    end
+  end
+end
+
+ActionController::Base.__send__(:extend, MultiAuth::ClassMethods)
+ActionController::Base.__send__(:include, MultiAuth::InstanceMethods)

data/lib/multi_auth_helper.rb

@@ -0,0 +1,98 @@
+# -*- coding: utf-8 -*-
+
+# TODO: 不要なメソッドを削除する
+module MultiAuthHelper
+
+  def production?
+    return (RAILS_ENV == "production")
+  end
+
+  def logged_in?
+    !!@login_user
+  end
+
+  def rss_auto_discovery(options = {})
+    options = options.dup
+    title = options.delete(:title) || raise(ArgumentError)
+    href  = options.delete(:href)  || raise(ArgumentError)
+    raise(ArgumentError) unless options.empty?
+
+    return %|<link rel="alternate" type="application/rss+xml" title="#{h(title)}" href="#{h(href)}" />|
+  end
+
+  def additional_head(&block)
+    @additional_head_html ||= ""
+    @additional_head_html  += capture(&block)
+  end
+
+  def side_column(&block)
+    @side_column_html ||= ""
+    @side_column_html  += capture(&block)
+  end
+
+  def even_or_odd(index)
+    return %w[even odd][index % 2]
+  end
+
+  def icon16(path, alt = nil)
+    return image_tag(
+      path,
+      :width  => 16,
+      :height => 16,
+      :alt    => alt,
+      :title  => alt)
+  end
+
+  def enable_icon
+    return icon16("icons/fam/tick.png", "有効")
+  end
+
+  def disable_icon
+    return icon16("icons/fam/stop.png", "無効")
+  end
+
+  def enable_or_disable_icon(enable)
+    return (enable ? enable_icon : disable_icon)
+  end
+
+  def add_icon
+    return icon16("icons/fam/add.png", "追加")
+  end
+
+  def edit_icon
+    return icon16("icons/fam/cog.png", "編集")
+  end
+
+  def delete_icon
+    return icon16("icons/fam/bin.png", "削除")
+  end
+
+  def help_icon(alt = "ヘルプ")
+    return icon16("icons/fam/help.png", alt)
+  end
+
+  def feed_icon
+    return icon16("icons/fam/feed.png", "フィード")
+  end
+
+  def csv_icon
+    return icon16("icons/fam/table_save.png", "CSV")
+  end
+
+  def yyyymmdd(time, null = "-")
+    return time.try(:strftime, "%Y年%m月%d日") || null
+  end
+
+  def yyyymmdd_hhmm(time, null = "-")
+    return time.try(:strftime, "%Y年%m月%d日 %H時%M分") || null
+  end
+
+  def mmdd_hhmm(time, null = "-")
+    return time.try(:strftime, "%m月%d日 %H時%M分") || null
+  end
+
+  def user_nickname(user, nickname_column = :nickname)
+    nickname = user.__send__(nickname_column)
+    return (nickname.blank? ? h("名無しさん") : h(nickname))
+  end
+end

data/lib/notice_formatter.rb

@@ -0,0 +1,106 @@
+
+module NoticeFormatter
+  def self.replace_keywords(str, keywords)
+    return keywords.inject(str.dup) { |memo, (key, value)|
+      memo.gsub!(/\{#{Regexp.escape(key)}\}/, value)
+      memo
+    }
+  end
+
+  def self.add_namespace(name, keywords)
+    return keywords.inject({}) { |memo, (key, value)|
+      memo[name + ":" + key] = value
+      memo
+    }
+  end
+
+  def self.format_integer_value(value)
+    return (value.nil? ? "-" : value.to_s)
+  end
+
+  def self.format_integer_json_value(value)
+    return value.to_json
+  end
+
+  def self.format_string_value(value)
+    return (value.blank? ? "-" : value.to_s)
+  end
+
+  def self.format_string_json_value(value)
+    return (value.blank? ? nil.to_json : value.to_json)
+  end
+
+  def self.format_part_of_date(date)
+    return {
+      "date"      => date.try(:strftime, "%Y-%m-%d")     || "-",
+      "date:json" => date.try(:strftime, '"%Y-%m-%d"')   || "null",
+      "date:ja"   => date.try(:strftime, "%Y年%m月%d日") || "-",
+      "yyyy"      => date.try(:strftime, "%Y")           || "-",
+      "mm"        => date.try(:strftime, "%m")           || "-",
+      "dd"        => date.try(:strftime, "%d")           || "-",
+    }
+  end
+
+  def self.format_part_of_time(time)
+    return {
+      "time"      => time.try(:strftime, "%H:%M:%S")     || "-",
+      "time:json" => time.try(:strftime, '"%H:%M:%S"')   || "null",
+      "time:ja"   => time.try(:strftime, "%H時%M分%S秒") || "-",
+      "hh"        => time.try(:strftime, "%H")           || "-",
+      "nn"        => time.try(:strftime, "%M")           || "-",
+      "ss"        => time.try(:strftime, "%S")           || "-",
+    }
+  end
+
+  def self.format_part_of_datetime(datetime)
+    result = {
+      "datetime"      => datetime.try(:strftime, "%Y-%m-%d %H:%M:%S")         || "-",
+      "datetime:json" => datetime.try(:strftime, '"%Y-%m-%d %H:%M:%S"')       || "null",
+      "datetime:ja"   => datetime.try(:strftime, "%Y年%m月%d日 %H時%M分%S秒") || "-",
+    }
+    result.merge!(self.format_part_of_date(datetime))
+    result.merge!(self.format_part_of_time(datetime))
+    return result
+  end
+
+  def self.format_part_of_user(user)
+    return {
+      "user:token"         => self.format_string_value(user.try(:user_token)),
+      "user:token:json"    => self.format_string_json_value(user.try(:user_token)),
+      "user:nickname"      => self.format_string_value(user.try(:nickname)),
+      "user:nickname:json" => self.format_string_json_value(user.try(:nickname)),
+    }
+  end
+
+  def self.format_part_of_device(device)
+    return {
+      "device:token"      => self.format_string_value(device.try(:device_token)),
+      "device:token:json" => self.format_string_json_value(device.try(:device_token)),
+      "device:name"       => self.format_string_value(device.try(:name)),
+      "device:name:json"  => self.format_string_json_value(device.try(:name)),
+    }
+  end
+
+  def self.format_part_of_event(event)
+    result = {
+      "event:trigger-operator"      => self.format_string_value(event.try(:trigger_operator_symbol)),
+      "event:trigger-operator:json" => self.format_string_json_value(event.try(:trigger_operator_symbol)),
+      "event:trigger-level"         => self.format_integer_value(event.try(:trigger_level)),
+      "event:trigger-level:json"    => self.format_integer_json_value(event.try(:trigger_level)),
+      "event:observed-level"        => self.format_integer_value(event.try(:observed_level)),
+      "event:observed-level:json"   => self.format_integer_json_value(event.try(:observed_level)),
+    }
+    result.merge!(self.add_namespace("event:created-at", self.format_part_of_datetime(event.try(:created_at))))
+    result.merge!(self.add_namespace("event:observed-at", self.format_part_of_datetime(event.try(:observed_at))))
+    return result
+  end
+
+  def self.format_event(event, time = Time.now)
+    result = {}
+    result.merge!(self.add_namespace("now", self.format_part_of_datetime(time)))
+    result.merge!(self.format_part_of_event(event))
+    result.merge!(self.format_part_of_device(event.try(:device)))
+    result.merge!(self.format_part_of_user(event.try(:device).try(:user)))
+    return result
+  end
+end

data/lib/open_id_authentication/result.rb

@@ -0,0 +1,12 @@
+# -*- coding: utf-8 -*-
+module OpenIdAuthentication
+  class Result
+    ERROR_MESSAGES.update({
+      :missing      => "OpenID サーバが見つかりませんでした。",
+      :invalid      => "OpenID が不正です。",
+      :canceled     => "OpenID の検証がキャンセルされました。",
+      :failed       => "OpenID の検証が失敗しました。",
+      :setup_needed => "OpenID の検証には準備が必要です。",
+    })
+  end
+end

data/lib/token_util.rb

@@ -0,0 +1,18 @@
+
+module TokenUtil
+  def self.create_token(size)
+    return size.times.map { rand(16).to_s(16) }.join
+  end
+
+  def self.create_unique_token(klass, column, size)
+    begin
+      token = self.create_token(size)
+    end while klass.exists?(column => token)
+
+    return token
+  end
+
+  def self.create_token_regexp(size)
+    return /\A[0-9a-f]{#{size}}\z/
+  end
+end

data/public/404.html

@@ -0,0 +1,92 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+  <head>
+    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+    <title>404: Not Found</title>
+    <style type="text/css">
+      *
+      {
+        margin: 0;
+        padding: 0;
+      }
+      #dialog
+      {
+        position: absolute;
+        top: 50%;
+        left: 50%;
+        width: 650px;
+        height: 200px;
+        margin: -100px 0px 0px -325px;
+      }
+      #code-outer
+      {
+        position: absolute;
+        top: 0px;
+        left: 0px;
+        width: 249px;
+        height: 200px;
+        border-style: solid;
+        border-color: #CCCCCC;
+        border-width: 0px 1px 0px 0px;
+      }
+      #code-inner
+      {
+        font-size: 150px;
+        line-height: 200px;
+        text-align: center;
+        color: #999999;
+      }
+      #message
+      {
+        position: absolute;
+        top: 0px;
+        left: 250px;
+        width: 400px;
+        height: 200px;
+      }
+      #status-outer
+      {
+        height: 75px;
+      }
+      #status-inner
+      {
+        padding: 40px 0px 0px 10px;
+        font-size: 24px;
+        font-weight: bold;
+        color: #999999;
+      }
+      #description-outer
+      {
+        height: 124px;
+        border-style: solid;
+        border-color: #CCCCCC;
+        border-width: 1px 0px 0px 0px;
+      }
+      #description-inner
+      {
+        padding: 10px;
+        font-size: 14px;
+        line-height: 24px;
+        color: #999999;
+      }
+    </style>
+  </head>
+  <body>
+    <div id="dialog">
+      <div id="code-outer">
+        <div id="code-inner">404</div>
+      </div>
+      <div id="message">
+        <div id="status-outer">
+          <div id="status-inner">Not Found</div>
+        </div>
+        <div id="description-outer">
+          <div id="description-inner">
+            <div>要求されたURLは見つかりませんでした。URLが間違っている可能性があります。</div>
+            <div>The requested URL was not found on this server.</div>
+          </div>
+        </div>
+      </div>
+    </div>
+  </body>
+</html>

data/public/422.html

@@ -0,0 +1,91 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+  <head>
+    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+    <title>422: Unprocessable Entity</title>
+    <style type="text/css">
+      *
+      {
+        margin: 0;
+        padding: 0;
+      }
+      #dialog
+      {
+        position: absolute;
+        top: 50%;
+        left: 50%;
+        width: 650px;
+        height: 200px;
+        margin: -100px 0px 0px -325px;
+      }
+      #code-outer
+      {
+        position: absolute;
+        top: 0px;
+        left: 0px;
+        width: 249px;
+        height: 200px;
+        border-style: solid;
+        border-color: #CCCCCC;
+        border-width: 0px 1px 0px 0px;
+      }
+      #code-inner
+      {
+        font-size: 150px;
+        line-height: 200px;
+        text-align: center;
+        color: #999999;
+      }
+      #message
+      {
+        position: absolute;
+        top: 0px;
+        left: 250px;
+        width: 400px;
+        height: 200px;
+      }
+      #status-outer
+      {
+        height: 75px;
+      }
+      #status-inner
+      {
+        padding: 40px 0px 0px 10px;
+        font-size: 24px;
+        font-weight: bold;
+        color: #999999;
+      }
+      #description-outer
+      {
+        height: 124px;
+        border-style: solid;
+        border-color: #CCCCCC;
+        border-width: 1px 0px 0px 0px;
+      }
+      #description-inner
+      {
+        padding: 10px;
+        font-size: 14px;
+        line-height: 24px;
+        color: #999999;
+      }
+    </style>
+  </head>
+  <body>
+    <div id="dialog">
+      <div id="code-outer">
+        <div id="code-inner">422</div>
+      </div>
+      <div id="message">
+        <div id="status-outer">
+          <div id="status-inner">Unprocessable Entity</div>
+        </div>
+        <div id="description-outer">
+          <div id="description-inner">
+            <div>要求されたURLは処理できませんでした。</div>
+          </div>
+        </div>
+      </div>
+    </div>
+  </body>
+</html>