RubyGems - oauth2-server - Versions diffs - 0.1.1 - Mend

oauth2-server 0.1.1

Files changed (7) hide show

data/LICENSE +0 -0
data/README.md +0 -0
data/lib/oauth2/server.rb +11 -0
data/lib/oauth2/server/flows.rb +13 -0
data/lib/oauth2/server/flows/web_server.rb +57 -0
data/lib/oauth2/server/request.rb +142 -0
metadata +95 -0

data/LICENSE ADDED Viewed

File without changes

data/README.md ADDED Viewed

File without changes

data/lib/oauth2/server.rb ADDED Viewed

@@ -0,0 +1,11 @@
+require 'oauth2/core'
+module OAuth2
+  module Server
+    autoload :Flows,      'oauth2/server/flows'
+    autoload :Rails,      'oauth2/server/rails'
+    autoload :Request,    'oauth2/server/request'
+  end
+end

data/lib/oauth2/server/flows.rb ADDED Viewed

@@ -0,0 +1,13 @@
+module OAuth2
+  module Server
+    module Flows
+      autoload :WebServer, 'oauth2/server/flows/web_server'
+    end
+  end
+end

data/lib/oauth2/server/flows/web_server.rb ADDED Viewed

@@ -0,0 +1,57 @@
+require 'oauth2/attributes'
+module OAuth2
+  module Server
+    module Flows
+      class WebServer
+        include OAuth2::Attributes
+        def create_ticket(&block)
+          if block_given?
+            callbacks[:create_ticket] = block
+          else
+            block.call
+          end
+        end
+        attributes  :create_ticket,
+                    :verify_resource_owner,
+                    :render_authorize_form
+        # This method will create a ticket for the client and try to identify
+        # and verify the resource owner.
+        # If those two steps succeed, it displays the authorization form.
+        def request_authorization
+          create_ticket
+          verify_resource_owner or return
+          render_authorize_form
+        end
+        attributes  :create_verification_code,
+                    :authorized?
+                    :redirect_back
+        # If the user authorized the client, we create a verification code.
+        # Then we redirect back with the verification code or an error message.
+        def grant_authorization
+          create_verification_code if authorized?
+          redirect_back
+        end
+        # TODO
+        def access_token
+          # TODO: verify that type == "web_sever"
+          # TODO: verify that redirect_uri == ticket.redirect_uri
+        end
+      end
+    end
+  end
+end

data/lib/oauth2/server/request.rb ADDED Viewed

@@ -0,0 +1,142 @@
+require 'oauth2/attributes'
+require 'hmac-sha2'
+require 'active_support/base64'
+module OAuth2
+  module Server
+    class Request
+      include OAuth2::Attributes
+      attributes  :host, :realm, :algorithms, :method,
+                  :request_header, :request_uri,
+                  :host_with_port, :secret, :access_token,
+                  :access_token_expired?
+      class << self
+        def validate(*args)
+          request = new(*args)
+          request.validate
+          request
+        end
+      end
+      def initialize(attributes = {}, &block)
+        self.attributes.merge!(attributes)
+      end
+      def errors
+        @errors ||= []
+      end
+      alias_method :original_request_header, :request_header
+      # Overwrite attribute reader #request_header
+      # See OAuth2::Server::Attributes
+      def request_header
+        value = original_request_header
+        if value.is_a?(String)
+          value = Headers::Authorization.parse(value)
+        end
+        value
+      end
+      def type
+        return :bearer        if bearer?
+        return :cryptographic if cryptographic?
+        :unknown
+      end
+      def bearer?
+        if request_header.attributes.values.compact.size != 1
+          return false
+        end
+        not request_header.token.nil?
+      end
+      def cryptographic?
+        required_attributes = %w{token nonce timestamp algorithm signature}
+        required_attributes.map! do |attribute|
+          request_header.send(attribute.to_sym).nil?
+        end
+        required_attributes.uniq == [false]
+      end
+      # Calculates the header signature as described on:
+      # http://tools.ietf.org/html/draft-hammer-oauth2-00#section-5.3.1
+      def calculate_signature
+        normalized_string = [
+          request_header.timestamp,
+          request_header.nonce,
+          request_header.algorithm,
+          method.upcase,
+          host_with_port,
+          request_uri
+        ].join(',')
+        digest = HMAC::SHA256.digest(secret, normalized_string)
+        ActiveSupport::Base64.encode64s(digest)
+      end
+      def validate_signature
+        if calculate_signature != request_header.signature
+          errors << :signature_invalid
+          return false
+        end
+        true
+      end
+      def validate_access_token
+        unless access_token
+          errors << :access_token_invalid
+          return false
+        end
+        if access_token_expired?
+          errors << :access_token_expired
+          return false
+        end
+        true
+      end
+      def validate_request_header
+        unless request_header
+          errors << :missing_authorization_header
+          return false
+        end
+        true
+      end
+      def validate
+        errors.clear
+        if validate_request_header
+          validate_access_token
+          validate_signature if type == :cryptographic
+        end
+        @valid = errors.empty?
+      end
+      def valid?
+        @valid
+      end
+    end
+  end
+end

metadata ADDED Viewed

@@ -0,0 +1,95 @@
+--- !ruby/object:Gem::Specification
+name: oauth2-server
+version: !ruby/object:Gem::Version
+  prerelease: false
+  segments:
+  - 0
+  - 1
+  - 1
+  version: 0.1.1
+platform: ruby
+authors:
+- Alexander Flatter
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2010-05-07 00:00:00 +02:00
+default_executable:
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: ruby-hmac
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        - 0
+        - 0
+        version: 0.0.0
+  type: :runtime
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency
+  name: rspec
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        version: "0"
+  type: :development
+  version_requirements: *id002
+description: ""
+email:
+- aflatter@farbenmeer.net
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/oauth2/server/flows/web_server.rb
+- lib/oauth2/server/flows.rb
+- lib/oauth2/server/request.rb
+- lib/oauth2/server.rb
+- LICENSE
+- README.md
+has_rdoc: true
+homepage: http://github.com/aflatter/oauth2
+licenses: []
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 1
+      - 3
+      - 6
+      version: 1.3.6
+requirements: []
+rubyforge_project:
+rubygems_version: 1.3.6
+signing_key:
+specification_version: 3
+summary: ""
+test_files: []