RubyGems - oauth2-server - Versions diffs - 0.1.1 - Mend

oauth2-server 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

data/LICENSE +0 -0
data/README.md +0 -0
data/lib/oauth2/server.rb +11 -0
data/lib/oauth2/server/flows.rb +13 -0
data/lib/oauth2/server/flows/web_server.rb +57 -0
data/lib/oauth2/server/request.rb +142 -0
metadata +95 -0

data/LICENSE ADDED Viewed

File without changes

data/README.md ADDED Viewed

File without changes

data/lib/oauth2/server.rb ADDED Viewed

@@ -0,0 +1,11 @@
+require 'oauth2/core'
+module OAuth2
+  module Server
+    autoload :Flows,      'oauth2/server/flows'
+    autoload :Rails,      'oauth2/server/rails'
+    autoload :Request,    'oauth2/server/request'
+  end
+end

data/lib/oauth2/server/flows.rb ADDED Viewed

@@ -0,0 +1,13 @@
+module OAuth2
+  module Server
+    module Flows
+      autoload :WebServer, 'oauth2/server/flows/web_server'
+    end
+  end
+end

data/lib/oauth2/server/flows/web_server.rb ADDED Viewed

@@ -0,0 +1,57 @@
+require 'oauth2/attributes'
+module OAuth2
+  module Server
+    module Flows
+      class WebServer
+        include OAuth2::Attributes
+        def create_ticket(&block)
+          if block_given?
+            callbacks[:create_ticket] = block
+          else
+            block.call
+          end
+        end
+        attributes  :create_ticket,
+                    :verify_resource_owner,
+                    :render_authorize_form
+        # This method will create a ticket for the client and try to identify
+        # and verify the resource owner.
+        # If those two steps succeed, it displays the authorization form.
+        def request_authorization
+          create_ticket
+          verify_resource_owner or return
+          render_authorize_form
+        end
+        attributes  :create_verification_code,
+                    :authorized?
+                    :redirect_back
+        # If the user authorized the client, we create a verification code.
+        # Then we redirect back with the verification code or an error message.
+        def grant_authorization
+          create_verification_code if authorized?
+          redirect_back
+        end
+        # TODO
+        def access_token
+          # TODO: verify that type == "web_sever"
+          # TODO: verify that redirect_uri == ticket.redirect_uri
+        end
+      end
+    end
+  end
+end

data/lib/oauth2/server/request.rb ADDED Viewed

@@ -0,0 +1,142 @@
+require 'oauth2/attributes'
+require 'hmac-sha2'
+require 'active_support/base64'
+module OAuth2
+  module Server
+    class Request
+      include OAuth2::Attributes
+      attributes  :host, :realm, :algorithms, :method,
+                  :request_header, :request_uri,
+                  :host_with_port, :secret, :access_token,
+                  :access_token_expired?
+      class << self
+        def validate(*args)
+          request = new(*args)
+          request.validate
+          request
+        end
+      end
+      def initialize(attributes = {}, &block)
+        self.attributes.merge!(attributes)
+      end
+      def errors
+        @errors ||= []
+      end
+      alias_method :original_request_header, :request_header
+      # Overwrite attribute reader #request_header
+      # See OAuth2::Server::Attributes
+      def request_header
+        value = original_request_header
+        if value.is_a?(String)
+          value = Headers::Authorization.parse(value)
+        end
+        value
+      end
+      def type
+        return :bearer        if bearer?
+        return :cryptographic if cryptographic?
+        :unknown
+      end
+      def bearer?
+        if request_header.attributes.values.compact.size != 1
+          return false
+        end
+        not request_header.token.nil?
+      end
+      def cryptographic?
+        required_attributes = %w{token nonce timestamp algorithm signature}
+        required_attributes.map! do |attribute|
+          request_header.send(attribute.to_sym).nil?
+        end
+        required_attributes.uniq == [false]
+      end
+      # Calculates the header signature as described on:
+      # http://tools.ietf.org/html/draft-hammer-oauth2-00#section-5.3.1
+      def calculate_signature
+        normalized_string = [
+          request_header.timestamp,
+          request_header.nonce,
+          request_header.algorithm,
+          method.upcase,
+          host_with_port,
+          request_uri
+        ].join(',')
+        digest = HMAC::SHA256.digest(secret, normalized_string)
+        ActiveSupport::Base64.encode64s(digest)
+      end
+      def validate_signature
+        if calculate_signature != request_header.signature
+          errors << :signature_invalid
+          return false
+        end
+        true
+      end
+      def validate_access_token
+        unless access_token
+          errors << :access_token_invalid
+          return false
+        end
+        if access_token_expired?
+          errors << :access_token_expired
+          return false
+        end
+        true
+      end
+      def validate_request_header
+        unless request_header
+          errors << :missing_authorization_header
+          return false
+        end
+        true
+      end
+      def validate
+        errors.clear
+        if validate_request_header
+          validate_access_token
+          validate_signature if type == :cryptographic
+        end
+        @valid = errors.empty?
+      end
+      def valid?
+        @valid
+      end
+    end
+  end
+end

metadata ADDED Viewed

@@ -0,0 +1,95 @@
+--- !ruby/object:Gem::Specification
+name: oauth2-server
+version: !ruby/object:Gem::Version
+  prerelease: false
+  segments:
+  - 0
+  - 1
+  - 1
+  version: 0.1.1
+platform: ruby
+authors:
+- Alexander Flatter
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2010-05-07 00:00:00 +02:00
+default_executable:
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: ruby-hmac
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        - 0
+        - 0
+        version: 0.0.0
+  type: :runtime
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency
+  name: rspec
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        segments:
+        - 0
+        version: "0"
+  type: :development
+  version_requirements: *id002
+description: ""
+email:
+- aflatter@farbenmeer.net
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- lib/oauth2/server/flows/web_server.rb
+- lib/oauth2/server/flows.rb
+- lib/oauth2/server/request.rb
+- lib/oauth2/server.rb
+- LICENSE
+- README.md
+has_rdoc: true
+homepage: http://github.com/aflatter/oauth2
+licenses: []
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      segments:
+      - 1
+      - 3
+      - 6
+      version: 1.3.6
+requirements: []
+rubyforge_project:
+rubygems_version: 1.3.6
+signing_key:
+specification_version: 3
+summary: ""
+test_files: []