oauth2c 0.1.0

data/lib/oauth2c/grants.rb

@@ -0,0 +1,24 @@
+# Copyright 2017 Doximity, Inc. <support@doximity.com>
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+module OAuth2c
+  module Grants
+    autoload :Assertion,                "oauth2c/grants/assertion"
+    autoload :AuthorizationCode,        "oauth2c/grants/authorization_code"
+    autoload :ClientCredentials,        "oauth2c/grants/client_credentials"
+    autoload :Implicit,                 "oauth2c/grants/implicit"
+    autoload :RefreshToken,             "oauth2c/grants/refresh_token"
+    autoload :ResourceOwnerCredentials, "oauth2c/grants/resource_owner_credentials"
+  end
+end

data/lib/oauth2c/refinements.rb

@@ -0,0 +1,33 @@
+module OAuth2c
+  module Refinements
+    refine String do
+      def camelize
+        gsub(/(?:\A|_)([a-z])/) { $1.upcase }
+      end
+    end
+
+    refine Hash do
+      def slice(*keys)
+        keys.map! { |key| convert_key(key) } if respond_to?(:convert_key, true)
+        keys.each_with_object(self.class.new) { |k, hash| hash[k] = self[k] if has_key?(k) }
+      end
+
+      def symbolize_keys
+        transform_keys{ |key| key.to_sym rescue key }
+      end
+
+      def stringify_keys
+        transform_keys(&:to_s)
+      end
+
+      def transform_keys
+        return enum_for(:transform_keys) { size } unless block_given?
+        result = {}
+        each_key do |key|
+          result[yield(key)] = self[key]
+        end
+        result
+      end
+    end
+  end
+end

data/lib/oauth2c/three_legged.rb

@@ -0,0 +1,85 @@
+# Copyright 2017 Doximity, Inc. <support@doximity.com>
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+module OAuth2c
+  module ThreeLegged
+    using Refinements
+
+    InvalidStateError = Class.new(StandardError)
+
+    class Base
+      attr_reader :scope
+
+      def initialize(agent, state:, scope: [])
+        @agent = agent
+        @state = state
+        update_scope(scope)
+      end
+
+      def update_scope(scope)
+        @scope = scope.dup.freeze
+      end
+
+      def authz_url
+        @agent.authz_url(state: @state, scope: @scope, **authz_params)
+      end
+
+      def token(callback_url)
+        query_params, fragment_params = parse_callback_url(callback_url)
+
+        if query_params[:error]
+          raise Error.new(query_params[:error], query_params[:error_description])
+        end
+
+        if query_params[:state] != @state
+          raise InvalidStateError, "callback url state mismatch"
+        end
+
+        if block_given?
+          yield(query_params, fragment_params)
+        else
+          ok, response = @agent.token(include_redirect_uri: true, **token_params(query_params))
+          handle_token_response(ok, response)
+        end
+      end
+
+      protected
+
+      def authz_params
+        raise NotImplementedError
+      end
+
+      def token_params
+        raise NotImplementedError
+      end
+
+      def parse_callback_url(callback_url)
+        uri = URI.parse(callback_url)
+
+        query_params    = Hash[URI.decode_www_form(uri.query.to_s)].symbolize_keys
+        fragment_params = Hash[URI.decode_www_form(uri.fragment.to_s)].symbolize_keys
+
+        [query_params, fragment_params]
+      end
+
+      def handle_token_response(ok, response)
+        if ok
+          AccessToken.new(**response.symbolize_keys)
+        else
+          raise Error.new(response["error"], response["error_description"])
+        end
+      end
+    end
+  end
+end

data/lib/oauth2c/two_legged.rb

@@ -0,0 +1,51 @@
+# Copyright 2017 Doximity, Inc. <support@doximity.com>
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+module OAuth2c
+  module TwoLegged
+    class Base
+      using Refinements
+
+      attr_reader :scope
+
+      def initialize(agent, scope: [])
+        @agent = agent
+        update_scope(scope)
+      end
+
+      def update_scope(scope)
+        @scope = scope.dup.freeze
+      end
+
+      def token
+        ok, response = @agent.token({ **token_params, scope: @scope })
+        handle_token_response(ok, response)
+      end
+
+      protected
+
+      def token_params
+        raise NotImplementedError
+      end
+
+      def handle_token_response(ok, response)
+        if ok
+          AccessToken.new(**response.symbolize_keys)
+        else
+          raise Error.new(response["error"], response["error_description"])
+        end
+      end
+    end
+  end
+end

data/lib/oauth2c/version.rb

@@ -0,0 +1,17 @@
+# Copyright 2017 Doximity, Inc. <support@doximity.com>
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+module OAuth2c
+  VERSION = "0.1.0"
+end

data/lib/oauth2c.rb

@@ -0,0 +1,26 @@
+# Copyright 2017 Doximity, Inc. <support@doximity.com>
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+module OAuth2c
+  autoload :AccessToken,  "oauth2c/access_token"
+  autoload :Agent,        "oauth2c/agent"
+  autoload :Cache,        "oauth2c/cache"
+  autoload :Client,       "oauth2c/client"
+  autoload :Error,        "oauth2c/error"
+  autoload :Grants,       "oauth2c/grants"
+  autoload :Refinements,  "oauth2c/refinements"
+  autoload :ThreeLegged,  "oauth2c/three_legged"
+  autoload :TwoLegged,    "oauth2c/two_legged"
+  autoload :VERSION,      "oauth2c/version"
+end

data/oauth2c.gemspec

@@ -0,0 +1,58 @@
+# coding: utf-8
+
+# Copyright 2017 Doximity, Inc. <support@doximity.com>
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'oauth2c/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "oauth2c"
+  spec.version       = OAuth2c::VERSION
+  spec.authors       = ["Rodrigo Kochenburger"]
+  spec.email         = ["divoxx@gmail.com"]
+
+  spec.summary       = %q{OAuth2c is a extensible OAuth2 client implementation}
+  spec.description   = %q{OAuth2c is a extensible OAuth2 client implementation}
+  spec.homepage      = "https://github.com/doximity/oauth2c"
+
+  # Prevent pushing this gem to RubyGems.org. To allow pushes either set the 'allowed_push_host'
+  # to allow pushing to a single host or delete this section to allow pushing to any host.
+  # if spec.respond_to?(:metadata)
+  #   spec.metadata['allowed_push_host'] = "TODO: Set to 'http://mygemserver.com'"
+  # else
+  #   raise "RubyGems 2.0 or newer is required to protect against " \
+  #     "public gem pushes."
+  # end
+
+  spec.files         = `git ls-files -z`.split("\x0").reject do |f|
+    f.match(%r{^(test|spec|features)/})
+  end
+
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  spec.add_runtime_dependency "http", "~> 2.0"
+  spec.add_runtime_dependency "jwt", "~> 1.5"
+
+  spec.add_development_dependency "bundler", "~> 1.14"
+  spec.add_development_dependency "pry"
+  spec.add_development_dependency "byebug"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "redis", "~> 3.0"
+  spec.add_development_dependency "rspec", "~> 3.0"
+  spec.add_development_dependency "webmock", "~> 2.0"
+end

metadata

@@ -0,0 +1,204 @@
+--- !ruby/object:Gem::Specification
+name: oauth2c
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Rodrigo Kochenburger
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2017-03-10 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: http
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.5'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.14'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.14'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: byebug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: redis
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+description: OAuth2c is a extensible OAuth2 client implementation
+email:
+- divoxx@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- ".travis.yml"
+- CODE_OF_CONDUCT.md
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/rspec
+- bin/setup
+- lib/oauth2c.rb
+- lib/oauth2c/access_token.rb
+- lib/oauth2c/agent.rb
+- lib/oauth2c/cache.rb
+- lib/oauth2c/cache/backends.rb
+- lib/oauth2c/cache/backends/in_memory_lru.rb
+- lib/oauth2c/cache/backends/null.rb
+- lib/oauth2c/cache/backends/redis.rb
+- lib/oauth2c/cache/manager.rb
+- lib/oauth2c/cache/store.rb
+- lib/oauth2c/client.rb
+- lib/oauth2c/error.rb
+- lib/oauth2c/grants.rb
+- lib/oauth2c/grants/assertion.rb
+- lib/oauth2c/grants/authorization_code.rb
+- lib/oauth2c/grants/client_credentials.rb
+- lib/oauth2c/grants/implicit.rb
+- lib/oauth2c/grants/refresh_token.rb
+- lib/oauth2c/grants/resource_owner_credentials.rb
+- lib/oauth2c/refinements.rb
+- lib/oauth2c/three_legged.rb
+- lib/oauth2c/two_legged.rb
+- lib/oauth2c/version.rb
+- oauth2c.gemspec
+homepage: https://github.com/doximity/oauth2c
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.6.8
+signing_key: 
+specification_version: 4
+summary: OAuth2c is a extensible OAuth2 client implementation
+test_files: []