oidc 0.0.1

data/lib/rack/oauth2/server/authorize/extension/code_and_id_token.rb

@@ -0,0 +1,40 @@
+module Rack
+  module OAuth2
+    module Server
+      class Authorize
+        module Extension
+          class CodeAndIdToken < Abstract::Handler
+            class << self
+              def response_type_for?(response_type)
+                response_type.split.sort == ['code', 'id_token']
+              end
+            end
+
+            def _call(env)
+              @request  = Request.new env
+              @response = Response.new request
+              super
+            end
+
+            class Request < Authorize::Code::Request
+              def initialize(env)
+                super
+                @response_type = [:code, :id_token]
+                attr_missing!
+              end
+
+              def error_params_location
+                :fragment
+              end
+            end
+
+            class Response < Authorize::Code::Response
+              include IdTokenResponse
+              attr_required :id_token
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/rack/oauth2/server/authorize/extension/code_and_id_token_and_token.rb

@@ -0,0 +1,36 @@
+module Rack
+  module OAuth2
+    module Server
+      class Authorize
+        module Extension
+          class CodeAndIdTokenAndToken < Abstract::Handler
+            class << self
+              def response_type_for?(response_type)
+                response_type.split.sort == ['code', 'id_token', 'token']
+              end
+            end
+
+            def _call(env)
+              @request  = Request.new env
+              @response = Response.new request
+              super
+            end
+
+            class Request < Authorize::Extension::CodeAndToken::Request
+              def initialize(env)
+                super
+                @response_type = [:code, :id_token, :token]
+                attr_missing!
+              end
+            end
+
+            class Response < Authorize::Extension::CodeAndToken::Response
+              include IdTokenResponse
+              attr_required :id_token
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/rack/oauth2/server/authorize/extension/id_token.rb

@@ -0,0 +1,40 @@
+module Rack
+  module OAuth2
+    module Server
+      class Authorize
+        module Extension
+          class IdToken < Abstract::Handler
+            class << self
+              def response_type_for?(response_type)
+                response_type == 'id_token'
+              end
+            end
+
+            def _call(env)
+              @request  = Request.new env
+              @response = Response.new request
+              super
+            end
+
+            class Request < Authorize::Request
+              def initialize(env)
+                super
+                @response_type = :id_token
+                attr_missing!
+              end
+
+              def error_params_location
+                :fragment
+              end
+            end
+
+            class Response < Authorize::Response
+              include IdTokenResponse
+              attr_required :id_token
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/rack/oauth2/server/authorize/extension/id_token_and_token.rb

@@ -0,0 +1,36 @@
+module Rack
+  module OAuth2
+    module Server
+      class Authorize
+        module Extension
+          class IdTokenAndToken < Abstract::Handler
+            class << self
+              def response_type_for?(response_type)
+                response_type.split.sort == ['id_token', 'token']
+              end
+            end
+
+            def _call(env)
+              @request  = Request.new env
+              @response = Response.new request
+              super
+            end
+
+            class Request < Authorize::Token::Request
+              def initialize(env)
+                super
+                @response_type = [:id_token, :token]
+                attr_missing!
+              end
+            end
+
+            class Response < Authorize::Token::Response
+              include IdTokenResponse
+              attr_required :id_token
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/rack/oauth2/server/authorize/request_with_connect_params.rb

@@ -0,0 +1,26 @@
+class Rack::OAuth2::Server::Authorize
+  module RequestWithConnectParams
+    CONNECT_EXT_PARAMS = [
+      :nonce, :display, :prompt, :max_age, :ui_locales, :claims_locales,
+      :id_token_hint, :login_hint, :acr_values, :claims, :request, :request_uri
+    ]
+
+    def self.prepended(klass)
+      klass.send :attr_optional, *CONNECT_EXT_PARAMS
+    end
+
+    def initialize(env)
+      super
+      CONNECT_EXT_PARAMS.each do |attribute|
+        self.send :"#{attribute}=", params[attribute.to_s]
+      end
+      self.prompt = Array(prompt.to_s.split(' '))
+      self.max_age = max_age.try(:to_i)
+    end
+
+    def oidc_request?
+      scope.include?('openid')
+    end
+  end
+  Request.send :prepend, RequestWithConnectParams
+end

data/lib/rack/oauth2/server/id_token_response.rb

@@ -0,0 +1,24 @@
+module Rack::OAuth2::Server
+  module IdTokenResponse
+    def self.prepended(klass)
+      klass.send :attr_optional, :id_token
+    end
+
+    def protocol_params_location
+      :fragment
+    end
+
+    def protocol_params
+      super.merge(
+        id_token: id_token
+      )
+    end
+  end
+  Token::Response.send :prepend, IdTokenResponse
+end
+
+require 'rack/oauth2/server/authorize/extension/code_and_id_token'
+require 'rack/oauth2/server/authorize/extension/code_and_token'
+require 'rack/oauth2/server/authorize/extension/code_and_id_token_and_token'
+require 'rack/oauth2/server/authorize/extension/id_token'
+require 'rack/oauth2/server/authorize/extension/id_token_and_token'

data/oidc.gemspec

@@ -0,0 +1,46 @@
+# frozen_string_literal: true
+
+require_relative "lib/oidc/version"
+
+Gem::Specification.new do |spec|
+  spec.name = "oidc"
+  spec.version = Oidc::VERSION
+  spec.authors = ["Suleyman Musayev"]
+  spec.email = ["slmusayev@gmail.com"]
+
+  spec.summary = "OpenID Connect (OIDC) Server & Client Library"
+  spec.description = "OpenID Connect (OIDC) Server & Client Library"
+  spec.homepage = "https://github.com/msuliq/oidc"
+  spec.license = "MIT"
+  spec.required_ruby_version = ">= 2.7.0"
+
+  spec.metadata["homepage_uri"] = spec.homepage
+  spec.metadata["source_code_uri"] = "https://github.com/msuliq/oidc"
+  spec.metadata["changelog_uri"] = "https://github.com/msuliq/oidc/blob/main/CHANGELOG.md"
+
+  # Specify which files should be added to the gem when it is released.
+  # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
+  spec.files = Dir.chdir(__dir__) do
+    `git ls-files -z`.split("\x0").reject do |f|
+      (File.expand_path(f) == __FILE__) ||
+        f.start_with?(*%w[bin/ test/ spec/ features/ .git .github appveyor Gemfile])
+    end
+  end
+  spec.bindir = "exe"
+  spec.executables = spec.files.grep(%r{\Aexe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  # Uncomment to register a new dependency of your gem
+  spec.add_dependency "tzinfo"
+  spec.add_dependency "attr_required"
+  spec.add_dependency "activemodel"
+  spec.add_dependency "validate_url"
+  spec.add_dependency "email_validator"
+  spec.add_dependency "mail"
+  spec.add_dependency 'faraday'
+  spec.add_dependency 'faraday-follow_redirects'
+  spec.add_dependency "json-jwt"
+  spec.add_dependency "swd"
+  spec.add_dependency "webfinger"
+  spec.add_dependency "rack-oauth2"
+end

data/sig/omniauth_oidc.rbs

@@ -0,0 +1,4 @@
+module OmniauthOidc
+  VERSION: String
+  # See the writing guide of rbs: https://github.com/ruby/rbs#guides
+end

metadata

@@ -0,0 +1,252 @@
+--- !ruby/object:Gem::Specification
+name: oidc
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Suleyman Musayev
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2024-07-21 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: tzinfo
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: attr_required
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: activemodel
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: validate_url
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: email_validator
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: mail
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: faraday
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: faraday-follow_redirects
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: json-jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: swd
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: webfinger
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rack-oauth2
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: OpenID Connect (OIDC) Server & Client Library
+email:
+- slmusayev@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".rspec"
+- ".rubocop.yml"
+- CHANGELOG.md
+- CODE_OF_CONDUCT.md
+- LICENSE.txt
+- README.md
+- Rakefile
+- lib/oidc.rb
+- lib/oidc/access_token.rb
+- lib/oidc/access_token/mtls.rb
+- lib/oidc/client.rb
+- lib/oidc/client/registrar.rb
+- lib/oidc/connect_object.rb
+- lib/oidc/discovery.rb
+- lib/oidc/discovery/provider.rb
+- lib/oidc/discovery/provider/config.rb
+- lib/oidc/discovery/provider/config/resource.rb
+- lib/oidc/discovery/provider/config/response.rb
+- lib/oidc/exception.rb
+- lib/oidc/jwtnizable.rb
+- lib/oidc/request_object.rb
+- lib/oidc/request_object/claimable.rb
+- lib/oidc/request_object/id_token.rb
+- lib/oidc/request_object/user_info.rb
+- lib/oidc/response_object.rb
+- lib/oidc/response_object/id_token.rb
+- lib/oidc/response_object/user_info.rb
+- lib/oidc/response_object/user_info/address.rb
+- lib/oidc/version.rb
+- lib/rack/oauth2/server/authorize/error_with_connect_ext.rb
+- lib/rack/oauth2/server/authorize/extension/code_and_id_token.rb
+- lib/rack/oauth2/server/authorize/extension/code_and_id_token_and_token.rb
+- lib/rack/oauth2/server/authorize/extension/id_token.rb
+- lib/rack/oauth2/server/authorize/extension/id_token_and_token.rb
+- lib/rack/oauth2/server/authorize/request_with_connect_params.rb
+- lib/rack/oauth2/server/id_token_response.rb
+- oidc.gemspec
+- sig/omniauth_oidc.rbs
+homepage: https://github.com/msuliq/oidc
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://github.com/msuliq/oidc
+  source_code_uri: https://github.com/msuliq/oidc
+  changelog_uri: https://github.com/msuliq/oidc/blob/main/CHANGELOG.md
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.7.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.6
+signing_key: 
+specification_version: 4
+summary: OpenID Connect (OIDC) Server & Client Library
+test_files: []