omniauth-cas-login 1.0.1

checksums.yaml

@@ -0,0 +1,15 @@
+---
+!binary "U0hBMQ==":
+  metadata.gz: !binary |-
+    YWM1OGEwMDJlNjcwNjc5YTdhNzcwZGFlZDYyNmQxMWI0OGEzYWZhYQ==
+  data.tar.gz: !binary |-
+    N2QxZWNlYzFmYmM1N2VjNGNhNDZjNjMzYjMyYmQ3YjAxYjc5YmEyOA==
+SHA512:
+  metadata.gz: !binary |-
+    ZmI5NzdlMmUxYzdhOTczODI3OWFmMzEwMmEwYTE5ZWM5ZjZjMDkxZTNjNDI5
+    Y2IwMzJiMzU5Njg3ZWM4NGI5NWM2OWMwODhiZWFkMjdmMjExNjFmMDVkMWZl
+    YmI5NzU2MzcxMzVhN2UzOTc1MGNkZmYwZTc1MTdmNjI5NDg4NDQ=
+  data.tar.gz: !binary |-
+    ZGQ0MzBjZjkxMzY1YjJmNGQ4YmUwMDJjNmZjMTU1MDk2YWZjYjg3ZjgzOTdl
+    YTc4MDFmMTUyYjNjMTMzMzJjZjE3YmUxZWM4NmZiNDQ2MGU2OTIzZDU2MDQ2
+    MDZkNjdlNjZiZmY5MjM2Mzk5NmY3M2U2NmY5MzExMmQ4ZDRjYzU=

data/.gitignore

@@ -0,0 +1,7 @@
+*.gem
+.bundle
+Gemfile.lock
+pkg/*
+coverage
+/.project
+/nbproject/

data/.rspec

@@ -0,0 +1 @@
+--colour

data/Gemfile

@@ -0,0 +1,4 @@
+source "https://rubygems.org"
+
+# Specify your gem's dependencies in omniauth-cas-login.gemspec
+gemspec

data/README.md

@@ -0,0 +1,25 @@
+# OmniAuth CAS Login
+
+This gem contains the CAS Login strategy for OmniAuth.
+
+## Before You Begin
+
+You should have already installed OmniAuth into your app; if not, read the [OmniAuth README](https://github.com/intridea/omniauth) to get started.
+
+## Using This Strategy
+
+First start by adding this gem to your Gemfile:
+
+    gem 'omniauth-cas-login'
+
+If you need to use the gem locally from source, place the root folder in 'vendor/gems' and add the following line instead:
+
+    gem 'omniauth-cas-login', :path => 'vendor/gems/omniauth-cas-login'
+
+Next, tell OmniAuth about this provider. For a Rails app, your `config/initializers/omniauth.rb` file should look like this:
+
+    Rails.application.config.middleware.use OmniAuth::Builder do
+      provider :cas_login, "CLIENT_KEY", "CLIENT_SECRET"
+    end
+
+Replace CLIENT_KEY and CLIENT_SECRET with the appropriate values you obtained from the login provider.

data/Rakefile

@@ -0,0 +1,8 @@
+require 'bundler/gem_tasks'
+require 'rspec/core/rake_task'
+
+desc 'Run specs'
+RSpec::Core::RakeTask.new(:spec)
+
+desc 'Default: run specs.'
+task :default => :spec

data/lib/omniauth-cas-login.rb

@@ -0,0 +1,2 @@
+require 'omniauth-cas-login/version'
+require 'omniauth/strategies/cas_login'

data/lib/omniauth-cas-login/version.rb

@@ -0,0 +1,5 @@
+module OmniAuth
+  module CasLogin
+    VERSION = "1.0.1"
+  end
+end

data/lib/omniauth/strategies/cas_login.rb

@@ -0,0 +1,131 @@
+require 'omniauth'
+require 'oauth2'
+require 'securerandom'
+
+module OmniAuth
+  module Strategies
+    class CasLogin
+      include OmniAuth::Strategy
+      
+      option :name, 'cas_login'
+      
+      args [:client_id, :client_secret]
+      
+      option :client_id, nil
+      option :client_secret, nil
+      option :authorize_params, {}
+      option :authorize_options, [:scope]
+      option :provider_ignores_state, false
+      
+      option :client_options, {
+        :site => nil,
+        :authorize_url => nil,
+        :token_url => nil,
+        :profile_url => nil
+      }
+            
+      attr_accessor :access_token
+      
+      uid{ raw_info['principal'] }
+
+      info do
+        {
+          :principal => raw_info['principal'],
+          :email => raw_info.has_key?('email') ? raw_info['email'] : '',
+          :name => raw_info['name'],
+          :thirdPartyIds => raw_info.has_key?('thirdPartyIds') ? raw_info['thirdPartyIds'] : {}
+        }
+      end
+
+      extra do
+        { 'raw_info' => raw_info }
+      end
+
+      credentials do
+        { 'token' => access_token.token }
+      end
+      
+      def client
+        ::OAuth2::Client.new(options.client_id, options.client_secret, deep_symbolize(options.client_options))
+      end
+      
+      def callback_url
+        full_host + script_name + callback_path
+      end
+      
+      def request_phase
+        redirect client.auth_code.authorize_url({:redirect_uri => callback_url}.merge(authorize_params))
+      end
+      
+      def authorize_params
+        options.authorize_params[:state] = SecureRandom.hex(24)
+        params = options.authorize_params.merge(options.authorize_options.inject({}){|h,k| h[k.to_sym] = options[k] if options[k]; h})
+        if OmniAuth.config.test_mode
+          @env ||= {}
+          @env['rack.session'] ||= {}
+        end
+        session['omniauth.state'] = params[:state]
+        params
+      end
+            
+      def callback_phase
+        if request.params['error'] || request.params['error_reason']
+          raise CallbackError.new(request.params['error'], request.params['error_description'] || request.params['error_reason'], request.params['error_uri'])
+        end
+        if !options.provider_ignores_state && (request.params['state'].to_s.empty? || request.params['state'] != session.delete('omniauth.state'))
+          raise CallbackError.new(nil, :csrf_detected)
+        end
+
+        self.access_token = build_access_token
+        self.access_token = access_token.refresh! if access_token.expired?
+        
+        super
+      rescue ::OAuth2::Error, CallbackError => e
+        fail!(:invalid_credentials, e)
+      rescue ::Timeout::Error, ::Errno::ETIMEDOUT => e
+        fail!(:timeout, e)
+      rescue ::SocketError => e
+        fail!(:failed_to_connect, e)
+      end
+      
+      def raw_info
+        @raw_info ||= access_token.get(options.client_options.profile_url).parsed
+      end
+
+      protected
+
+      def deep_symbolize(hash)
+        hash.inject({}) do |h, (k,v)|
+          h[k.to_sym] = v.is_a?(Hash) ? deep_symbolize(v) : v
+          h
+        end
+      end
+      
+      def build_access_token
+        access_token_url = client.token_url(:client_id => options.client_id, :client_secret => options.client_secret, :code => request.params['code'], :redirect_uri => callback_url)
+        
+        response = client.request(:get, access_token_url)
+        access_token_str = response.parsed['access_token']
+        expires_str = response.parsed['expiration']
+               
+        ::OAuth2::AccessToken.from_hash(
+          client, {:access_token => access_token_str, :expires_in => expires_str, :mode => :query, :param_name => 'access_token'}
+        )
+      end
+            
+      # An error that is indicated in the OAuth 2.0 callback.
+      # This could be a `redirect_uri_mismatch` or other
+      class CallbackError < StandardError
+        attr_accessor :error, :error_reason, :error_uri
+
+        def initialize(error, error_reason=nil, error_uri=nil)
+          self.error = error
+          self.error_reason = error_reason
+          self.error_uri = error_uri
+        end
+      end    
+    end
+  end
+end
+
+OmniAuth.config.add_camelization 'cas_login', 'CasLogin'

data/omniauth-cas-login.gemspec

@@ -0,0 +1,26 @@
+# -*- encoding: utf-8 -*-
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'omniauth-cas-login/version'
+
+Gem::Specification.new do |gem|
+  gem.name          = "omniauth-cas-login"
+  gem.version       = OmniAuth::CasLogin::VERSION
+  gem.authors       = ["Antonio Ruano Cuesta"]
+  gem.email         = ["ruanest@gmail.com"]
+  gem.description   = %q{OmniAuth strategy for CAS Login}
+  gem.summary       = %q{OmniAuth strategy for CAS Login}
+  gem.homepage      = ""
+
+  gem.files         = `git ls-files`.split($/)
+  gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.require_paths = ["lib"]
+
+  gem.add_dependency 'omniauth', '~> 1.1.1'
+  gem.add_dependency 'oauth2', '~> 0.8.0'
+  gem.add_dependency 'json'
+
+  gem.add_development_dependency 'rspec', '~> 2.13.0'
+  gem.add_development_dependency 'simplecov'
+end

data/spec/omniauth/strategies/cas_login_spec.rb

@@ -0,0 +1,70 @@
+require 'spec_helper'
+require 'omniauth-cas-login'
+
+describe OmniAuth::Strategies::CasLogin do
+  subject { OmniAuth::Strategies::CasLogin.new(nil) }
+
+  it 'should add a camelization for itself' do
+    OmniAuth::Utils.camelize('cas_login').should == 'CasLogin'
+  end
+
+  describe '#callback_path' do
+    it 'has the correct callback path' do
+      subject.callback_path.should eq('/auth/cas_login/callback')
+    end
+  end
+
+  describe '#uid' do
+    before :each do
+      subject.stub(:raw_info) { { 'principal' => 'uid' } }
+    end
+
+    it 'returns the id from raw_info' do
+      subject.uid.should eq('uid')
+    end
+  end
+
+  describe '#info' do
+    before :each do
+      subject.stub(:raw_info) { {} }
+    end
+
+    context 'and therefore has all the necessary fields' do
+      it { subject.info.should have_key :principal }
+      it { subject.info.should have_key :name }
+      it { subject.info.should have_key :email }
+      it { subject.info.should have_key :thirdPartyIds }
+    end
+  end
+
+  describe '#extra' do
+    before :each do
+      subject.stub(:raw_info) { { :foo => 'bar' } }
+    end
+
+    it { subject.extra['raw_info'].should eq({ :foo => 'bar' }) }
+  end
+
+  describe '#raw_info' do
+    before :each do
+      response = double('response', :parsed => { :foo => 'bar' })
+      subject.stub(:access_token) { double('access token', :get => response) }
+    end
+
+    it 'returns parsed response from access token' do
+      subject.raw_info.should eq({ :foo => 'bar' })
+    end
+  end
+
+  describe '#authorize_params' do
+    describe 'scope' do
+      before :each do
+        subject.stub(:session => {})
+      end
+
+      it 'sets default scope' do
+        subject.authorize_params['scope'].should eq(nil)
+      end
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,20 @@
+require 'simplecov'
+SimpleCov.start
+
+# This file was generated by the `rspec --init` command. Conventionally, all
+# specs live under a `spec` directory, which RSpec adds to the `$LOAD_PATH`.
+# Require this file using `require "spec_helper"` to ensure that it is only
+# loaded once.
+#
+# See http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration
+RSpec.configure do |config|
+  config.treat_symbols_as_metadata_keys_with_true_values = true
+  config.run_all_when_everything_filtered = true
+  config.filter_run :focus
+
+  # Run specs in random order to surface order dependencies. If you find an
+  # order dependency and want to debug it, you can fix the order by providing
+  # the seed, which is printed after each run.
+  #     --seed 1234
+  config.order = 'random'
+end

metadata

@@ -0,0 +1,127 @@
+--- !ruby/object:Gem::Specification
+name: omniauth-cas-login
+version: !ruby/object:Gem::Version
+  version: 1.0.1
+platform: ruby
+authors:
+- Antonio Ruano Cuesta
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-10-22 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: omniauth
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.1.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.1.1
+- !ruby/object:Gem::Dependency
+  name: oauth2
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.8.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.8.0
+- !ruby/object:Gem::Dependency
+  name: json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.13.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.13.0
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: OmniAuth strategy for CAS Login
+email:
+- ruanest@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- .rspec
+- Gemfile
+- README.md
+- Rakefile
+- lib/omniauth-cas-login.rb
+- lib/omniauth-cas-login/version.rb
+- lib/omniauth/strategies/cas_login.rb
+- omniauth-cas-login.gemspec
+- spec/omniauth/strategies/cas_login_spec.rb
+- spec/spec_helper.rb
+homepage: ''
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.1.9
+signing_key: 
+specification_version: 4
+summary: OmniAuth strategy for CAS Login
+test_files:
+- spec/omniauth/strategies/cas_login_spec.rb
+- spec/spec_helper.rb
+has_rdoc: