omniauth-cul 0.2.0 → 0.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 5da31c2f79868b1ffaa0b942b3c8c26bfed1911777d53c153ed4ecf2bcd2f289
-  data.tar.gz: 39590d04655b7260e5ff0423bb826abbf9500e7cd47617bbb679b8c23fa92fdd
+  metadata.gz: 875301ec5d629a7d873ed8128f9e85db1483328ccaa8399ea5b39c90da551d7a
+  data.tar.gz: a4a97f035b3c4993b145985861ea1fce2f1b742db5cfc133dda7db0e1a90e28c
 SHA512:
-  metadata.gz: 85874e250cc849120dfa5869a8e78516bfc2269d0275b0e549cf755e4838a1e1be1197df01b8cb1cbbe79d9273904bf0254da6e5708a114577e2e055a7ec720c
-  data.tar.gz: 0b861025b96752b267ab4eaf78dad76aa6933c7341be2427884cdf62b82a04696be0956e90cc449ef2cc526335e2fbc80430223467cbf54cda9ce8fb01e9a388
+  metadata.gz: f3275f7f39fa158516e144f626cc1c274191f73db0da823944b0a9503d7c49d01924679f5275b51c4556cbb062a2cb1cb732d3345cf963211c1d0917e8aca3d3
+  data.tar.gz: 05a5a1a6942d900fe8201e20d84e2f986e123ba4e35339f5030f888a6da96c985fa412d307db5dde974c67f6ae72188a6f36dfc6505494d1d076d0430f5053d9

data/.rubocop.yml

@@ -1,13 +1,8 @@
-AllCops:
-  TargetRubyVersion: 2.6
-
-Style/StringLiterals:
-  Enabled: true
-  EnforcedStyle: double_quotes
+inherit_gem:
+  rubocul: rubocul_default.yml
 
-Style/StringLiteralsInInterpolation:
-  Enabled: true
-  EnforcedStyle: double_quotes
+AllCops:
+  TargetRubyVersion: 3.1
 
-Layout/LineLength:
-  Max: 120
+Rails:
+  Enabled: false

data/README.md

@@ -1,6 +1,6 @@
-# Cul::Omniauth
+# Omniauth::Cul
 
-Cul::Omniauth is a gem that facilitates using Rails, [Devise](https://github.com/plataformatec/devise "Devise") and Omniauth with the [CAS offering from Columbia University IT](https://cuit.columbia.edu/cas-authentication "CUIT CAS Documentation").
+Omniauth::Cul is a gem that facilitates using Rails, [Devise](https://github.com/plataformatec/devise "Devise") and Omniauth with the [CAS offering from Columbia University IT](https://cuit.columbia.edu/cas-authentication "CUIT CAS Documentation").
 
 At this time, this gem only supports Columbia University's CAS3 authentication endpoint (which provides user affiliation information), but support for additional auth mechanisms may be added later if needed.
 
@@ -8,74 +8,116 @@ At this time, this gem only supports Columbia University's CAS3 authentication e
 
 The instructions below assume that your Rails application's user model will be called "User".
 
-1. Add gem `devise` (>= 4.9) to your Gemfile.
+1. Add gem `devise` (~> 4.9) to your Gemfile. (This gem has only been tested with Devise 4.x.)
 2. Follow the standard Devise setup instructions (https://github.com/heartcombo/devise).  Recap:
    1. `rails generate devise:install`
    2. `rails generate devise User`
    3. `rails db:migrate`
-3. Add gem `omniauth` (>= 2.1) to your Gemfile.
-4. Add this gem, 'omniauth-cul', to your Gemfile.
+3. Add gem `omniauth` (~> 2.1) to your Gemfile.
+4. Add this gem, 'omniauth-cul', to your Gemfile. (This gem has only been tested with omniauth 2.x.)
 5. Run `bundle install`.
-6. In `/config/initializers/devise.rb`, add this:
+6. Add an initializer to your app at `/config/initializers/omniauth.rb` with this content in it (to mitigate):
+   1. ```
+      OmniAuth.config.request_validation_phase = OmniAuth::AuthenticityTokenProtection.new(key: :_csrf_token)
+      ```
+   2. For more info, see: https://github.com/cookpad/omniauth-rails_csrf_protection?tab=readme-ov-file#omniauth---rails-csrf-protection
+7. This gem offers two Omniauth providers:
+   - `:columbia_cas` - For logging in with a Columbia UNI
+   - `:developer_uid` - For logging in as a user with a specific uid (IMPORTANT: only enable this in a development environment!)
+
+   To enable one or both of these providers, edit `/config/initializers/devise.rb` and add one or both of these lines:
    ```
-   config.omniauth :cas, strategy_class: Omniauth::Cul::Strategies::Cas3Strategy
+   config.omniauth :columbia_cas, { label: 'Columbia SSO (CAS)' }
+   config.omniauth :developer_uid, { label: 'Developer UID' } if Rails.env.development?
    ```
-   (There may already be a config.omniauth section, and if so you can append this to the existing lines in that section.)
-7. Add a :uid column to the User model by running: `rails generate migration AddUidToUsers uid:string:uniq:index`
-8. In `/app/models/user.rb`, find the line where the `devise` method is called (usually with arguments like `:database_authenticatable`, `:registerable`, etc.).
-   - Minimally, you need to add these additional arguments to the end of the method call: `:omniauthable, omniauth_providers: [:cas]`
-   - In most cases though, you'll probably want to disable most of the modules and have only this:
+   (NOTE: You may already have other config.omniauth entries in your devise.rb file. If so, you can append the lines above to that section.)
+8. Add a :uid column to the User model by running: `rails generate migration AddUidToUsers uid:string:uniq:index`
+9.  In `/app/models/user.rb`, find the line where the `devise` method is called.
+   - It might look something like this:
+      ```
+      devise :database_authenticatable, :validatable
+      ```
+   - Minimally, you need to add these additional arguments to the end of the method call: `:omniauthable, omniauth_providers: Devise.omniauth_configs.keys`, so the updated code might look like this:
+     ```
+     devise :database_authenticatable, :validatable, :omniauthable, omniauth_providers: Devise.omniauth_configs.keys
+     ```
+     This is just an example though!  You might not need the `:database_authenticatable` and `:validatable` modules for your app.  See the [Devise documentation](https://github.com/heartcombo/devise) for more information about available modules and what they do.
+
+      It's worth mentioning here that if you use plan to use omniauth-cul gem for CAS authentication, you might not actually want to support password authentication in your app anymore.  If that's the case, you can remove the `:database_authenticatable` module (which enforces the presence of an `encrypted_password` field on your User model) and you can also remove the `:validatable` model (which, among other things, validates the presence of a password field when a new User is created).
+
+    - The simplest version of your devise configuration could look like this:
       ```
-      devise :database_authenticatable, :validatable, :omniauthable, omniauth_providers: [:cas]
+      devise :omniauthable, omniauth_providers: Devise.omniauth_configs.keys
       ```
-9.  In `/config/routes.rb`, find this line:
+      Why does `:omniauth_providers` configuration has a value of `Devise.omniauth_configs.keys`?  This serves the purpose of automatically referencing any config.omniauth providers that you previously enabled in `devise.rb`.  For example, if you enabled `:columbia_cas` and `:developer_uid` providers in `devise.rb`, then `Devise.omniauth_configs.keys` would return `[:columbia_cas, :developer_uid]`.
+10. In `/config/routes.rb`, find this line:
    ```
     devise_for :users
    ```
-   And replace it with these lines:
+   And replace it with this:
    ```
     devise_for :users, controllers: { omniauth_callbacks: 'users/omniauth_callbacks' }
    ```
-10. Create a new file at `app/controllers/users/omniauth_callbacks_controller.rb` with the following content:
+11. Create a new file at `app/controllers/users/omniauth_callbacks_controller.rb` with the following content (and then customize it based on your needs):
     ```
     require 'omniauth/cul'
 
-      class Users::OmniauthCallbacksController < Devise::OmniauthCallbacksController
-        # Adding the line below so that if the auth endpoint POSTs to our cas endpoint, it won't
-        # be rejected by authenticity token verification.
-        # See https://github.com/omniauth/omniauth/wiki/FAQ#rails-session-is-clobbered-after-callback-on-developer-strategy
-        skip_before_action :verify_authenticity_token, only: :cas
-
-        def app_cas_callback_endpoint
-          "#{request.base_url}/users/auth/cas/callback"
+    class Users::OmniauthCallbacksController < Devise::OmniauthCallbacksController
+      # See https://github.com/omniauth/omniauth/wiki/FAQ#rails-session-is-clobbered-after-callback-on-developer-strategy
+      # The CAS login redirect to the columbia_cas callback endpoint AND the developer form submission to the
+      # developer_uid callback do not send authenticity tokens, so we'll skip token verification for these actions.
+      skip_before_action :verify_authenticity_token, only: [:columbia_cas, :developer_uid]
+
+      # POST /users/auth/developer_uid/callback
+      def developer_uid
+        return unless Rails.env.development? # Only allow this action to run in the development environment
+        uid = params[:uid]
+        user = User.find_by(uid: uid)
+
+        if !user
+          flash[:alert] = "Login attempt failed.  User #{uid} does not have an account."
+          redirect_to root_path
+          return
         end
 
-        # GET /users/auth/cas (go here to be redirected to the CAS login form)
-        def passthru
-          redirect_to Omniauth::Cul::Cas3.passthru_redirect_url(app_cas_callback_endpoint), allow_other_host: true
-        end
+        sign_in_and_redirect user, event: :authentication # this will throw if user is not activated
+      end
 
-        # GET /users/auth/cas/callback
-        def cas
-          user_id, affils = Omniauth::Cul::Cas3.validation_callback(request.params['ticket'], app_cas_callback_endpoint)
-
-          # Custom auth logic for your app goes here.
-          # The code below is provided as an example.  If you want to use Omniauth::Cul::PermissionFileValidator,
-          # to validate see the later "Omniauth::Cul::PermissionFileValidator" section of this README.
-          #
-          # if Omniauth::Cul::PermissionFileValidator.permitted?(user_id, affils)
-          #   user = User.find_by(uid: user_id) || User.create!(
-          #       uid: user_id,
-          #       email: "#{user_id}@columbia.edu"
-          #   )
-          #   sign_in_and_redirect user, event: :authentication # this will throw if @user is not activated
-          # else
-          #   flash[:error] = 'Login attempt failed'
-          #   redirect_to root_path
-          # end
-        end
+      # POST /users/auth/columbia_cas/callback
+      def columbia_cas
+        callback_url = user_columbia_cas_omniauth_callback_url # The columbia_cas callback route in this application
+        uid, _affils = Omniauth::Cul::ColumbiaCas.validation_callback(request.params['ticket'], callback_url)
+
+        # Custom auth logic for your app goes here.
+        # The code below is only provided as an example.  If you want to use Omniauth::Cul::PermissionFileValidator,
+        # to validate see the later "Omniauth::Cul::PermissionFileValidator" section of this README.
+        #
+        # if Omniauth::Cul::PermissionFileValidator.permitted?(uid, _affils)
+        #   user = User.find_by(uid: uid) || User.create!(
+        #     uid: uid,
+        #     email: "#{uid}@columbia.edu",
+        #     # Only keep the line below if you're using the :database_authenticatable Devise module.
+        #     # Omniauth login doesn't use a password (so the password value doesn't matter to Omniauth),
+        #     # but your app's setup might require a password to be assigned to new users.
+        #     password: Devise.friendly_token[0, 20]
+        #   )
+        #   sign_in_and_redirect user, event: :authentication # this will throw if user is not activated
+        # else
+        #   flash[:alert] = 'Login attempt failed'
+        #   redirect_to root_path
+        # end
+      rescue Omniauth::Cul::Exceptions::Error => e
+        # If an unexpected CAS ticket validation occurs, log the error message and ask the user to try
+        # logging in again.  Do not display the exception object's original message to the user because it may
+        # contain information that only a developer should see.
+        error_message = 'CAS login validation failed.  Please try again.'
+        Rails.logger.debug(error_message + "  #{e.class.name}: #{e.message}")
+        flash[:alert] = error_message
+        redirect_to root_path
       end
+    end
     ```
+  12. The last thing to note is that you must POST to any /users/auth/:provider paths when your users log in via Omniauth.  For security reasons in Omniauth 2.0 and later, use of GET is discouraged and will not work for the Omniauth strategies provided by this gem.  In the past, if you used the Rails `link_to` method to generate links to `/users/auth/:provider`, you should instead use `button_to` because it will generate a `<form method="post">` tag that will perform a POST request to your `/users/auth/:provider` URLs.  If you attempt a GET request, you'll most likely get an error message that says something like "Not found. Authentication passthru."
 
 ## Omniauth::Cul::PermissionFileValidator - Permission validation with a user id list or affiliation list
 

data/Rakefile

@@ -1,11 +1,11 @@
 # frozen_string_literal: true
 
-require "bundler/gem_tasks"
-require "rspec/core/rake_task"
+require 'bundler/gem_tasks'
+require 'rspec/core/rake_task'
 
 RSpec::Core::RakeTask.new(:spec)
 
-require "rubocop/rake_task"
+require 'rubocop/rake_task'
 
 RuboCop::RakeTask.new
 

data/lib/omniauth/cul/case_converter.rb

@@ -0,0 +1,7 @@
+# frozen_string_literal: true
+
+module Omniauth::Cul::CaseConverter
+  def self.to_snake_case(str)
+    str.split(/(?=[A-Z0-9])/).join('_').downcase
+  end
+end

data/lib/omniauth/cul/{cas_3.rb → columbia_cas.rb}

@@ -1,19 +1,17 @@
 # frozen_string_literal: true
 
+require 'nokogiri'
+require 'net/http'
+
 module Omniauth
   module Cul
-    module Cas3
-      # For Columbia CAS 3 endpoint info, see: https://www.cuit.columbia.edu/cas-authentication
-
-      def self.passthru_redirect_url(app_cas_callback_endpoint)
-        'https://cas.columbia.edu/cas/login?'\
-        "service=#{Rack::Utils.escape(app_cas_callback_endpoint)}"
-      end
-
+    # This module is built around the Columbia University CAS 3 endpoint.
+    # For more information about this endpoint, see: https://www.cuit.columbia.edu/cas-authentication
+    module ColumbiaCas
       def self.validation_callback(ticket, app_cas_callback_endpoint)
         cas_ticket = ticket
         validation_url = cas_validation_url(app_cas_callback_endpoint, cas_ticket)
-        validation_response = validate_ticket(validation_url, cas_ticket)
+        validation_response = validate(validation_url)
 
         # We are always expecting an XML response
         response_xml = Nokogiri::XML(validation_response)
@@ -21,6 +19,12 @@ module Omniauth
         user_id = user_id_from_response_xml(response_xml)
         affils = affils_from_response_xml(response_xml)
 
+        if user_id.nil?
+          Rails.logger.error("Cas3 validation failed with validation response:\n#{response_xml}") if defined?(Rails)
+          raise Omniauth::Cul::Exceptions::CasTicketValidationError,
+                'Invalid CAS ticket'
+        end
+
         [user_id, affils]
       end
 
@@ -30,7 +34,7 @@ module Omniauth
         "ticket=#{cas_ticket}"
       end
 
-      def self.validate_ticket(validation_url, cas_ticket)
+      def self.validate(validation_url)
         uri = URI.parse(validation_url)
         http = Net::HTTP.new(uri.host, uri.port)
         http.use_ssl = true
@@ -41,10 +45,20 @@ module Omniauth
       end
 
       def self.user_id_from_response_xml(response_xml)
+        unless response_xml.is_a?(Nokogiri::XML::Document)
+          raise ArgumentError,
+                'response_xml must be a Nokogiri::XML::Document'
+        end
+
         response_xml.xpath('/cas:serviceResponse/cas:authenticationSuccess/cas:user', 'cas' => 'http://www.yale.edu/tp/cas')&.first&.text
       end
 
       def self.affils_from_response_xml(response_xml)
+        unless response_xml.is_a?(Nokogiri::XML::Document)
+          raise ArgumentError,
+                'response_xml must be a Nokogiri::XML::Document'
+        end
+
         response_xml.xpath('/cas:serviceResponse/cas:authenticationSuccess/cas:attributes/cas:affiliation', 'cas' => 'http://www.yale.edu/tp/cas')&.map(&:text)
       end
     end

data/lib/omniauth/cul/exceptions.rb

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+
+module Omniauth::Cul::Exceptions
+  class Error < StandardError; end
+  class CasTicketValidationError < Error; end
+end

data/lib/omniauth/cul/permission_file_validator.rb

@@ -1,5 +1,7 @@
 # frozen_string_literal: true
 
+require 'yaml'
+
 module Omniauth
   module Cul
     module PermissionFileValidator
@@ -7,12 +9,17 @@ module Omniauth
 
       def self.permission_file_data
         return @permission_file_data if @permission_file_data
+
         @permission_file_data = {}
         if defined?(Rails)
           permission_file_path = Rails.root.join('config/permissions.yml')
           # We'll use YAML loading logic similar to Rails 7, for older and newer psych gem compatibility
           # https://github.com/rails/rails/blob/7-1-stable/activesupport/lib/active_support/encrypted_configuration.rb#L99
-          conf = YAML.respond_to?(:unsafe_load) ? YAML.unsafe_load_file(permission_file_path) : YAML.load_file(permission_file_path)
+          conf = if YAML.respond_to?(:unsafe_load)
+                   YAML.unsafe_load_file(permission_file_path)
+                 else
+                   YAML.load_file(permission_file_path)
+                 end
           @permission_file_data = conf[Rails.env] || {}
         end
 
@@ -32,8 +39,9 @@ module Omniauth
       def self.permitted?(user_id, affils)
         return false if user_id.nil?
         return true if allowed_user_ids.include?(user_id)
-        return true if affils.respond_to?(:include?) && allowed_user_affils.include?(affils)
-        return false
+        return true if affils.respond_to?(:include?) && (affils & allowed_user_affils).length.positive?
+
+        false
       end
     end
   end

data/lib/omniauth/cul/version.rb

@@ -2,6 +2,6 @@
 
 module Omniauth
   module Cul
-    VERSION = "0.2.0"
+    VERSION = '0.3.0'
   end
 end

data/lib/omniauth/cul.rb

@@ -1,13 +1,16 @@
 # frozen_string_literal: true
 
 require_relative 'cul/version'
-require_relative 'cul/cas_3'
+
 require_relative 'cul/permission_file_validator'
-require_relative 'cul/strategies/cas_3_strategy'
+require_relative 'cul/case_converter'
+require_relative 'cul/exceptions'
+require_relative 'cul/columbia_cas'
+
+require_relative 'strategies/developer_uid'
+require_relative 'strategies/columbia_cas'
 
 module Omniauth
   module Cul
-    class Error < StandardError; end
-    # Your code goes here...
   end
 end

data/lib/omniauth/strategies/columbia_cas.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+module Omniauth
+  module Strategies
+    class ColumbiaCas
+      include OmniAuth::Strategy
+
+      # IMPORTANT NOTE: By default, any Omniauth strategy class that has a PascalCase name that would be converted to a
+      # downcased version (without underscores), which is not what we want.  So we must override the name option to use
+      # proper snake_casing.  This is unfortunate because it means that a strategy like MyStrategy will become
+      # :mystrategy by default, unless we set `option :name, :my_strategy`.
+      #  You can see the original Omniauth implementation here:
+      # https://github.com/omniauth/omniauth/blob/v2.1.4/lib/omniauth/strategy.rb#L139
+      option :name, Omniauth::Cul::CaseConverter.to_snake_case(name.split('::').last).to_sym
+
+      def request_phase
+        redirect "https://cas.columbia.edu/cas/login?service=#{Rack::Utils.escape(callback_url)}"
+      end
+    end
+  end
+end

data/lib/omniauth/strategies/developer_uid.rb

@@ -0,0 +1,40 @@
+# frozen_string_literal: true
+
+require 'omniauth'
+
+module Omniauth
+  module Strategies
+    class DeveloperUid
+      include OmniAuth::Strategy
+
+      # IMPORTANT NOTE: By default, any Omniauth strategy class that has a PascalCase name that would be converted to a
+      # downcased version (without underscores), which is not what we want.  So we must override the name option to use
+      # proper snake_casing.  This is unfortunate because it means that a strategy like MyStrategy will become
+      # :mystrategy by default, unless we set `option :name, :my_strategy`.
+      #  You can see the original Omniauth implementation here:
+      # https://github.com/omniauth/omniauth/blob/v2.1.4/lib/omniauth/strategy.rb#L139
+      option :name, Omniauth::Cul::CaseConverter.to_snake_case(name.split('::').last).to_sym
+
+      option :fields, [:uid]
+      option :uid_field, :uid
+
+      def request_phase # rubocop:disable Metrics/MethodLength
+        form = OmniAuth::Form.new(
+          title: 'Developer Sign-In',
+          url: callback_path,
+          header_info: <<~FOCUSSCRIPT
+            <script>
+              document.addEventListener("DOMContentLoaded", (event) => {
+                // Automatically focus on the uid input element when the page loads
+                document.getElementById('uid').focus();
+              });
+            </script>
+          FOCUSSCRIPT
+        )
+        form.text_field 'UID', 'uid'
+        form.button 'Sign In'
+        form.to_response
+      end
+    end
+  end
+end

data/omniauth-cul.gemspec

@@ -0,0 +1,41 @@
+# frozen_string_literal: true
+
+require_relative 'lib/omniauth/cul/version'
+
+Gem::Specification.new do |spec|
+  spec.name = 'omniauth-cul'
+  spec.version = Omniauth::Cul::VERSION
+  spec.authors = ['Eric O']
+  spec.email = ['elo2112@columbia.edu']
+
+  spec.summary = 'A devise omniauth adapter for Rails apps, using Columbia University authentication.'
+  spec.homepage = 'https://github.com/cul/omniauth-cul'
+  spec.license = 'MIT'
+  spec.required_ruby_version = '>= 3.1.0'
+
+  # spec.metadata["allowed_push_host"] = "TODO: Set to your gem server 'https://example.com'"
+
+  spec.metadata['homepage_uri'] = spec.homepage
+  spec.metadata['source_code_uri'] = spec.homepage
+
+  # Specify which files should be added to the gem when it is released.
+  # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
+  spec.files = Dir.chdir(__dir__) do
+    `git ls-files -z`.split("\x0").reject do |f|
+      (File.expand_path(f) == __FILE__) ||
+        f.start_with?(*%w[bin/ test/ spec/ features/ .git .circleci appveyor Gemfile])
+    end
+  end
+
+  spec.bindir = 'exe'
+  spec.executables = spec.files.grep(%r{\Aexe/}) { |f| File.basename(f) }
+
+  spec.require_paths = ['lib']
+
+  # Dependencies
+  spec.add_dependency 'devise', '>= 4.9'
+  spec.add_dependency 'omniauth', '>= 2.0'
+
+  # For more information and examples about making a new gem, check out our
+  # guide at: https://bundler.io/guides/creating_gem.html
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: omniauth-cul
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.3.0
 platform: ruby
 authors:
 - Eric O
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2024-01-17 00:00:00.000000000 Z
+date: 2026-01-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: devise
@@ -51,10 +51,14 @@ files:
 - README.md
 - Rakefile
 - lib/omniauth/cul.rb
-- lib/omniauth/cul/cas_3.rb
+- lib/omniauth/cul/case_converter.rb
+- lib/omniauth/cul/columbia_cas.rb
+- lib/omniauth/cul/exceptions.rb
 - lib/omniauth/cul/permission_file_validator.rb
-- lib/omniauth/cul/strategies/cas_3_strategy.rb
 - lib/omniauth/cul/version.rb
+- lib/omniauth/strategies/columbia_cas.rb
+- lib/omniauth/strategies/developer_uid.rb
+- omniauth-cul.gemspec
 - sig/omniauth/cul.rbs
 homepage: https://github.com/cul/omniauth-cul
 licenses:
@@ -70,14 +74,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: 2.7.5
+      version: 3.1.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.4.10
+rubygems_version: 3.3.26
 signing_key:
 specification_version: 4
 summary: A devise omniauth adapter for Rails apps, using Columbia University authentication.

data/lib/omniauth/cul/strategies/cas_3_strategy.rb

@@ -1,9 +0,0 @@
-module Omniauth
-  module Cul
-    module Strategies
-      class Cas3Strategy
-        include OmniAuth::Strategy
-      end
-    end
-  end
-end