omniauth-krb5 0.0.1

data/.gitignore

@@ -0,0 +1,20 @@
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp
+
+# RSpec
+.rspec

data/Gemfile

@@ -0,0 +1,11 @@
+source 'http://rubygems.org'
+
+gemspec
+
+group :development, :test do
+  gem 'guard'
+  gem 'guard-rspec'
+  gem 'guard-bundler'
+  gem 'growl'
+  gem 'rb-fsevent'
+end

data/Guardfile

@@ -0,0 +1,11 @@
+guard 'rspec', :version => 2 do
+  watch(%r{^spec/.+_spec\.rb$})
+  watch(%r{^lib/(.+)\.rb$})     { |m| "spec/#{m[1]}_spec.rb" }
+  watch('spec/spec_helper.rb')  { "spec" }
+end
+
+
+guard 'bundler' do
+  watch('Gemfile')
+  watch(/^.+\.gemspec/)
+end

data/LICENSE

@@ -0,0 +1,19 @@
+Copyright (c) 2011-2012 Dave Naffis <dave@intridea.com> and Intridea
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,14 @@
+= OmniAuth::Krb5
+
+OmniAuth strategy for authenticating with Kerberos.
+
+Install manually or using Bundler:
+
+    gem 'omniauth-krb5', :git => 'https://github.com/naffis/omniauth-krb5.git'
+
+Add Kerberos provider to omniauth builder:
+
+    use OmniAuth::Builder do
+      provider :krb5, "CUSTOM.REALM.COM"
+      # provider ...
+    end

data/Rakefile

@@ -0,0 +1,10 @@
+#!/usr/bin/env rake
+
+require 'bundler/gem_tasks'
+require 'rspec/core/rake_task'
+
+desc 'Default: run specs'
+task :default => :spec
+
+desc 'Run specs'
+RSpec::Core::RakeTask.new

data/lib/omniauth-krb5.rb

@@ -0,0 +1,2 @@
+require 'omniauth-krb5/version'
+require 'omniauth/strategies/krb5'

data/lib/omniauth-krb5/version.rb

@@ -0,0 +1,5 @@
+module OmniAuth
+  module Krb5
+    VERSION = "0.0.1"
+  end
+end

data/lib/omniauth/strategies/krb5.rb

@@ -0,0 +1,66 @@
+require 'omniauth'
+require 'rkerberos'
+
+module OmniAuth
+  module Strategies
+    class Krb5
+      include OmniAuth::Strategy
+
+      args [:realm]
+      option :title, "Kerberos Authentication"
+
+      def initialize( app, *args, &block )
+        super
+        @krb5 = Kerberos::Krb5.new
+        @krb5.set_default_realm(options.realm)             
+      end
+                 
+      def request_phase
+        OmniAuth::Form.build(:title => options.title, :url => callback_path) do
+          text_field 'Username', 'username'
+          password_field 'Password', 'password'
+        end.to_response
+      end
+
+      def callback_phase
+        begin
+          return fail!(:invalid_credentials) unless username && password
+          @krb5.get_init_creds_password(username_with_realm, password)          
+          super          
+        rescue Exception => e
+          return fail!(:invalid_credentials, e)
+        ensure
+          @krb5.close
+        end
+      end
+      
+      uid do
+        username_with_realm
+      end
+      
+      info do 
+        { :name  => username } 
+      end
+
+      def realm           
+        @krb5.get_default_realm
+      end
+      
+      protected
+        
+        def username_with_realm
+          user_with_realm = username.dup
+          user_with_realm += "@#{realm}" unless username.include?('@')          
+        end
+        
+        def username
+          request['username']
+        end
+
+        def password
+          request['password']
+        end
+
+    end
+  end
+end

data/omniauth-krb5.gemspec

@@ -0,0 +1,25 @@
+# encoding: utf-8
+require File.expand_path('../lib/omniauth-krb5/version', __FILE__)
+
+Gem::Specification.new do |gem|
+  gem.add_dependency 'omniauth', '~> 1.0'
+  gem.add_dependency 'rkerberos'
+
+  gem.add_development_dependency 'rspec', '~> 2.7'
+  gem.add_development_dependency 'rack-test'
+  gem.add_development_dependency 'simplecov'
+  gem.add_development_dependency 'webmock'
+  gem.add_development_dependency 'yard'
+
+  gem.authors = ['Dave Naffis']
+  gem.email = ['dave@intridea.com']
+  gem.description = %q{Kerberos strategy for OmniAuth.}
+  gem.summary = gem.description
+  gem.homepage = 'http://github.com/naffis/omniauth-krb5'
+
+  gem.name = 'omniauth-krb5'
+  gem.require_paths = ['lib']
+  gem.files = `git ls-files`.split("\n")
+  gem.test_files = `git ls-files -- {test,spec,features}/*`.split("\n")
+  gem.version = OmniAuth::Krb5::VERSION
+end

data/spec/omniauth/strategies/krb5_spec.rb

@@ -0,0 +1,51 @@
+require File.expand_path('../../../spec_helper', __FILE__)
+
+describe OmniAuth::Strategies::Krb5 do
+
+  def app
+    Rack::Builder.new {
+      use OmniAuth::Test::PhonySession
+      run lambda { |env| [404, {'Content-Type' => 'text/plain'}, [env.key?('omniauth.auth').to_s]] }
+    }.to_app
+  end  
+      
+  let(:fresh_strategy) { Class.new OmniAuth::Strategies::Krb5 }  
+  subject { fresh_strategy }
+   
+  it 'should be initialized with default realm' do
+    instance = subject.new(app)
+    instance.realm.should == Kerberos::Krb5.new.get_default_realm
+  end
+ 
+  it 'should be initialized with custom realm' do
+    instance = subject.new(app, "EXAMPLE.COM")
+    instance.options.realm.should == "EXAMPLE.COM"
+    instance.realm.should == "EXAMPLE.COM"
+  end
+  
+  it 'should set name in info hash' do
+    instance = subject.new(app)    
+    instance.stub!(:request).and_return({'username' => 'test1234', 'password' => '1234'})
+    instance.info[:name].should == 'test1234'    
+  end
+
+  it 'should add realm to uid' do
+    instance = subject.new(app)    
+    instance.stub!(:request).and_return({'username' => 'test1234', 'password' => '1234'})
+    realm = Kerberos::Krb5.new.get_default_realm
+    instance.uid.should == "test1234@#{realm}"
+  end
+       
+  describe 'GET /auth/krb5' do
+     before do
+       get '/auth/krb5'
+     end
+
+  end       
+
+  describe 'POST /auth/krb5/callback' do
+    
+  
+  end
+       
+end

data/spec/spec_helper.rb

@@ -0,0 +1,16 @@
+$:.unshift File.expand_path('..', __FILE__)
+$:.unshift File.expand_path('../../lib', __FILE__)
+
+require 'simplecov'
+SimpleCov.start
+require 'rspec'
+require 'rack/test'
+require 'webmock/rspec'
+require 'omniauth'
+require 'omniauth-krb5'
+
+RSpec.configure do |config|
+  config.include WebMock::API
+  config.include Rack::Test::Methods
+  config.extend  OmniAuth::Test::StrategyMacros, :type => :strategy
+end

metadata

@@ -0,0 +1,137 @@
+--- !ruby/object:Gem::Specification
+name: omniauth-krb5
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+  prerelease: 
+platform: ruby
+authors:
+- Dave Naffis
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2012-03-20 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: omniauth
+  requirement: &70129794953020 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: *70129794953020
+- !ruby/object:Gem::Dependency
+  name: rkerberos
+  requirement: &70129794952360 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: *70129794952360
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: &70129794951620 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '2.7'
+  type: :development
+  prerelease: false
+  version_requirements: *70129794951620
+- !ruby/object:Gem::Dependency
+  name: rack-test
+  requirement: &70129794951080 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: *70129794951080
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: &70129794935340 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: *70129794935340
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: &70129794928180 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: *70129794928180
+- !ruby/object:Gem::Dependency
+  name: yard
+  requirement: &70129794857160 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: *70129794857160
+description: Kerberos strategy for OmniAuth.
+email:
+- dave@intridea.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- Gemfile
+- Guardfile
+- LICENSE
+- README.rdoc
+- Rakefile
+- lib/omniauth-krb5.rb
+- lib/omniauth-krb5/version.rb
+- lib/omniauth/strategies/krb5.rb
+- omniauth-krb5.gemspec
+- spec/omniauth/strategies/krb5_spec.rb
+- spec/spec_helper.rb
+homepage: http://github.com/naffis/omniauth-krb5
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.15
+signing_key: 
+specification_version: 3
+summary: Kerberos strategy for OmniAuth.
+test_files:
+- spec/omniauth/strategies/krb5_spec.rb
+- spec/spec_helper.rb
+has_rdoc: