omniauth-mobileid 0.0.1

data/.gitignore

@@ -0,0 +1,4 @@
+*.gem
+.bundle
+Gemfile.lock
+pkg/*

data/Gemfile

@@ -0,0 +1,4 @@
+source "http://rubygems.org"
+
+# Specify your gem's dependencies in omniauth-mobileid.gemspec
+gemspec

data/Rakefile

@@ -0,0 +1 @@
+require "bundler/gem_tasks"

data/lib/omniauth-mobileid.rb

@@ -0,0 +1,2 @@
+require "omniauth-mobileid/version"
+require "omniauth/strategies/mobileid"

data/lib/omniauth-mobileid/version.rb

@@ -0,0 +1,5 @@
+module Omniauth
+  module Mobileid
+    VERSION = "0.0.1"
+  end
+end

data/lib/omniauth/strategies/mobileid.rb

@@ -0,0 +1,133 @@
+require 'digidoc/client'
+require 'ostruct'
+
+module OmniAuth
+  module Strategies
+    class Mobileid
+      include OmniAuth::Strategy
+
+      PhaseReadPin = 'read_pin'
+      PhaseAuhtenticated = 'authenticated'
+      
+      option :name, 'mobileid'
+      option :service_name, 'Testimine'
+      option :country_code, 'EE'
+      option :language, 'EST'
+      option :message_to_display, 'Test'
+      option :messaging_mode, 'asynchClientServer'
+      option :async_configuration, 0
+      option :endpoint_url, 'https://openxades.org:8443/DigiDocService'
+      option :logger, nil
+      
+      def request_phase
+        perform
+      end
+
+      def perform
+        if request_session_code # Session is in :read_pin status
+          get_authentication_status
+        else
+          perform_authentication
+        end
+      end
+      
+      def request_session_code
+        request.params['session_code']
+      end
+
+      def perform_authentication
+        debug 'perform_authentication'
+        @auth_data = authenticate(request.params['phone'], request.params['personal_code'])
+        debug @auth_data.inspect
+        
+        if user_data[:status] == 'OK'
+          @env['omniauth.auth'] = auth_hash
+          @env['omniauth.phase'] = PhaseReadPin
+          @env['REQUEST_METHOD'] = 'GET'
+          @env['PATH_INFO'] = "#{OmniAuth.config.path_prefix}/#{name}/callback"
+          call_app!
+        else
+          fail!(:invalid_credentials, @auth_data)
+        end
+      end
+
+      def get_authentication_status
+        debug 'get_authentication_status'
+        @auth_data = authentication_status(request_session_code)
+        debug @auth_data.inspect
+        if ['USER_AUTHENTICATED', 'OUTSTANDING_TRANSACTION'].include?(user_data[:status])
+          @env['omniauth.phase'] = user_data[:status] == 'USER_AUTHENTICATED' ? PhaseAuhtenticated : PhaseReadPin
+          @env['REQUEST_METHOD'] = 'GET'
+          @env['PATH_INFO'] = "#{OmniAuth.config.path_prefix}/#{name}/callback"
+          call_app!
+        else
+          fail!(:invalid_credentials, @auth_data)
+        end
+      end
+
+      def callback_phase
+        debug "callback_phase"
+        fail!(:invalid_credentials)
+      end
+      
+      def user_data
+        @auth_data
+      end
+      
+      def auth_hash
+        OmniAuth::Utils.deep_merge(super, {
+          'uid' => user_data[:user_id_code],
+          'user_info' => user_info,
+          'read_pin' => {
+             'challenge_id' => user_data[:challenge_id],
+             'session_code' => user_data[:sesscode]},
+          'extra' => {'user_hash' => user_data}
+        })
+      end
+
+      def user_info
+        {
+          'name' => "#{user_data[:user_givenname]} #{user_data[:user_surname]}",
+          'first_name' => user_data[:user_givenname],
+          'last_name' => user_data[:user_surname],
+          'personal_code' => user_data[:user_id_code],
+          'user_cn' => user_data[:user_cn]
+        }
+      end
+
+      # Authentication message
+      def authenticate(phone, personal_code)
+        data = {
+          :phone => phone,
+          :personal_code => personal_code,
+          :language => options[:language],
+          :country_code => options[:country_code],
+          :message_to_display => options[:message_to_display],
+          :messaging_mode => options[:messaging_mode],
+          :async_configuration => options[:async_configuration],
+          :return_cert_data => false,
+          :return_revocation_data => false
+        }
+        
+        self.mobileid_client.authenticate(data)
+      end
+
+      # Authentication status message
+      def authentication_status(session_code)
+        self.mobileid_client.authentication_status(session_code)
+      end
+
+      protected
+      
+      def debug(message)
+        options[:logger].debug("#{Time.now} #{message}") if options[:logger]
+      end      
+      
+      def mobileid_client
+        client = ::Digidoc::Client.new(options[:endpoint_url])
+        client.respond_with_nested_struct = false
+        client
+      end
+    end
+  end
+end

data/omniauth-mobileid.gemspec

@@ -0,0 +1,23 @@
+# -*- encoding: utf-8 -*-
+$:.push File.expand_path("../lib", __FILE__)
+require "omniauth-mobileid/version"
+
+Gem::Specification.new do |s|
+  s.name        = "omniauth-mobileid"
+  s.version     = Omniauth::Mobileid::VERSION
+  s.authors     = ["Tarmo Talu"]
+  s.email       = ["tarmo.talu@gmail.com"]
+  s.homepage    = "http://github.com/tarmotalu/omniauth-mobileid"
+  s.summary     = %q{OmniAuth strategy for Estonian Mobile-ID}
+  s.description = %q{OmniAuth strategy for Estonian Mobile-ID}
+
+  s.rubyforge_project = "omniauth-mobileid"
+
+  s.files         = `git ls-files`.split("\n")
+  s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")
+  s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
+  s.require_paths = ["lib"]
+
+  s.add_dependency 'omniauth-oauth', '~> 1.0'
+  s.add_dependency 'digidoc_client', '~> 0.0.1'
+end

metadata

@@ -0,0 +1,74 @@
+--- !ruby/object:Gem::Specification
+name: omniauth-mobileid
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+  prerelease: 
+platform: ruby
+authors:
+- Tarmo Talu
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2012-02-15 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: omniauth-oauth
+  requirement: &70292803097340 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: *70292803097340
+- !ruby/object:Gem::Dependency
+  name: digidoc_client
+  requirement: &70292803109240 !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 0.0.1
+  type: :runtime
+  prerelease: false
+  version_requirements: *70292803109240
+description: OmniAuth strategy for Estonian Mobile-ID
+email:
+- tarmo.talu@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- Gemfile
+- Rakefile
+- lib/omniauth-mobileid.rb
+- lib/omniauth-mobileid/version.rb
+- lib/omniauth/strategies/mobileid.rb
+- omniauth-mobileid.gemspec
+homepage: http://github.com/tarmotalu/omniauth-mobileid
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: omniauth-mobileid
+rubygems_version: 1.8.11
+signing_key: 
+specification_version: 3
+summary: OmniAuth strategy for Estonian Mobile-ID
+test_files: []