omniauth-scalus-oauth2 1.0.0 → 1.0.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 27b7808c4cf45ad0b7b7c83236a35260905b6e84
-  data.tar.gz: b42ffd12f573939198e782785e8f44d329fda7a6
+  metadata.gz: 5a038498007dcbc8171616d47cf494e0e3c0142f
+  data.tar.gz: e38a4e540c91f3c2f53b36d1e71dba5eea9795de
 SHA512:
-  metadata.gz: b50cd40f95d04eb2ed3ae24d8ee08fca743978764ffd2096ae17dbbaf56779e3167c14eda064450050a1d913cfb2797792e9d567e47e0a2b626055ad39976f31
-  data.tar.gz: 33cc5a0f50bb686d506c18812b793a2b6b2cae48b389f13af4dfcecc3c274dfc8d3b55549abb81f04be2a44b35178310698e955217e1b0d0ce4decdd57dfaf48
+  metadata.gz: 5a8aa80ff17bd0706b4e11fa241b5a839ebbd3551b995bdd7aa20fa11f466235e11811b40562f3056e8edd0c002b5ad4609640744953ae810bfe24f0329b4a60
+  data.tar.gz: 5a7cdc43446f91e7649c2d83aff2f5a8fc4ed539c202845227c9c7d12a580dfef78b73795b768f893234b96babf29382f75f7eb4be19c960756fddbd8a9b9ff3

data/README.md

@@ -45,7 +45,7 @@ Here's an example *Authentication Hash* available in `request.env['omniauth.auth
 ```ruby
 {
   :provider => 'scalus',
-  :uid => 'example.myscalus.com',
+  :uid => 'example.scalus.com',
   :credentials => {
     :token => 'afasd923kjh0934kf', # OAuth 2.0 access_token, which you store and use to authenticate API requests
   }

data/example/config.ru

@@ -19,8 +19,8 @@ class App < Sinatra::Base
     </head>
     <body>
       <form action="/auth/scalus" method="get">
-      <label for="shop">Enter your store's URL:</label>
-      <input type="text" name="shop" placeholder="your-shop-url.myscalus.com">
+      <label for="organization">Enter your Scalus Subdomain:</label>
+      <input type="text" name="organization" placeholder="your-scalus-url.scalus.com">
       <button type="submit">Log In</button>
       </form>
     </body>
@@ -36,7 +36,7 @@ class App < Sinatra::Base
     </head>
     <body>
       <h3>Authorized</h3>
-      <p>Shop: #{request.env['omniauth.auth'].uid}</p>
+      <p>Organization: #{request.env['omniauth.auth'].uid}</p>
       <p>Token: #{request.env['omniauth.auth']['credentials']['token']}</p>
     </body>
     </html>

data/lib/omniauth/scalus/version.rb

@@ -1,5 +1,5 @@
 module OmniAuth
   module Scalus
-    VERSION = "1.0.0"
+    VERSION = "1.0.1"
   end
 end

data/lib/omniauth/strategies/scalus.rb

@@ -15,17 +15,17 @@ module OmniAuth
       }
 
       option :callback_url
-      option :myscalus_domain, 'myscalus.com'
+      option :scalus_domain, 'scalus.com'
 
       option :setup, proc { |env|
         request = Rack::Request.new(env)
-        env['omniauth.strategy'].options[:client_options][:site] = "https://#{request.GET['shop']}"
+        env['omniauth.strategy'].options[:client_options][:site] = "https://#{request.GET['organization']}"
       }
 
       uid { URI.parse(options[:client_options][:site]).host }
 
       def valid_site?
-        !!(/\A(https|http)\:\/\/[a-zA-Z0-9][a-zA-Z0-9\-]*\.#{Regexp.quote(options[:myscalus_domain])}[\/]?\z/ =~ options[:client_options][:site])
+        !!(/\A(https|http)\:\/\/[a-zA-Z0-9][a-zA-Z0-9\-]*\.#{Regexp.quote(options[:scalus_domain])}[\/]?\z/ =~ options[:client_options][:site])
       end
 
       def valid_signature?

data/spec/omniauth/strategies/scalus_spec.rb

@@ -11,7 +11,7 @@ describe OmniAuth::Strategies::Scalus do
 
     @client_id = '123'
     @client_secret = '53cr3tz'
-    @options = {:client_options => {:site => 'https://example.myscalus.com'}}
+    @options = {:client_options => {:site => 'https://example.scalus.com'}}
   end
 
   subject do
@@ -38,7 +38,7 @@ describe OmniAuth::Strategies::Scalus do
 
   describe '#client' do
     it 'has correct scalus site' do
-      subject.client.site.should eq('https://example.myscalus.com')
+      subject.client.site.should eq('https://example.scalus.com')
     end
 
     it 'has correct authorize url' do
@@ -80,8 +80,8 @@ describe OmniAuth::Strategies::Scalus do
   end
 
   describe '#uid' do
-    it 'returns the shop' do
-      subject.uid.should eq('example.myscalus.com')
+    it 'returns the organization' do
+      subject.uid.should eq('example.scalus.com')
     end
   end
 
@@ -115,23 +115,23 @@ describe OmniAuth::Strategies::Scalus do
   end
 
   describe '#valid_site?' do
-    it 'returns true if the site contains .myscalus.com' do
-      @options = {:client_options => {:site => 'http://foo.myscalus.com/'}}
+    it 'returns true if the site contains .scalus.com' do
+      @options = {:client_options => {:site => 'http://foo.scalus.com/'}}
       subject.valid_site?.should eq(true)
     end
 
-    it 'returns false if the site does not contain .myscalus.com' do
+    it 'returns false if the site does not contain .scalus.com' do
       @options = {:client_options => {:site => 'http://foo.example.com/'}}
       subject.valid_site?.should eq(false)
     end
 
-    it 'uses configurable option for myscalus_domain' do
-      @options = {:client_options => {:site => 'http://foo.example.com/'}, :myscalus_domain => 'example.com'}
+    it 'uses configurable option for scalus_domain' do
+      @options = {:client_options => {:site => 'http://foo.example.com/'}, :scalus_domain => 'example.com'}
       subject.valid_site?.should eq(true)
     end
 
-    it 'allows custom port for myscalus_domain' do
-      @options = {:client_options => {:site => 'http://foo.example.com:3456/'}, :myscalus_domain => 'example.com:3456'}
+    it 'allows custom port for scalus_domain' do
+      @options = {:client_options => {:site => 'http://foo.example.com:3456/'}, :scalus_domain => 'example.com:3456'}
       subject.valid_site?.should eq(true)
     end
   end

data/test/integration_test.rb

@@ -11,9 +11,9 @@ class IntegrationTest < Minitest::Test
   end
 
   def test_authorize
-    response = authorize('snowdevil.myscalus.com')
+    response = authorize('snowdevil.scalus.com')
     assert_equal 302, response.status
-    assert_match /\A#{Regexp.quote("https://snowdevil.myscalus.com/admin/oauth/authorize?")}/, response.location
+    assert_match /\A#{Regexp.quote("https://snowdevil.scalus.com/admin/oauth/authorize?")}/, response.location
     redirect_params = Rack::Utils.parse_query(URI(response.location).query)
     assert_equal "123", redirect_params['client_id']
     assert_equal "https://app.example.com/auth/scalus/callback", redirect_params['redirect_uri']
@@ -23,27 +23,27 @@ class IntegrationTest < Minitest::Test
   def test_authorize_overrides_site_with_https_scheme
     build_app setup: lambda { |env|
       params = Rack::Utils.parse_query(env['QUERY_STRING'])
-      env['omniauth.strategy'].options[:client_options][:site] = "http://#{params['shop']}"
+      env['omniauth.strategy'].options[:client_options][:site] = "http://#{params['organization']}"
     }
 
-    response = authorize('snowdevil.myscalus.com')
-    assert_match /\A#{Regexp.quote("https://snowdevil.myscalus.com/admin/oauth/authorize?")}/, response.location
+    response = authorize('snowdevil.scalus.com')
+    assert_match /\A#{Regexp.quote("https://snowdevil.scalus.com/admin/oauth/authorize?")}/, response.location
   end
 
   def test_site_validation
     code = SecureRandom.hex(16)
 
     [
-      'foo.example.com',                # shop doesn't end with .myscalus.com
-      'http://snowdevil.myscalus.com', # shop contains protocol
-      'snowdevil.myscalus.com/path',   # shop contains path
-      'user@snowdevil.myscalus.com',   # shop contains user
-      'snowdevil.myscalus.com:22',     # shop contains port
-    ].each do |shop, valid|
-      response = authorize(shop)
+      'foo.example.com',                # organization doesn't end with .scalus.com
+      'http://snowdevil.scalus.com', # organization contains protocol
+      'snowdevil.scalus.com/path',   # organization contains path
+      'user@snowdevil.scalus.com',   # organization contains user
+      'snowdevil.scalus.com:22',     # organization contains port
+    ].each do |organization, valid|
+      response = authorize(organization)
       assert_auth_failure(response, 'invalid_site')
 
-      response = callback(sign_params(shop: shop, code: code))
+      response = callback(sign_params(organization: organization, code: code))
       assert_auth_failure(response, 'invalid_site')
     end
   end
@@ -53,7 +53,7 @@ class IntegrationTest < Minitest::Test
     code = SecureRandom.hex(16)
     expect_access_token_request(access_token)
 
-    response = callback(sign_params(shop: 'snowdevil.myscalus.com', code: code, state: opts["rack.session"]["omniauth.state"]))
+    response = callback(sign_params(organization: 'snowdevil.scalus.com', code: code, state: opts["rack.session"]["omniauth.state"]))
 
     assert_callback_success(response, access_token, code)
   end
@@ -63,7 +63,7 @@ class IntegrationTest < Minitest::Test
     code = SecureRandom.hex(16)
     expect_access_token_request(access_token)
 
-    response = callback(sign_params(shop: 'snowdevil.myscalus.com', code: code, state: opts["rack.session"]["omniauth.state"]).merge(signature: 'ignored'))
+    response = callback(sign_params(organization: 'snowdevil.scalus.com', code: code, state: opts["rack.session"]["omniauth.state"]).merge(signature: 'ignored'))
 
     assert_callback_success(response, access_token, code)
   end
@@ -71,13 +71,13 @@ class IntegrationTest < Minitest::Test
   def test_callback_custom_params
     access_token = SecureRandom.hex(16)
     code = SecureRandom.hex(16)
-    FakeWeb.register_uri(:post, "https://snowdevil.myscalus.com/admin/oauth/access_token",
+    FakeWeb.register_uri(:post, "https://snowdevil.scalus.com/admin/oauth/access_token",
                          body: JSON.dump(access_token: access_token),
                          content_type: 'application/json')
 
     now = Time.now.to_i
-    params = { shop: 'snowdevil.myscalus.com', code: code, timestamp: now, next: '/products?page=2&q=red%20shirt', state: opts["rack.session"]["omniauth.state"] }
-    encoded_params = "code=#{code}&next=/products?page=2%26q=red%2520shirt&shop=snowdevil.myscalus.com&state=#{opts["rack.session"]["omniauth.state"]}&timestamp=#{now}"
+    params = { organization: 'snowdevil.scalus.com', code: code, timestamp: now, next: '/products?page=2&q=red%20shirt', state: opts["rack.session"]["omniauth.state"] }
+    encoded_params = "code=#{code}&next=/products?page=2%26q=red%2520shirt&organization=snowdevil.scalus.com&state=#{opts["rack.session"]["omniauth.state"]}&timestamp=#{now}"
     params[:hmac] = OpenSSL::HMAC.hexdigest(OpenSSL::Digest::SHA256.new, @secret, encoded_params)
 
     response = callback(params)
@@ -87,14 +87,14 @@ class IntegrationTest < Minitest::Test
 
   def test_callback_rejects_invalid_hmac
     @secret = 'wrong_secret'
-    response = callback(sign_params(shop: 'snowdevil.myscalus.com', code: SecureRandom.hex(16)))
+    response = callback(sign_params(organization: 'snowdevil.scalus.com', code: SecureRandom.hex(16)))
 
     assert_auth_failure(response, 'invalid_signature')
   end
 
   def test_callback_rejects_old_timestamps
     expired_timestamp = Time.now.to_i - OmniAuth::Strategies::Scalus::CODE_EXPIRES_AFTER - 1
-    response = callback(sign_params(shop: 'snowdevil.myscalus.com', code: SecureRandom.hex(16), timestamp: expired_timestamp))
+    response = callback(sign_params(organization: 'snowdevil.scalus.com', code: SecureRandom.hex(16), timestamp: expired_timestamp))
 
     assert_auth_failure(response, 'invalid_signature')
   end
@@ -102,14 +102,14 @@ class IntegrationTest < Minitest::Test
   def test_callback_rejects_missing_hmac
     code = SecureRandom.hex(16)
 
-    response = callback(shop: 'snowdevil.myscalus.com', code: code, timestamp: Time.now.to_i)
+    response = callback(organization: 'snowdevil.scalus.com', code: code, timestamp: Time.now.to_i)
 
     assert_auth_failure(response, 'invalid_signature')
   end
 
   def test_callback_rejects_body_params
     code = SecureRandom.hex(16)
-    params = sign_params(shop: 'snowdevil.myscalus.com', code: code)
+    params = sign_params(organization: 'snowdevil.scalus.com', code: code)
     body = Rack::Utils.build_nested_query(unsigned: 'value')
 
     response = request.get("https://app.example.com/auth/scalus/callback?#{Rack::Utils.build_query(params)}",
@@ -122,16 +122,16 @@ class IntegrationTest < Minitest::Test
   def test_provider_options
     build_app scope: 'read_products,read_orders,write_content',
               callback_path: '/admin/auth/legacy/callback',
-              myscalus_domain: 'myscalus.dev:3000',
+              scalus_domain: 'scalus.dev:3000',
               setup: lambda { |env|
-                shop = Rack::Request.new(env).GET['shop']
-                shop += ".myscalus.dev:3000" unless shop.include?(".")
-                env['omniauth.strategy'].options[:client_options][:site] = "https://#{shop}"
+                organization = Rack::Request.new(env).GET['organization']
+                organization += ".scalus.dev:3000" unless organization.include?(".")
+                env['omniauth.strategy'].options[:client_options][:site] = "https://#{organization}"
               }
 
     response = authorize('snowdevil')
     assert_equal 302, response.status
-    assert_match /\A#{Regexp.quote("https://snowdevil.myscalus.dev:3000/admin/oauth/authorize?")}/, response.location
+    assert_match /\A#{Regexp.quote("https://snowdevil.scalus.dev:3000/admin/oauth/authorize?")}/, response.location
     redirect_params = Rack::Utils.parse_query(URI(response.location).query)
     assert_equal 'read_products,read_orders,write_content', redirect_params['scope']
     assert_equal 'https://app.example.com/admin/auth/legacy/callback', redirect_params['redirect_uri']
@@ -139,11 +139,11 @@ class IntegrationTest < Minitest::Test
   def test_callback_with_invalid_state_fails
     access_token = SecureRandom.hex(16)
     code = SecureRandom.hex(16)
-    FakeWeb.register_uri(:post, "https://snowdevil.myscalus.com/admin/oauth/access_token",
+    FakeWeb.register_uri(:post, "https://snowdevil.scalus.com/admin/oauth/access_token",
                          body: JSON.dump(access_token: access_token),
                          content_type: 'application/json')
 
-    response = callback(sign_params(shop: 'snowdevil.myscalus.com', code: code, state: 'invalid'))
+    response = callback(sign_params(organization: 'snowdevil.scalus.com', code: code, state: 'invalid'))
 
     assert_equal 302, response.status
     assert_equal '/auth/failure?message=csrf_detected&strategy=scalus', response.location
@@ -161,7 +161,7 @@ class IntegrationTest < Minitest::Test
   end
 
   def expect_access_token_request(access_token)
-    FakeWeb.register_uri(:post, "https://snowdevil.myscalus.com/admin/oauth/access_token",
+    FakeWeb.register_uri(:post, "https://snowdevil.scalus.com/admin/oauth/access_token",
                          body: JSON.dump(access_token: access_token),
                          content_type: 'application/json')
   end
@@ -172,7 +172,7 @@ class IntegrationTest < Minitest::Test
     assert_equal token_request_params['client_secret'], @secret
     assert_equal token_request_params['code'], code
 
-    assert_equal 'snowdevil.myscalus.com', @omniauth_result.uid
+    assert_equal 'snowdevil.scalus.com', @omniauth_result.uid
     assert_equal access_token, @omniauth_result.credentials.token
     assert_equal false, @omniauth_result.credentials.expires
 
@@ -200,8 +200,8 @@ class IntegrationTest < Minitest::Test
     @app = Rack::Session::Cookie.new(app, secret: SecureRandom.hex(64))
   end
 
-  def authorize(shop)
-    request.get("https://app.example.com/auth/scalus?shop=#{CGI.escape(shop)}", opts)
+  def authorize(organization)
+    request.get("https://app.example.com/auth/scalus?organization=#{CGI.escape(organization)}", opts)
   end
 
   def callback(params)

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: omniauth-scalus-oauth2
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.0.1
 platform: ruby
 authors:
 - David Henner