omniauth_crowd 2.1.1 → 2.1.2

data/.gitignore

@@ -1,4 +1,5 @@
-.rvmrc
+.ruby-version
+.ruby-gemset
 # rcov generated
 coverage
 

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    omniauth_crowd (2.1.1)
+    omniauth_crowd (2.1.2)
       nokogiri (>= 1.4.4)
       omniauth (~> 1.0)
 
@@ -13,7 +13,7 @@ GEM
     diff-lcs (1.1.3)
     hashie (1.2.0)
     nokogiri (1.5.2)
-    omniauth (1.0.3)
+    omniauth (1.1.1)
       hashie (~> 1.2)
       rack
     rack (1.4.1)

data/lib/omniauth/strategies/crowd.rb

@@ -32,7 +32,7 @@ module OmniAuth
     
       def callback_phase 
         creds = session.delete 'omniauth.crowd'
-        return fail!(:no_credentials, 'No Credentials') unless creds
+        return fail!(:no_credentials) unless creds
         validator = CrowdValidator.new(@configuration, creds['username'], creds['password'])
         @user_info = validator.user_info
         

data/lib/omniauth/strategies/crowd/configuration.rb

@@ -4,12 +4,14 @@ module OmniAuth
   module Strategies
     class Crowd
       class Configuration
+        DEFAULT_SESSION_URL = "%s/rest/usermanagement/latest/session"
         DEFAULT_AUTHENTICATION_URL = "%s/rest/usermanagement/latest/authentication"
         DEFAULT_USER_GROUP_URL = "%s/rest/usermanagement/latest/user/group/direct"
-        attr_reader :crowd_application_name, :crowd_password, :disable_ssl_verification, :include_users_groups
+        attr_reader :crowd_application_name, :crowd_password, :disable_ssl_verification, :include_users_groups, :use_sessions, :session_url
 
         alias :"disable_ssl_verification?" :disable_ssl_verification
         alias :"include_users_groups?" :include_users_groups
+        alias :"use_sessions?" :use_sessions
         
         # @param [Hash] params configuration options
         # @option params [String, nil] :crowd_server_url the Crowd server root URL; probably something like
@@ -50,10 +52,16 @@ module OmniAuth
           end
           @crowd_application_name = options[:application_name]
           @crowd_password         = options[:application_password]
+          @use_sessions           = options[:use_sessions]
 
           unless options.include?(:crowd_server_url) || options.include?(:crowd_authentication_url)
             raise ArgumentError.new("Either :crowd_server_url or :crowd_authentication_url MUST be provided")
           end
+
+          if @use_sessions
+            @session_url            = options[:crowd_session_url] || DEFAULT_SESSION_URL % options[:crowd_server_url]
+            validate_is_url 'session URL', @session_url
+          end
           @authentication_url     = options[:crowd_authentication_url] || DEFAULT_AUTHENTICATION_URL % options[:crowd_server_url]
           validate_is_url 'authentication URL', @authentication_url
           @disable_ssl_verification = options[:disable_ssl_verification]

data/lib/omniauth/strategies/crowd/crowd_validator.rb

@@ -1,15 +1,21 @@
 require 'nokogiri'
 require 'net/http'
 require 'net/https'
+require 'rexml/text'
 
 module OmniAuth
   module Strategies
     class Crowd
       class CrowdValidator
+        SESSION_REQUEST_BODY = "<authentication-context>
+            <username>%s</username>
+            <password>%s</password>
+            </authentication-context>"
         AUTHENTICATION_REQUEST_BODY = "<password><value>%s</value></password>"
         def initialize(configuration, username, password)
           @configuration, @username, @password = configuration, username, password
           @authentiction_uri = URI.parse(@configuration.authentication_url(@username))
+          @session_uri       = URI.parse(@configuration.session_url) if @configuration.use_sessions
           @user_group_uri    = @configuration.include_users_groups? ? URI.parse(@configuration.user_group_url(@username)) : nil
         end
 
@@ -20,10 +26,27 @@ module OmniAuth
           else
             user_info_hash
           end
+
+          if user_info_hash && @configuration.use_sessions?
+            user_info_hash = add_session!(user_info_hash)
+          end
+
           user_info_hash
         end
 
         private
+        def add_session!(user_info_hash)
+          response = make_session_request
+          if response.kind_of?(Net::HTTPSuccess) && response.body
+            doc = Nokogiri::XML(response.body)
+            user_info_hash["sso_token"] = doc.xpath('//token/text()').to_s
+          else
+            OmniAuth.logger.send(:warn, "(crowd) [add_session!] response code: #{response.code.to_s}")
+            OmniAuth.logger.send(:warn, "(crowd) [add_session!] response body: #{response.body}")
+          end
+          user_info_hash
+        end
+
         def add_user_groups!(user_info_hash)
           response = make_user_group_request
           unless response.code.to_i != 200 || response.body.nil? || response.body == '' 
@@ -45,32 +68,51 @@ module OmniAuth
               "email" => doc.xpath("//user/email/text()").to_s
             }
           else
+            OmniAuth.logger.send(:warn, "(crowd) [retrieve_user_info!] response code: #{response.code.to_s}")
+            OmniAuth.logger.send(:warn, "(crowd) [retrieve_user_info!] response body: #{response.body}")
             nil
           end
         end
-        
-        def make_user_group_request
-          http = Net::HTTP.new(@user_group_uri.host, @user_group_uri.port)
-          http.use_ssl = @user_group_uri.port == 443 || @user_group_uri.instance_of?(URI::HTTPS)
+
+        def make_request(uri, body=nil)
+          http_method = body.nil? ? Net::HTTP::Get : Net::HTTP::Post
+          http = Net::HTTP.new(uri.host, uri.port)
+          http.use_ssl = uri.port == 443 || uri.instance_of?(URI::HTTPS)
           http.verify_mode = OpenSSL::SSL::VERIFY_NONE if http.use_ssl? && @configuration.disable_ssl_verification?
           http.start do |c|
-            req = Net::HTTP::Get.new("#{@user_group_uri.path}?#{@user_group_uri.query}")
+            req = http_method.new(uri.query.nil? ? uri.path : "#{uri.path}?#{uri.query}")
+            req.body = body if body
             req.basic_auth @configuration.crowd_application_name, @configuration.crowd_password
+            req.add_field 'Content-Type', 'text/xml'
             http.request(req)
           end
         end
         
+        def make_user_group_request
+          make_request(@user_group_uri)
+        end
+
         def make_authorization_request 
-          http = Net::HTTP.new(@authentiction_uri.host, @authentiction_uri.port)
-          http.use_ssl = @authentiction_uri.port == 443 || @authentiction_uri.instance_of?(URI::HTTPS)
-          http.verify_mode = OpenSSL::SSL::VERIFY_NONE if http.use_ssl? && @configuration.disable_ssl_verification?
-          http.start do |c|
-            req = Net::HTTP::Post.new("#{@authentiction_uri.path}?#{@authentiction_uri.query}")
-            req.body = AUTHENTICATION_REQUEST_BODY % @password
-            req.basic_auth @configuration.crowd_application_name, @configuration.crowd_password
-            req.add_field 'Content-Type', 'text/xml'
-            http.request(req)
-          end
+          make_request(@authentiction_uri, make_authentication_request_body(@password))
+        end
+
+        def make_session_request
+          make_request(@session_uri, make_session_request_body(@username, @password))
+        end
+
+        # create the body using Nokogiri so proper encoding of passwords can be ensured
+        def make_authentication_request_body(password)
+          request_body = Nokogiri::XML(AUTHENTICATION_REQUEST_BODY)
+          password_value = request_body.at_css "value"
+          password_value.content = REXML::Text.normalize(password)
+          return request_body.root.to_s # return the body without the xml header
+        end
+
+        def make_session_request_body(username,password)
+          request_body = Nokogiri::XML(SESSION_REQUEST_BODY)
+          request_body.at_css("username").content = REXML::Text.normalize(username)
+          request_body.at_css("password").content = REXML::Text.normalize(password)
+          return request_body.root.to_s
         end
       end
     end

data/lib/omniauth_crowd/version.rb

@@ -1,5 +1,5 @@
 module OmniAuth
   module Crowd
-    VERSION = "2.1.1"
+    VERSION = "2.1.2"
   end
 end

data/spec/fixtures/session.xml

@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<session expand="user">
+  <token>rtk8eMvqq00EiGn5iJCMZQ00</token>
+  <user name="foo">
+    <link rel="self" href="http://crowd.example.org/crowd/rest/usermanagement/latest/user?username=foo"/>
+  </user>
+  <link rel="self" href="http://crowd.example.org/crowd/rest/usermanagement/latest/session/rtk8eMvqq00EiGn5iJCMZQ00"/>
+</session>

data/spec/omniauth/strategies/crowd_spec.rb

@@ -1,77 +1,147 @@
 require File.dirname(__FILE__) + '/../../spec_helper'
+require 'nokogiri'
 
 describe OmniAuth::Strategies::Crowd, :type=>:strategy do
   include OmniAuth::Test::StrategyTestCase
+  @use_sessions = false
   def strategy
     @crowd_server_url ||= 'https://crowd.example.org'
     @application_name ||= 'bogus_app'
     @application_password ||= 'bogus_app_password'
-    [OmniAuth::Strategies::Crowd, {:crowd_server_url => @crowd_server_url, :application_name=>@application_name, :application_password=>@application_password}]
+    [OmniAuth::Strategies::Crowd, {:crowd_server_url => @crowd_server_url, 
+                                    :application_name => @application_name,
+                                    :application_password => @application_password,
+                                    :use_sessions => @use_sessions}]
   end
 
-    describe 'GET /auth/crowd' do
+  describe 'GET /auth/crowd' do
+    before do
+      get '/auth/crowd'
+    end
+
+    it 'should show the login form' do
+      last_response.should be_ok
+    end
+  end
+
+  describe 'POST /auth/crowd' do
+    before do
+      post '/auth/crowd', :username=>'foo', :password=>'bar'
+    end
+
+    it 'should redirect to callback' do
+      last_response.should be_redirect
+      last_response.headers['Location'].should == 'http://example.org/auth/crowd/callback'
+    end
+  end
+
+  describe 'GET /auth/crowd/callback without any credentials' do
+    before do
+      get '/auth/crowd/callback'
+    end
+    it 'should fail' do
+      last_response.should be_redirect
+      last_response.headers['Location'].should =~ /no_credentials/
+    end
+  end
+
+  describe 'GET /auth/crowd/callback with credentials can be successful' do
+    context "when using authentication endpoint" do
       before do
-        get '/auth/crowd'
+        stub_request(:post, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/authentication?username=foo").
+        to_return(:body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'success.xml')))
+        stub_request(:get, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/user/group/direct?username=foo").
+        to_return(:body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'groups.xml')))
+        get '/auth/crowd/callback', nil, 'rack.session'=>{'omniauth.crowd'=> {"username"=>"foo", "password"=>"ba"}}
       end
-
-      it 'should show the login form' do
-        last_response.should be_ok
+      it 'should call through to the master app' do
+        last_response.body.should == 'true'
+      end
+      it 'should have an auth hash' do
+        auth = last_request.env['omniauth.auth']
+        auth.should be_kind_of(Hash)
+      end
+      it 'should have good data' do
+        auth = last_request.env['omniauth.auth']['provider'].should == :crowd
+        auth = last_request.env['omniauth.auth']['uid'].should == 'foo'
+        auth = last_request.env['omniauth.auth']['user_info'].should be_kind_of(Hash)
+        auth = last_request.env['omniauth.auth']['user_info']['groups'].sort.should == ["Developers", "jira-users"].sort
       end
     end
 
-    describe 'POST /auth/crowd' do
+    context "when using authentication endpoint with special characters" do
       before do
-        post '/auth/crowd', :username=>'foo', :password=>'bar'
+        stub_request(:post, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/authentication?username=foo")
+        get '/auth/crowd/callback', nil, 'rack.session'=>{'omniauth.crowd'=> {"username"=>"foo", "password"=>"bar&<xml>"}}
       end
 
-      it 'should redirect to callback' do
-        last_response.should be_redirect
-        last_response.headers['Location'].should == 'http://example.org/auth/crowd/callback'
+      it 'should escape special characters' do
+        WebMock.should have_requested(:post, 'https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/authentication?username=foo').
+          with { |req| Nokogiri::XML(req.body).at_css("value").content == 'bar&amp;&lt;xml&gt;' }
       end
     end
 
-    describe 'GET /auth/crowd/callback without any credentials' do
+    context "when using session endpoint" do
       before do
-        get '/auth/crowd/callback'
-      end
-      it 'should fail' do
-        last_response.should be_redirect
-        last_response.headers['Location'].should =~ /no_credentials/
+        @use_sessions = true
+        stub_request(:post, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/authentication?username=foo").
+        to_return(:body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'success.xml')))
+        stub_request(:post, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/session").
+        to_return(:status => 201, :body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'session.xml')))
+        stub_request(:get, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/user/group/direct?username=foo").
+        to_return(:body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'groups.xml')))
+        get '/auth/crowd/callback', nil, 'rack.session'=>{'omniauth.crowd'=> {"username"=>"foo", "password"=>"ba"}}
       end
-    end
 
-      describe 'GET /auth/crowd/callback with credentials can be successful' do
-        before do
-          stub_request(:post, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/authentication?username=foo").
-            to_return(:body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'success.xml')))
-          stub_request(:get, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/user/group/direct?username=foo").
-            to_return(:body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'groups.xml')))
-          get '/auth/crowd/callback', nil, 'rack.session'=>{'omniauth.crowd'=> {"username"=>"foo", "password"=>"ba"}}
-        end
-        it 'should call through to the master app' do
-          last_response.body.should == 'true'
-        end
-          it 'should have an auth hash' do
-            auth = last_request.env['omniauth.auth']
-            auth.should be_kind_of(Hash)
-          end
-          it 'should have good data' do
-            auth = last_request.env['omniauth.auth']['provider'].should == :crowd
-            auth = last_request.env['omniauth.auth']['uid'].should == 'foo'
-            auth = last_request.env['omniauth.auth']['user_info'].should be_kind_of(Hash)
-            auth = last_request.env['omniauth.auth']['user_info']['groups'].sort.should == ["Developers", "jira-users"].sort
-          end
+      after do
+        @use_sessions = false
       end
 
-      describe 'GET /auth/crowd/callback with credentials will fail' do
-        before do
-          stub_request(:post, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/authentication?username=foo").
-            to_return(:code=>400)
-          get '/auth/crowd/callback', nil, 'rack.session'=>{'omniauth.crowd'=> {"username"=>"foo", "password"=>"ba"}}
-        end
-        it 'should fail' do
-          last_response.should be_redirect
-          last_response.headers['Location'].should =~ /invalid_credentials/
-        end
+      it 'should call through to the master app' do
+        last_response.body.should == 'true'
+      end
+      
+      it 'should have an auth hash' do
+        auth = last_request.env['omniauth.auth']
+        auth.should be_kind_of(Hash)
       end
+      
+      it 'should have good data' do
+        auth = last_request.env['omniauth.auth']['provider'].should == :crowd
+        auth = last_request.env['omniauth.auth']['uid'].should == 'foo'
+        auth = last_request.env['omniauth.auth']['user_info'].should be_kind_of(Hash)
+        auth = last_request.env['omniauth.auth']['user_info']['sso_token'].should == 'rtk8eMvqq00EiGn5iJCMZQ00'
+        auth = last_request.env['omniauth.auth']['user_info']['groups'].sort.should == ["Developers", "jira-users"].sort
+      end
+    end
+  end
+
+  context "when using session endpoint with special characters" do
+    before do
+      @use_sessions = true
+      stub_request(:post, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/authentication?username=foo%26%3Cxml%3E").
+      to_return(:body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'success.xml')))
+      stub_request(:post, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/session").
+      to_return(:status => 201, :body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'session.xml')))
+      stub_request(:get, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/user/group/direct?username=foo%26%3Cxml%3E").
+      to_return(:body => File.read(File.join(File.dirname(__FILE__), '..', '..', 'fixtures', 'groups.xml')))
+      get '/auth/crowd/callback', nil, 'rack.session'=>{'omniauth.crowd'=> {"username"=>"foo&<xml>", "password"=>"bar&<xml>"}}
+    end
+    it 'should escape special characters' do
+      WebMock.should have_requested(:post, 'https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/session').
+        with { |req| Nokogiri::XML(req.body).at_css("username").content == 'foo&amp;&lt;xml&gt;' and Nokogiri::XML(req.body).at_css("password").content == 'bar&amp;&lt;xml&gt;' }
+    end
+  end
+
+  describe 'GET /auth/crowd/callback with credentials will fail' do
+    before do
+      stub_request(:post, "https://bogus_app:bogus_app_password@crowd.example.org/rest/usermanagement/latest/authentication?username=foo").
+      to_return(:code=>400)
+      get '/auth/crowd/callback', nil, 'rack.session'=>{'omniauth.crowd'=> {"username"=>"foo", "password"=>"ba"}}
+    end
+    it 'should fail' do
+      last_response.should be_redirect
+      last_response.headers['Location'].should =~ /invalid_credentials/
+    end
+  end
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: omniauth_crowd
 version: !ruby/object:Gem::Version
-  version: 2.1.1
+  version: 2.1.2
   prerelease: 
 platform: ruby
 authors:
@@ -9,11 +9,11 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2012-03-24 00:00:00.000000000 Z
+date: 2013-08-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: omniauth
-  requirement: &2185215420 !ruby/object:Gem::Requirement
+  requirement: !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ~>
@@ -21,10 +21,15 @@ dependencies:
         version: '1.0'
   type: :runtime
   prerelease: false
-  version_requirements: *2185215420
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.0'
 - !ruby/object:Gem::Dependency
   name: nokogiri
-  requirement: &2185214920 !ruby/object:Gem::Requirement
+  requirement: !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -32,10 +37,15 @@ dependencies:
         version: 1.4.4
   type: :runtime
   prerelease: false
-  version_requirements: *2185214920
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 1.4.4
 - !ruby/object:Gem::Dependency
   name: rack
-  requirement: &2185214440 !ruby/object:Gem::Requirement
+  requirement: !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -43,10 +53,15 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *2185214440
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
-  requirement: &2185213960 !ruby/object:Gem::Requirement
+  requirement: !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -54,10 +69,15 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *2185213960
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rack-test
-  requirement: &2185213480 !ruby/object:Gem::Requirement
+  requirement: !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>='
@@ -65,10 +85,15 @@ dependencies:
         version: '0'
   type: :development
   prerelease: false
-  version_requirements: *2185213480
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec
-  requirement: &2185213000 !ruby/object:Gem::Requirement
+  requirement: !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ~>
@@ -76,10 +101,15 @@ dependencies:
         version: 2.5.0
   type: :development
   prerelease: false
-  version_requirements: *2185213000
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 2.5.0
 - !ruby/object:Gem::Dependency
   name: webmock
-  requirement: &2185212520 !ruby/object:Gem::Requirement
+  requirement: !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ~>
@@ -87,10 +117,15 @@ dependencies:
         version: 1.3.4
   type: :development
   prerelease: false
-  version_requirements: *2185212520
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.3.4
 - !ruby/object:Gem::Dependency
   name: bundler
-  requirement: &2185212040 !ruby/object:Gem::Requirement
+  requirement: !ruby/object:Gem::Requirement
     none: false
     requirements:
     - - ! '>'
@@ -98,7 +133,12 @@ dependencies:
         version: 1.0.0
   type: :development
   prerelease: false
-  version_requirements: *2185212040
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>'
+      - !ruby/object:Gem::Version
+        version: 1.0.0
 description: This is an OmniAuth provider for Atlassian Crowd's REST API.  It allows
   you to easily integrate your Rack application in with Atlassian Crowd.
 email:
@@ -121,6 +161,7 @@ files:
 - lib/omniauth_crowd/version.rb
 - omniauth_crowd.gemspec
 - spec/fixtures/groups.xml
+- spec/fixtures/session.xml
 - spec/fixtures/success.xml
 - spec/omniauth/strategies/crowd_spec.rb
 - spec/spec_helper.rb
@@ -138,7 +179,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: -4177829934733577967
+      hash: 4515462234693520699
 required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
   requirements:
@@ -147,15 +188,16 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
       segments:
       - 0
-      hash: -4177829934733577967
+      hash: 4515462234693520699
 requirements: []
 rubyforge_project: 
-rubygems_version: 1.8.10
+rubygems_version: 1.8.25
 signing_key: 
 specification_version: 3
 summary: An OmniAuth provider for Atlassian Crowd REST API
 test_files:
 - spec/fixtures/groups.xml
+- spec/fixtures/session.xml
 - spec/fixtures/success.xml
 - spec/omniauth/strategies/crowd_spec.rb
 - spec/spec_helper.rb