openstax_accounts 7.13.0 → 8.1.1

data/db/migrate/10_assign_missing_uuids_for_local_accounts.rb

@@ -1,6 +1,6 @@
-class AssignMissingUuidsForLocalAccounts < ActiveRecord::Migration
+class AssignMissingUuidsForLocalAccounts < ActiveRecord::Migration[4.2]
   def change
-    enable_extension 'pgcrypto'
+    enable_extension :pgcrypto
 
     OpenStax::Accounts::Account.where(uuid: nil).update_all('"uuid" = gen_random_uuid()')
 

data/db/migrate/11_add_support_identifier_to_accounts_accounts.rb

@@ -1,4 +1,4 @@
-class AddSupportIdentifierToAccountsAccounts < ActiveRecord::Migration
+class AddSupportIdentifierToAccountsAccounts < ActiveRecord::Migration[4.2]
   def change
     enable_extension :citext
 

data/db/migrate/12_add_is_test_to_accounts_accounts.rb

@@ -1,4 +1,4 @@
-class AddIsTestToAccountsAccounts < ActiveRecord::Migration
+class AddIsTestToAccountsAccounts < ActiveRecord::Migration[4.2]
   def change
     add_column :openstax_accounts_accounts, :is_test, :boolean
   end

data/db/migrate/13_add_school_type_to_accounts_accounts.rb

@@ -1,4 +1,4 @@
-class AddSchoolTypeToAccountsAccounts < ActiveRecord::Migration
+class AddSchoolTypeToAccountsAccounts < ActiveRecord::Migration[4.2]
   def change
     add_column :openstax_accounts_accounts, :school_type, :integer, null: false, default: 0
     add_index :openstax_accounts_accounts, :school_type

data/db/migrate/1_create_openstax_accounts_groups.rb

@@ -1,4 +1,4 @@
-class CreateOpenStaxAccountsGroups < ActiveRecord::Migration
+class CreateOpenStaxAccountsGroups < ActiveRecord::Migration[4.2]
   def change
     create_table :openstax_accounts_groups do |t|
       t.integer :openstax_uid, null: false

data/db/migrate/2_create_openstax_accounts_group_members.rb

@@ -1,4 +1,4 @@
-class CreateOpenStaxAccountsGroupMembers < ActiveRecord::Migration
+class CreateOpenStaxAccountsGroupMembers < ActiveRecord::Migration[4.2]
   def change
     create_table :openstax_accounts_group_members do |t|
       t.references :group, null: false

data/db/migrate/3_create_openstax_accounts_group_owners.rb

@@ -1,4 +1,4 @@
-class CreateOpenStaxAccountsGroupOwners < ActiveRecord::Migration
+class CreateOpenStaxAccountsGroupOwners < ActiveRecord::Migration[4.2]
   def change
     create_table :openstax_accounts_group_owners do |t|
       t.references :group, null: false

data/db/migrate/4_create_openstax_accounts_group_nestings.rb

@@ -1,4 +1,4 @@
-class CreateOpenStaxAccountsGroupNestings < ActiveRecord::Migration
+class CreateOpenStaxAccountsGroupNestings < ActiveRecord::Migration[4.2]
   def change
     create_table :openstax_accounts_group_nestings do |t|
       t.references :member_group, null: false

data/db/migrate/5_add_faculty_status_to_accounts_accounts.rb

@@ -1,4 +1,4 @@
-class AddFacultyStatusToAccountsAccounts < ActiveRecord::Migration
+class AddFacultyStatusToAccountsAccounts < ActiveRecord::Migration[4.2]
   def change
     add_column :openstax_accounts_accounts, :faculty_status, :integer, default: 0, null: false
     add_index :openstax_accounts_accounts, :faculty_status

data/db/migrate/6_add_salesforce_contact_id_to_accounts_accounts.rb

@@ -1,4 +1,4 @@
-class AddSalesforceContactIdToAccountsAccounts < ActiveRecord::Migration
+class AddSalesforceContactIdToAccountsAccounts < ActiveRecord::Migration[4.2]
   def change
     add_column :openstax_accounts_accounts, :salesforce_contact_id, :string
     add_index :openstax_accounts_accounts, :salesforce_contact_id

data/db/migrate/7_change_accounts_openstax_uid_to_be_nullable.rb

@@ -1,4 +1,4 @@
-class ChangeAccountsOpenStaxUidToBeNullable < ActiveRecord::Migration
+class ChangeAccountsOpenStaxUidToBeNullable < ActiveRecord::Migration[4.2]
   def change
     change_column_null :openstax_accounts_accounts, :openstax_uid, true
   end

data/db/migrate/8_change_accounts_username_to_be_nullable.rb

@@ -1,4 +1,4 @@
-class ChangeAccountsUsernameToBeNullable < ActiveRecord::Migration
+class ChangeAccountsUsernameToBeNullable < ActiveRecord::Migration[4.2]
   def change
     change_column_null :openstax_accounts_accounts, :username, true
   end

data/db/migrate/9_add_uuid_and_role_to_accounts_accounts.rb

@@ -1,4 +1,4 @@
-class AddUuidAndRoleToAccountsAccounts < ActiveRecord::Migration
+class AddUuidAndRoleToAccountsAccounts < ActiveRecord::Migration[4.2]
   def change
     add_column :openstax_accounts_accounts, :uuid, :string
     add_index :openstax_accounts_accounts, :uuid, unique: true

data/lib/omniauth/strategies/openstax.rb

@@ -7,38 +7,21 @@ module OmniAuth
       option :name, "openstax"
 
       option :client_options, {
-        :site => "http://accounts.openstax.org",
-        :authorize_url => "/oauth/authorize"
+        site: "http://accounts.openstax.org",
+        authorize_url: "/oauth/authorize"
       }
 
-      uid { raw_info["id"] }
+      uid { raw_info[:id] }
 
       info do
-        username = raw_info["username"]
-        title = raw_info["title"]
-        first_name = raw_info["first_name"]
-        last_name = raw_info["last_name"]
-        full_name = raw_info["full_name"] || "#{first_name} #{last_name}"
-        full_name = username if full_name.blank?
-
         # Changed to conform to the omniauth schema
-        {
-          name: full_name,
-          nickname: username,
-          first_name: first_name,
-          last_name: last_name,
-          title: title
-        }
+        raw_info.slice(:name, :first_name, :last_name, :title).merge(nickname: raw_info[:username])
       end
 
-      extra do
-        {
-          'raw_info' => raw_info
-        }
-      end
+      extra { { raw_info: raw_info } }
 
       def raw_info
-        @raw_info ||= access_token.get('/api/user.json').parsed
+        @raw_info ||= access_token.get('/api/user.json').parsed.symbolize_keys
       end
 
     end

data/lib/openstax/accounts/configuration.rb

@@ -71,6 +71,20 @@ module OpenStax
       # overloaded.
       attr_accessor :max_user_updates_per_request
 
+      # sso_secret_key
+      # The secret key used to decode the SSO cookie
+      # will be used to decryp the shared user session set by accounts
+      # when a user logs in, and cleared when they logout
+      attr_accessor :sso_secret_key
+
+      # sso_secret_salt
+      # The salt that should be used to decypt the SSO session. Defaults to 'cookie'
+      attr_accessor :sso_secret_salt
+
+      # sso_cookie_name
+      # The name of the cookie that stores the SSO session. Defaults to 'ox'
+      attr_accessor :sso_cookie_name
+
       def logout_redirect_url(request)
         (@logout_redirect_url.is_a?(Proc) ?
            @logout_redirect_url.call(request) :
@@ -111,6 +125,8 @@ module OpenStax
           :sp          # "signed payload"; "sp" for short to keep nested parameter names short
         ]
         @max_user_updates_per_request = 250
+        @sso_cookie_name = 'ox'
+        @sso_secret_salt = 'cookie'
         super
       end
 

data/lib/openstax/accounts/current_user_manager.rb

@@ -60,6 +60,14 @@ module OpenStax
       def load_session
         return unless @current_account.nil?
 
+        # first try to use SSO authentication
+        sso = OpenStax::Accounts::Sso.decrypt @request
+        if sso.present?
+          load_session_from_sso(sso)
+          return
+        end
+
+        # If no SSO was found, fall back to using our own session
         # Sign the user out to reset the session if the request is SSL
         # and the signed secure ID doesn't match the unsecure ID
         # http://railscasts.com/episodes/356-dangers-of-session-hijacking
@@ -89,6 +97,18 @@ module OpenStax
         @current_user = account_user_mapper.account_to_user(@current_account)
       end
 
+      def load_session_from_sso(sso)
+        user_attrs = sso['user']
+        account = FindOrCreateFromSso[user_attrs]
+        if account.present?
+          self.current_user = account_user_mapper.account_to_user(account)
+          set_session account
+          @session[:account_id] = account.id
+        else
+          sign_out!
+        end
+      end
+
       # Sets the current account, updates the session and loads it
       def current_account=(account)
         set_session(account)

data/lib/openstax/accounts/has_many_through_groups/active_record/base.rb

@@ -6,7 +6,7 @@ module OpenStax
           def self.included(base)
             base.extend(ClassMethods)
           end
-          
+
           module ClassMethods
             def has_many_through_groups(groups_name, name, options = {})
               options = {class_name: name.to_s.classify}.merge(options)
@@ -18,7 +18,7 @@ module OpenStax
                 define_method(name) do
                   OpenStax::Accounts::Group.includes(association_name)
                     .where(openstax_uid: supertree_group_ids)
-                    .collect{|g| g.send(association_name).to_a}.flatten.uniq
+                    .map { |g| g.send(association_name).to_a }.flatten.uniq
                 end
               end
 
@@ -30,11 +30,11 @@ module OpenStax
                                      send(association_name).to_a : []
                   indirect_records = OpenStax::Accounts::Group
                     .includes(association_name).where(
-                      openstax_uid: send(groups_name).collect{|g|
+                      openstax_uid: send(groups_name).map do |g|
                         g.supertree_group_ids
-                      }.flatten.uniq
+                      end.flatten.uniq
                     )
-                    .collect{|g| g.send(association_name).to_a}
+                    .map { |g| g.send(association_name).to_a }
                   (direct_records + indirect_records).flatten.uniq
                 end
               end

data/lib/openstax/accounts/sso.rb

@@ -0,0 +1,61 @@
+require 'cgi'
+require 'json'
+require 'active_support'
+require 'openssl'
+require 'base64'
+
+
+module OpenStax
+  module Accounts
+    module Sso
+
+      class InvalidSecretsConfiguration < StandardError; end
+
+      extend self
+
+      def user_uuid(request)
+        (decrypt(request) || {}).dig("user", "uuid")
+      end
+
+      # https://github.com/rails/rails/blob/4-2-stable/activesupport/lib/active_support/message_encryptor.rb#L90
+      def decrypt(request)
+        cookie = request.cookies[OpenStax::Accounts.configuration.sso_cookie_name]
+        return {} unless cookie.present?
+
+        begin
+          encryptor.decrypt_and_verify(cookie)
+        rescue InvalidSecretsConfiguration,
+               ActiveSupport::MessageVerifier::InvalidSignature,
+               ActiveSupport::MessageEncryptor::InvalidMessage
+          {}
+        end
+
+      end
+
+      private
+
+      # Not thread-safe
+      def encryptor
+        @encryptor ||= begin
+          key = OpenStax::Accounts.configuration.sso_secret_key
+          raise InvalidSecretsConfiguration, 'Missing sso_secret_key configuration' if key.blank?
+
+          cipher        = 'aes-256-cbc'
+          salt          = OpenStax::Accounts.configuration.sso_secret_salt
+          signed_salt   = "signed encrypted #{salt}"
+          key_generator = ActiveSupport::KeyGenerator.new(key, iterations: 1000)
+          secret        = key_generator.generate_key(salt)[
+            0, OpenSSL::Cipher.new(cipher).key_len
+          ]
+          sign_secret   = key_generator.generate_key(signed_salt)
+          ActiveSupport::MessageEncryptor.new(secret, sign_secret, cipher: cipher, serializer: JSON)
+        end
+      end
+
+      def reset_config
+        @encryptor = nil
+      end
+
+    end
+  end
+end

data/lib/openstax/accounts/version.rb

@@ -1,5 +1,5 @@
 module OpenStax
   module Accounts
-    VERSION = "7.13.0"
+    VERSION = "8.1.1"
   end
 end

data/lib/openstax_accounts.rb

@@ -3,11 +3,12 @@ require 'omniauth'
 require 'openstax_utilities'
 require 'uri'
 require 'omniauth/strategies/openstax'
-require 'openstax/accounts/api'
-require 'openstax/accounts/configuration'
-require 'openstax/accounts/current_user_manager'
-require 'openstax/accounts/default_account_user_mapper'
-require 'openstax/accounts/engine'
+require_relative 'openstax/accounts/api'
+require_relative 'openstax/accounts/sso'
+require_relative 'openstax/accounts/configuration'
+require_relative 'openstax/accounts/current_user_manager'
+require_relative 'openstax/accounts/default_account_user_mapper'
+require_relative 'openstax/accounts/engine'
 
 module OpenStax
   module Accounts
@@ -27,7 +28,6 @@ module OpenStax
       #     ...
       #   end
       #
-      
       def configure
         yield configuration
       end
@@ -37,6 +37,5 @@ module OpenStax
       end
 
     end
-
   end
 end

data/lib/tasks/sync.rake

@@ -2,17 +2,17 @@ namespace :openstax do
   namespace :accounts do
     namespace :sync do
       desc "Sync Accounts with OpenStax Accounts"
-      task :accounts => :environment do
+      task accounts: :environment do
         OpenStax::Accounts::SyncAccounts.call
       end
 
       desc "Sync Groups with OpenStax Accounts"
-      task :groups => :environment do
+      task groups: :environment do
         OpenStax::Accounts::SyncGroups.call
       end
 
       desc "Sync Accounts and Groups with OpenStax Accounts"
-      task :all => [:accounts, :groups]
+      task all: [:accounts, :groups]
     end
   end
 end

data/spec/factories/openstax_accounts_account.rb

@@ -8,6 +8,6 @@ FactoryBot.define do
     school_type        { OpenStax::Accounts::Account.school_types[:unknown_school_type] }
     uuid               { SecureRandom.uuid }
     support_identifier { "cs_#{SecureRandom.hex(4)}" }
-    is_test            true
+    is_test            { true }
   end
 end

data/spec/factories/openstax_accounts_group.rb

@@ -1,7 +1,7 @@
 FactoryBot.define do
-  factory :openstax_accounts_group, :class => OpenStax::Accounts::Group do
+  factory :openstax_accounts_group, class: OpenStax::Accounts::Group do
     openstax_uid { -SecureRandom.hex(4).to_i(16)/2 }
-    name "MyGroup"
-    is_public false
+    name         { "MyGroup" }
+    is_public    { false }
   end
 end

data/spec/factories/openstax_accounts_group_member.rb

@@ -1,5 +1,5 @@
 FactoryBot.define do
-  factory :openstax_accounts_group_member, :class => OpenStax::Accounts::GroupMember do
+  factory :openstax_accounts_group_member, class: OpenStax::Accounts::GroupMember do
     association :group, factory: :openstax_accounts_group
     association :user, factory: :openstax_accounts_account
   end

data/spec/factories/openstax_accounts_group_nesting.rb

@@ -1,5 +1,5 @@
 FactoryBot.define do
-  factory :openstax_accounts_group_nesting, :class => OpenStax::Accounts::GroupNesting do
+  factory :openstax_accounts_group_nesting, class: OpenStax::Accounts::GroupNesting do
     association :container_group, factory: :openstax_accounts_group
     association :member_group, factory: :openstax_accounts_group
   end

data/spec/factories/openstax_accounts_group_owner.rb

@@ -1,5 +1,5 @@
 FactoryBot.define do
-  factory :openstax_accounts_group_owner, :class => OpenStax::Accounts::GroupOwner do
+  factory :openstax_accounts_group_owner, class: OpenStax::Accounts::GroupOwner do
     association :group, factory: :openstax_accounts_group
     association :user, factory: :openstax_accounts_account
   end

metadata

@@ -1,189 +1,183 @@
 --- !ruby/object:Gem::Specification
 name: openstax_accounts
 version: !ruby/object:Gem::Version
-  version: 7.13.0
+  version: 8.1.1
 platform: ruby
 authors:
 - JP Slavinsky
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-04-26 00:00:00.000000000 Z
+date: 2019-11-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '4.1'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '5.0'
+        version: '6.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '4.1'
     - - "<"
       - !ruby/object:Gem::Version
-        version: '5.0'
+        version: '6.0'
 - !ruby/object:Gem::Dependency
   name: omniauth
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: omniauth-oauth2
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.1'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: oauth2
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.5.0
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.5.0
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: representable
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '2.0'
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '2.0'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: roar
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: lev
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.2.1
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.2.1
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: keyword_search
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: openstax_utilities
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 4.1.0
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 4.1.0
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: openstax_api
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.1.0
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.1.0
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: action_interceptor
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.0'
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: pg
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "<"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "<"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: 1.0.0
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec-rails
   requirement: !ruby/object:Gem::Requirement
@@ -241,21 +235,7 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: quiet_assets
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: thin
+  name: puma
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -288,14 +268,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.0.1
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.0.1
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: vcr
   requirement: !ruby/object:Gem::Requirement
@@ -320,7 +300,6 @@ extra_rdoc_files: []
 files:
 - MIT-LICENSE
 - README.md
-- Rakefile
 - app/assets/javascripts/openstax/accounts/application.js
 - app/assets/stylesheets/openstax/accounts/application.css
 - app/assets/stylesheets/openstax/accounts/dev.css.scss
@@ -355,6 +334,7 @@ files:
 - app/routines/openstax/accounts/create_group.rb
 - app/routines/openstax/accounts/dev/create_account.rb
 - app/routines/openstax/accounts/find_or_create_account.rb
+- app/routines/openstax/accounts/find_or_create_from_sso.rb
 - app/routines/openstax/accounts/search_accounts.rb
 - app/routines/openstax/accounts/search_local_accounts.rb
 - app/routines/openstax/accounts/sync_accounts.rb
@@ -392,91 +372,15 @@ files:
 - lib/openstax/accounts/default_account_user_mapper.rb
 - lib/openstax/accounts/engine.rb
 - lib/openstax/accounts/has_many_through_groups/active_record/base.rb
+- lib/openstax/accounts/sso.rb
 - lib/openstax/accounts/version.rb
 - lib/openstax_accounts.rb
 - lib/tasks/sync.rake
-- spec/cassettes/OpenStax_Accounts_FindOrCreateAccount/can_create_users.yml
-- spec/controllers/openstax/accounts/dev/accounts_controller_spec.rb
-- spec/controllers/openstax/accounts/forwards_params_spec.rb
-- spec/controllers/openstax/accounts/sessions_controller_spec.rb
-- spec/controllers/openstax/accounts/uses_this_engine_controller_spec.rb
-- spec/dummy/README.md
-- spec/dummy/Rakefile
-- spec/dummy/app/access_policies/account_access_policy.rb
-- spec/dummy/app/assets/javascripts/application.js
-- spec/dummy/app/assets/stylesheets/application.css
-- spec/dummy/app/controllers/api/application_groups_controller.rb
-- spec/dummy/app/controllers/api/application_users_controller.rb
-- spec/dummy/app/controllers/api/dummy_controller.rb
-- spec/dummy/app/controllers/api/group_members_controller.rb
-- spec/dummy/app/controllers/api/group_nestings_controller.rb
-- spec/dummy/app/controllers/api/group_owners_controller.rb
-- spec/dummy/app/controllers/api/groups_controller.rb
-- spec/dummy/app/controllers/api/users_controller.rb
-- spec/dummy/app/controllers/application_controller.rb
-- spec/dummy/app/controllers/oauth_controller.rb
-- spec/dummy/app/helpers/application_helper.rb
-- spec/dummy/app/models/anonymous_user.rb
-- spec/dummy/app/models/ownership.rb
-- spec/dummy/app/models/user.rb
-- spec/dummy/config.ru
-- spec/dummy/config/application.rb
-- spec/dummy/config/boot.rb
-- spec/dummy/config/database.yml
-- spec/dummy/config/environment.rb
-- spec/dummy/config/environments/development.rb
-- spec/dummy/config/environments/production.rb
-- spec/dummy/config/environments/test.rb
-- spec/dummy/config/initializers/access_policies.rb
-- spec/dummy/config/initializers/assets.rb
-- spec/dummy/config/initializers/backtrace_silencers.rb
-- spec/dummy/config/initializers/cookies_serializer.rb
-- spec/dummy/config/initializers/doorkeeper.rb
-- spec/dummy/config/initializers/filter_parameter_logging.rb
-- spec/dummy/config/initializers/inflections.rb
-- spec/dummy/config/initializers/mime_types.rb
-- spec/dummy/config/initializers/openstax_accounts.rb
-- spec/dummy/config/initializers/session_store.rb
-- spec/dummy/config/initializers/wrap_parameters.rb
-- spec/dummy/config/locales/en.yml
-- spec/dummy/config/routes.rb
-- spec/dummy/config/secrets.yml
-- spec/dummy/db/development.sqlite3
-- spec/dummy/db/migrate/1000_create_users.rb
-- spec/dummy/db/migrate/1001_create_ownerships.rb
-- spec/dummy/db/schema.rb
-- spec/dummy/db/test.sqlite3
-- spec/dummy/log/development.log
-- spec/dummy/log/test.log
-- spec/dummy/public/404.html
-- spec/dummy/public/422.html
-- spec/dummy/public/500.html
-- spec/dummy/public/favicon.ico
-- spec/dummy/script/rails
 - spec/factories/openstax_accounts_account.rb
 - spec/factories/openstax_accounts_group.rb
 - spec/factories/openstax_accounts_group_member.rb
 - spec/factories/openstax_accounts_group_nesting.rb
 - spec/factories/openstax_accounts_group_owner.rb
-- spec/handlers/openstax/accounts/accounts_search_spec.rb
-- spec/handlers/openstax/accounts/dev/accounts_search_spec.rb
-- spec/handlers/openstax/accounts/sessions_callback_spec.rb
-- spec/lib/openstax/accounts/api_spec.rb
-- spec/lib/openstax/accounts/configuration_spec.rb
-- spec/lib/openstax/accounts/current_user_manager_spec.rb
-- spec/lib/openstax/accounts/has_many_through_groups/active_record/base_spec.rb
-- spec/models/openstax/accounts/account_spec.rb
-- spec/models/openstax/accounts/anonymous_account_spec.rb
-- spec/models/openstax/accounts/group_spec.rb
-- spec/routines/openstax/accounts/create_group_spec.rb
-- spec/routines/openstax/accounts/find_or_create_account_spec.rb
-- spec/routines/openstax/accounts/search_accounts_shared_examples.rb
-- spec/routines/openstax/accounts/search_accounts_spec.rb
-- spec/routines/openstax/accounts/search_local_accounts_spec.rb
-- spec/routines/openstax/accounts/sync_accounts_spec.rb
-- spec/routines/openstax/accounts/sync_groups_spec.rb
-- spec/spec_helper.rb
-- spec/vcr_helper.rb
 homepage: http://github.com/openstax/accounts-rails
 licenses: []
 metadata: {}
@@ -500,86 +404,4 @@ rubygems_version: 2.7.3
 signing_key: 
 specification_version: 4
 summary: Rails common code and bindings for the 'accounts' API
-test_files:
-- spec/spec_helper.rb
-- spec/dummy/app/access_policies/account_access_policy.rb
-- spec/dummy/app/models/anonymous_user.rb
-- spec/dummy/app/models/ownership.rb
-- spec/dummy/app/models/user.rb
-- spec/dummy/app/controllers/application_controller.rb
-- spec/dummy/app/controllers/oauth_controller.rb
-- spec/dummy/app/controllers/api/group_nestings_controller.rb
-- spec/dummy/app/controllers/api/group_owners_controller.rb
-- spec/dummy/app/controllers/api/application_users_controller.rb
-- spec/dummy/app/controllers/api/dummy_controller.rb
-- spec/dummy/app/controllers/api/groups_controller.rb
-- spec/dummy/app/controllers/api/users_controller.rb
-- spec/dummy/app/controllers/api/group_members_controller.rb
-- spec/dummy/app/controllers/api/application_groups_controller.rb
-- spec/dummy/app/assets/javascripts/application.js
-- spec/dummy/app/assets/stylesheets/application.css
-- spec/dummy/app/helpers/application_helper.rb
-- spec/dummy/config/secrets.yml
-- spec/dummy/config/routes.rb
-- spec/dummy/config/locales/en.yml
-- spec/dummy/config/environments/production.rb
-- spec/dummy/config/environments/development.rb
-- spec/dummy/config/environments/test.rb
-- spec/dummy/config/environment.rb
-- spec/dummy/config/application.rb
-- spec/dummy/config/database.yml
-- spec/dummy/config/boot.rb
-- spec/dummy/config/initializers/backtrace_silencers.rb
-- spec/dummy/config/initializers/mime_types.rb
-- spec/dummy/config/initializers/filter_parameter_logging.rb
-- spec/dummy/config/initializers/session_store.rb
-- spec/dummy/config/initializers/wrap_parameters.rb
-- spec/dummy/config/initializers/assets.rb
-- spec/dummy/config/initializers/access_policies.rb
-- spec/dummy/config/initializers/openstax_accounts.rb
-- spec/dummy/config/initializers/cookies_serializer.rb
-- spec/dummy/config/initializers/doorkeeper.rb
-- spec/dummy/config/initializers/inflections.rb
-- spec/dummy/config.ru
-- spec/dummy/script/rails
-- spec/dummy/README.md
-- spec/dummy/Rakefile
-- spec/dummy/public/favicon.ico
-- spec/dummy/public/422.html
-- spec/dummy/public/500.html
-- spec/dummy/public/404.html
-- spec/dummy/db/schema.rb
-- spec/dummy/db/test.sqlite3
-- spec/dummy/db/migrate/1000_create_users.rb
-- spec/dummy/db/migrate/1001_create_ownerships.rb
-- spec/dummy/db/development.sqlite3
-- spec/dummy/log/test.log
-- spec/dummy/log/development.log
-- spec/cassettes/OpenStax_Accounts_FindOrCreateAccount/can_create_users.yml
-- spec/models/openstax/accounts/anonymous_account_spec.rb
-- spec/models/openstax/accounts/account_spec.rb
-- spec/models/openstax/accounts/group_spec.rb
-- spec/routines/openstax/accounts/create_group_spec.rb
-- spec/routines/openstax/accounts/sync_accounts_spec.rb
-- spec/routines/openstax/accounts/find_or_create_account_spec.rb
-- spec/routines/openstax/accounts/search_local_accounts_spec.rb
-- spec/routines/openstax/accounts/search_accounts_shared_examples.rb
-- spec/routines/openstax/accounts/sync_groups_spec.rb
-- spec/routines/openstax/accounts/search_accounts_spec.rb
-- spec/vcr_helper.rb
-- spec/factories/openstax_accounts_group.rb
-- spec/factories/openstax_accounts_group_owner.rb
-- spec/factories/openstax_accounts_group_member.rb
-- spec/factories/openstax_accounts_account.rb
-- spec/factories/openstax_accounts_group_nesting.rb
-- spec/lib/openstax/accounts/api_spec.rb
-- spec/lib/openstax/accounts/configuration_spec.rb
-- spec/lib/openstax/accounts/has_many_through_groups/active_record/base_spec.rb
-- spec/lib/openstax/accounts/current_user_manager_spec.rb
-- spec/controllers/openstax/accounts/uses_this_engine_controller_spec.rb
-- spec/controllers/openstax/accounts/forwards_params_spec.rb
-- spec/controllers/openstax/accounts/dev/accounts_controller_spec.rb
-- spec/controllers/openstax/accounts/sessions_controller_spec.rb
-- spec/handlers/openstax/accounts/sessions_callback_spec.rb
-- spec/handlers/openstax/accounts/dev/accounts_search_spec.rb
-- spec/handlers/openstax/accounts/accounts_search_spec.rb
+test_files: []