oxd-ruby 0.1.3 → 0.1.7

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 1f62bcf7aa49a59738e352feef3b8cd7a8484e4d
-  data.tar.gz: 74257ef46a5a9037421e961f13445236d3a97ea4
+  metadata.gz: becb5e6cf7b08da462269a04cb94f5df77c9a903
+  data.tar.gz: e39d828b7f16eaf9a0a70e1eb70828065bc1c603
 SHA512:
-  metadata.gz: 0b078e347c16be84fe679783bf5b9fdb3c9bd309086a31dfb1d48f851213c03294e622af81a9902e312868340b405cf0b0e0956b38077260c1016140c6230ef9
-  data.tar.gz: dad53ad2f1da2bd6a431cfaf627871d039174bb96526a953a17be467b5603ba3b4f11141e00966c9dbbbcf8f2a9ac67f18538782812a85b620437c373f292b84
+  metadata.gz: 785054ee62b5971ac043b85987086f115c5d23052556182649b78ff34e335f307a6bd36c265b99c3c997079ef9458f049585c1a69bfbe3b6e1db0d947c7a0df6
+  data.tar.gz: 9d21df5d8571a358ef2bc5f56c22b1c384fb4adde6cbca19cf1c045880fa942b7ec0b2b7a1a6734da17136da7b80abc89c00f654dc3b3149bdd6b7a068563d75

data/.gitignore

@@ -6,4 +6,4 @@
 /doc/
 /pkg/
 /spec/reports/
-/tmp/
+/tmp/

data/CHANGELOG.md

@@ -0,0 +1,37 @@
+# Change Log
+All notable changes to this project will be documented in this file.
+
+## [0.1.7] - 2017-03-10
+### Added
+- `state` parameter in `get_tokens_by_code` command
+
+### Changes
+- changed `get_logout_uri` command to use `id_token` generated by `get_tokens_by_code` command for `id_token_hint` parameter
+
+### Removed
+- `access_token` parameter from `get_logout_uri` command
+
+### Bug Fix
+- "String can't be coerced into Integer" while using `get_logout_uri` command
+
+## [0.1.6] - 2016-08-25
+### Added
+- `client_secret_expires_at` parameter in `update_registration_site` command
+- `prompt : login` parameter in `get_authorization_url` command
+- `client_id` and `client_secret` parameter in `register_site` command
+
+### Removed
+- `config.redirect_uris` parameter from configuration
+- `redirect_uris` parameter from `register_site` and `update_registr_site` commands
+- `state` and `scopes` parameters from `get_tokens_by_code` command
+
+## [0.1.5] - 2016-07-20
+### Added
+- support for https protocol
+
+## [0.1.4] - 2016-06-25
+### Added
+- support for oxd-server 2.4.4
+- support for UMA
+- `config.op_host` parameter in configuration
+- added scopes "uma_protection","uma_authorization"

data/README.md

@@ -1,47 +1,57 @@
 # Oxd Ruby
 [![Gem Version](https://badge.fury.io/rb/oxd-ruby.png)](https://badge.fury.io/rb/oxd-ruby)
 
-Ruby Client Library for the [Gluu oxD Server RP - v2.4.3](https://www.gluu.org/docs-oxd/).
+Ruby Client Library for the [Gluu oxD Server RP - v2.4.4 to v3.0.1](https://www.gluu.org/docs-oxd/).
 
 **oxdruby** is a thin wrapper around the communication protocol of oxD server. This can be used to access the OpenID connect & UMA Authorization end points of the Gluu Server via the oxD RP. This library provides the function calls required by a website to access user information from a OpenID Connect Provider (OP) by using the OxD as the Relying Party (RP).
 
 ## Using the Library in your website
 
-> You are now on the `v2.4.3` branch. If you want to use `oxd-ruby` for production use, switch to the branch of the matching version as the `oxd-server` you are installing.
+> You are now on the `master` branch. If you want to use `oxd-ruby` for production use, switch to the branch of the matching version as the `oxd-server` you are installing.
 
 [oxD RP](https://www.gluu.org/docs-oxd/) has complete information about the Code Authorization flow and the various details about oxD RP configuration. This document provides only documentation about the oxd-ruby library.
 
 ### Prerequisites
 
 * Install `gluu-oxd-server`
+
 Oxd-server needs to be running on your machine to connect with OP.
 
+* Enable SSL on your website otherwise this library will not work.
+
 ### Installation
 
 To install gem, add this line to your application's Gemfile:
 
 ```ruby
-gem 'oxd-ruby', '~> 0.1.3'
+gem 'oxd-ruby', '~> 0.1.7'
 ```
 
 Run bundle command to install it:
+
 ```bash
 $ bundle install
 ```
 
 ### Configuring
-After you installed oxd-ruby, you need to run the generator command:
+After you installed oxd-ruby, you need to run the generator command to generate the configuration file:
+
 ```bash
 $ rails generate oxd:config
 ```
 
-The generator will install `oxd_config.rb` initializer file in `config/initializers` directory which conatins ALL of Oxd-Ruby's global configuration options.
-You must set values for `config.oxd_host_ip`, `config.oxd_host_port`, `config.authorization_redirect_uri` in config file.
-Change these settings according to your website otherwise your website will not be able to communicate properly with the Oxd Server.
+The generator will install `oxd_config.rb` initializer file in `config/initializers` directory which conatins all the global configuration options for oxd-ruby plguin.
+The following configurations must be set in config file before the plugin can be used.
+
+1. config.oxd_host_ip
+2. config.oxd_host_port
+3. config.op_host
+4. config.authorization_redirect_uri
+
 
 ## Usage
 
-Add these lines to your application_controller.rb file:
+Add following snippet to your `application_controller.rb` file:
 
 ```ruby
 require 'oxd-ruby'
@@ -50,23 +60,25 @@ before_filter :set_oxd_commands_instance
 protected
 	def set_oxd_commands_instance
 		@oxd_command = Oxd::ClientOxdCommands.new
+		@uma_command = Oxd::UMACommands.new
 	end
 ```
 
 The `ClientOxdCommands` class of the library provides all the methods required for the website to communicate with the oxD RP through sockets.
+The `UMACommands` class provides commands for UMA Resource Server(UMA RS) and UMA Requesting Party(UMA RP) protocol.
 
 ### Website Registration
 
-The website can be registered with the OP using the `@oxd_command.register_site` call.
+The website can be registered with the OpenId Provider using the `@oxd_command.register_site` call.
 
 ### Get Authorization URL
 
-The first step is to generate an authorization url which the user can visit to authorize your application to use the information from the OP.
+The first step is to generate an authorization url which the user can visit to authorize your application to use the information from the OpenId Provider.
 
 ```ruby
 authorization_url = @oxd_command.get_authorization_url
 ```
-Using the above url the website can redirect the user for authentication at the OP.
+Using the above url the website can redirect the user for authentication at the OpenId Provider.
 
 ### Get access token
 
@@ -75,14 +87,13 @@ The website needs to parse the information from the callback url and pass it on
 ```ruby
 code = params[:code]
 state = params[:state]
-scopes = params[:scope].split("+")
-access_token = @oxd_command.get_tokens_by_code( code, scopes, state )
+access_token = @oxd_command.get_tokens_by_code( code,state )
 ```
-The values for code, scopes and state are parsed from the callback url query parameters.
+The values for code are parsed from the callback url query parameters.
 
 ### Get user claims
 
-Claims (user information fields) made availble by the OP can be fetched using the access token obtained above.
+Claims (user information fields) made availble by the OpenId Provider can be fetched using the access token obtained above.
 
 ```ruby
 user = @oxd_command.get_user_info(access_token)
@@ -90,25 +101,65 @@ user = @oxd_command.get_user_info(access_token)
 
 ### Using the claims
 
-Once the user data is obtained, the various claims supported by the OP can be used as required.
+Once the user data is obtained, the various claims supported by the OpenId Provider can be used as required.
 
 ```ruby
 <% user.each do |field,value| %>
 	<%= "#{field} : #{value}" %>
 <% end %>
 ```
-The availability of various claims are completely dependent on the OP.
+The availability of various claims are completely dependent on the OpenId Provider.
 
 ### Logging out
 
 Once the required work is done the user can be logged out of the system.
 
 ```ruby
-logout_uri = @oxd_command.get_logout_uri(access_token, state, session_state)
+logout_uri = @oxd_command.get_logout_uri(state, session_state)
 ```
 You can then redirect the user to obtained url to perform logout.
 
-### Logs
+## Using UMA commands
+
+### UMA Protect resources
+
+To protect resources with UMA Resource server, you need to add resources to library using `uma_add_resource(path, *conditions)` method. Then you can call following method to register resources for protection with UMA RS.
+
+```ruby
+@uma_command.uma_add_resource(path, *conditions)
+@uma_command.uma_rs_protect
+```
+
+### UMA Check access for a particular resource
+To check wether you have access to a particular resource on UMA Resource Sevrer or not, use following method:
+
+```ruby
+@uma_command.uma_rs_check_access(path, http_method)
+```
+You must first get RPT before calling this method.
+
+### Get Requesting Party Token(RPT)
+To gain access to protected resources at the UMA resource server, you must first obtain RPT.
+
+```ruby
+@uma_command.uma_rp_get_rpt(force_new)
+```
+
+### Authorize RPT
+You must first call `uma_rp_get_rpt` and `uma_rs_check_access` methods before authorizing RPT. If you have already obtained the RPT, use `uma_rp_authorize_rpt` method provided by oxd-ruby library to authorize it.
+
+```ruby
+@uma_command.uma_rp_authorize_rpt
+```
+
+### Get Gluu Access Token(GAT)
+To obtain GAT(Gluu Access Token) call following method with scopes as parameter.
+
+```ruby
+@uma_command.uma_rp_get_gat(scopes)
+```
+
+## Logs
 You can find `oxd-ruby.log` file in `rails_app_root/log` folder. It contains all the logs about oxd-server connections, commands/data sent to server, recieved response and all the errors and exceptions raised.
 
 ## Demo Site

data/demosite/Gemfile

@@ -33,7 +33,7 @@ gem "twitter-bootstrap-rails"
 # Use Capistrano for deployment
 # gem 'capistrano-rails', group: :development
 
-gem 'oxd-ruby', '~> 0.1.3'
+gem 'oxd-ruby', '~> 0.1.7'
 
 group :development, :test do
   # Call 'byebug' anywhere in the code to stop execution and get a debugger console

data/demosite/app/controllers/application_controller.rb

@@ -9,6 +9,7 @@ class ApplicationController < ActionController::Base
  	before_filter :set_oxd_commands_instance
 	protected
 		def set_oxd_commands_instance
-			@oxd_command = Oxd::ClientOxdCommands.new
+      @oxd_command = Oxd::ClientOxdCommands.new
+			@uma_command = Oxd::UMACommands.new
 		end  
 end

data/demosite/app/controllers/home_controller.rb

@@ -14,10 +14,9 @@ class HomeController < ApplicationController
 
 	def login
 		if(@oxd_command.getOxdId.present?)
-			if (params[:code].present? && params[:state].present?)
-				scopes = params[:scope].split("+")
+			if (params[:code].present?)
 				# pass the parameters obtained from callback url to get access_token
-				@access_token = @oxd_command.get_tokens_by_code( params[:code], scopes, params[:state]) 
+				@access_token = @oxd_command.get_tokens_by_code( params[:code], params[:state]) 
     		end
 	        session.delete('oxd_access_token') if(session[:oxd_access_token].present?)
         	session[:oxd_access_token] = @access_token
@@ -31,7 +30,7 @@ class HomeController < ApplicationController
 	def logout
 		# get logout url and redirect user that URL to logout from OP
 		if(session[:oxd_access_token])
-			@logout_url = @oxd_command.get_logout_uri(session[:oxd_access_token], session[:state], session[:session_state])
+			@logout_url = @oxd_command.get_logout_uri(session[:state], session[:session_state])
 			redirect_to @logout_url
 		end	    
 	end

data/demosite/app/controllers/uma_controller.rb

@@ -0,0 +1,40 @@
+class UmaController < ApplicationController
+	skip_before_filter :verify_authenticity_token  
+	require 'json'
+
+    def index        
+    end
+
+    def protect_resources
+        condition1_for_path1 = {:httpMethods => ["GET"], :scopes => ["http://photoz.example.com/dev/actions/view"]}
+        condition2_for_path1 = {:httpMethods => ["PUT", "POST"], :scopes => ["http://photoz.example.com/dev/actions/all","http://photoz.example.com/dev/actions/add"], :ticketScopes => ["http://photoz.example.com/dev/actions/add"]}
+
+        condition1_for_path2 = {:httpMethods => ["GET"], :scopes => ["http://photoz.example.com/dev/actions/view"]}
+
+        @uma_command.uma_add_resource("/photo", condition1_for_path1, condition2_for_path1) # Add Resource#1
+        @uma_command.uma_add_resource("/document", condition1_for_path2) # Add Resource#2
+        response = @uma_command.uma_rs_protect # Register above resources with UMA RS
+        render :template => "uma/index", :locals => { :protect_resources_response => response } 
+    end
+
+    def get_rpt
+        rpt = @uma_command.uma_rp_get_rpt('false') # Get RPT
+        render :template => "uma/index", :locals => { :rpt => rpt } 
+    end
+
+    def check_access
+        response = @uma_command.uma_rs_check_access('/photo', 'GET')  # Pass the resource path and http method to check access
+        render :template => "uma/index", :locals => { :check_access_response => response } 
+    end
+
+    def authorize_rpt
+        response = @uma_command.uma_rp_authorize_rpt # Authorize RPT
+        render :template => "uma/index", :locals => { :authorize_rpt_response => response }
+    end
+
+	def get_gat 
+        scopes = ["http://photoz.example.com/dev/actions/add","http://photoz.example.com/dev/actions/view","http://photoz.example.com/dev/actions/edit"]
+		gat = @uma_command.uma_rp_get_gat(scopes) # Pass scopes array to get GAT
+        render :template => "uma/index", :locals => { :gat => gat } 
+	end
+end

data/demosite/app/views/home/index.html.erb

@@ -13,22 +13,22 @@
         <h3>oxd_config.rb</h3>
         <pre class="prettyprint">
 Oxd.configure do |config|
-    config.oxd_host_ip = '127.0.0.1'
-    config.oxd_host_port = 8099
-    config.authorization_redirect_uri = "https://domain.example.com/login"
-    config.logout_redirect_uri = "https://domain.example.com/logout"
-    config.post_logout_redirect_uri = "https://domain.example.com/"
-    config.scope = [ "openid", "profile" ]
-    config.application_type = "web"
-    config.redirect_uris = ["https://domain.example.com/login"]
-    config.client_jwks_uri = ""
-    config.client_token_endpoint_auth_method = ""
-    config.client_request_uris = []
-    config.contacts = ["example-email@gmail.com"]
-    config.grant_types = []
-    config.response_types = ["code"]
-    config.acr_values = [ "basic" ]
-    config.client_logout_uris = ['https://domain.example.com/logout']
+    config.oxd_host_ip                          = '127.0.0.1'
+    config.oxd_host_port                        = 8099
+    config.op_host                              = "https://ce-dev2.gluu.org"
+    config.authorization_redirect_uri           = "https://oxd-rails.com/login"
+    config.logout_redirect_uri                  = "https://oxd-rails.com/logout"
+    config.post_logout_redirect_uri             = "https://oxd-rails.com/"
+    config.scope                                = [ "openid", "profile" ]
+    config.application_type                     = "web"
+    config.client_jwks_uri                      = ""
+    config.client_token_endpoint_auth_method    = ""
+    config.client_request_uris                  = []
+    config.contacts                             = ["example-email@gmail.com"]
+    config.grant_types                          = []
+    config.response_types                       = ["code"]
+    config.acr_values                           = ["basic"]
+    config.client_logout_uris                   = ['https://oxd-rails.com/logout']
 end
         </pre>
     </div>
@@ -63,9 +63,8 @@ end
         <pre class="prettyprint">
 def login
     if(@oxd_command.getOxdId.present?)
-        if (params[:code].present? && params[:state].present?)
-            scopes = params[:scope].split("+")
-            @access_token = @oxd_command.get_tokens_by_code( params[:code], scopes, params[:state])
+        if (params[:code].present?)
+            @access_token = @oxd_command.get_tokens_by_code( params[:code],params[:state])
         end
         session.delete('oxd_access_token') if(session[:oxd_access_token].present?)
         session[:oxd_access_token] = @access_token
@@ -107,7 +106,13 @@ end
         </pre>
     </div>
 </div>
-
+<div class="row">
+    <div class="col-md-6">
+        <h3>UMA Demo</h3>
+        <p>UMA defines how resource owners can control protected-resource access by clients operated by arbitrary requesting parties.Once the website has been registered and authorized with OP you can register protection document with UMA.</p>
+       <p><strong> Live demo. </strong><a class="btn btn-primary" href="<%= uma_index_path %>" target="_blank">Go to UMA demo page</a></p>
+    </div>
+</div>
 <div class="row">
     <div class="col-md-6">
         <h3>Logging Out</h3>
@@ -118,7 +123,7 @@ end
     <pre class="prettyprint">
 def logout
     if(session[:oxd_access_token])
-        @logout_url = @oxd_command.get_logout_uri(session[:oxd_access_token], session[:state], session[:session_state])
+        @logout_url = @oxd_command.get_logout_uri(session[:state], session[:session_state])
         redirect_to @logout_url
     end    
 end

data/demosite/app/views/uma/index.html.erb

@@ -0,0 +1,121 @@
+<div class="jumbotron">
+    <h2>UMA RS and UMA RP Demo page for OxD Ruby Library</h2>
+</div>
+
+<div class="row">
+    <div class="col-md-6">
+        <h3>UMA RS Protect resources</h3>
+        <p>To protect resources with UMA RS, you need to add resources to library using <code>uma_add_resource(path, *conditions)</code> method. Then you can call <code>uma_rs_protect</code> method to register resources for protection with UMA RS.</p>
+        <p><strong> Live demo. </strong><a class="btn btn-primary" href="<%=   protect_resources_uma_index_path  %>">Protect Resources</a></p>
+        <% if defined?(protect_resources_response) %>
+        <div class="alert alert-success">
+            <%= "Response Oxd ID: #{protect_resources_response}" %>
+        </div>
+        <% end %>
+    </div>
+    <div class="col-md-6">
+    <pre class="prettyprint">
+def protect_resources
+    condition1 = {:httpMethods => ["GET"], :scopes => ["http://photoz.example.com/dev/actions/view"]}
+    condition2 = {:httpMethods => ["PUT", "POST"], 
+                :scopes => ["http://photoz.example.com/dev/actions/all","http://photoz.example.com/dev/actions/add"], 
+                :ticketScopes => ["http://photoz.example.com/dev/actions/add"]
+            }
+    @uma_command.uma_add_resource("/photo", condition1, condition2)
+    @uma_command.uma_rs_protect
+end
+    </pre>
+    </div>
+</div>
+<hr>
+<div class="row">
+    <div class="col-md-6">
+        <h3>UMA RP - Get RPT</h3>
+        <p>To gain access to protected resources at the UMA resource server, you must first obtain RPT (Requesting Party Token) using <code>uma_rp_get_rpt(force_new)</code> call.</p>
+        <p><strong> Live demo. </strong><a class="btn btn-primary" href="<%=  get_rpt_uma_index_path %>">Get RPT</a></p>        
+        <% if defined?(rpt) %>
+        <div class="alert alert-success">
+            <%= "Response RPT is: #{rpt}" %>
+        </div>
+        <% end %>
+    </div>
+    <div class="col-md-6">
+        <pre class="prettyprint">
+def get_rpt
+    rpt = @uma_command.uma_rp_get_rpt(false)
+    render :template => "uma/index", :locals => { :rpt => rpt } 
+end
+        </pre>
+    </div>
+</div>
+<hr>
+<div class="row">
+    <div class="col-md-6">
+    <h3>UMA RS Check Access</h3>
+    <p>To check wether you have access to a particular resource on UMA Resource Sevrer or not, make call to <code>uma_rs_check_access(path, http_method)</code> method.</p>
+    <p><strong> Live demo. </strong><a class="btn btn-primary" href="<%=  check_access_uma_index_path %>">Check access</a></p>
+    <% if defined?(check_access_response) %>
+        <% if check_access_response['access'] == 'denied' %>
+            <div class="alert alert-warning">
+                <%= "Response : access #{check_access_response['access']}" %><br>
+                <%= "Response ticket : #{check_access_response['ticket']}" if check_access_response['ticket'].present? %>
+            </div>
+        <% else %>
+            <div class="alert alert-success">
+                <%= "Response : #{check_access_response}" %>
+            </div>
+        <% end %>    
+    <% end %>
+    </div>
+    <div class="col-md-6">
+    	<pre class="prettyprint">
+def check_access
+    response = @uma_command.uma_rs_check_access('/photo', 'GET')
+    render :template => "uma/index", :locals => { :check_access_response => response } 
+end
+		</pre>
+    </div>
+</div>
+<hr>
+<div class="row">
+    <div class="col-md-6">
+        <h3>UMA RP - Authorize RPT</h3>
+        <p>You must first get RPT (refer to 'Get RPT' section) before authorizing. If you have already obtained the RPT, use <code>uma_rp_authorize_rpt</code> method provided by oxd-ruby library to authorize RPT.</p>
+       <p><strong> Live demo. </strong><a class="btn btn-primary" href="<%=  authorize_rpt_uma_index_path %>">Authorize RPT</a></p>
+       <% if defined?(authorize_rpt_response) %>
+        <div class="alert alert-success">
+            <%= "Response Oxd ID: #{authorize_rpt_response}" %>
+        </div>
+        <% end %>
+    </div>
+    <div class="col-md-6">
+        <pre class="prettyprint">
+def authorize_rpt
+    response = @uma_command.uma_rp_authorize_rpt
+    render :template => "uma/index", :locals => { :authorize_rpt_response => response }
+end
+        </pre>
+    </div>
+</div>
+<hr>
+<div class="row">
+    <div class="col-md-6">
+        <h3>UMA RP - Get GAT</h3>
+        <p>To obtain GAT(Gluu Access Token) call to <code>uma_rp_get_gat(scopes)</code> method with scopes as parameter.</p>
+        <p><strong> Live demo. </strong><a class="btn btn-primary" href="<%=  get_gat_uma_index_path %>">Get GAT</a></p>
+        <% if defined?(gat) %>
+        <div class="alert alert-success">
+            <%= "Response GAT is: #{gat}" %>
+        </div>
+        <% end %>
+    </div>
+   <div class="col-md-6">
+    <pre class="prettyprint">
+def get_gat 
+    scopes = ["http://photoz.example.com/dev/actions/add","http://photoz.example.com/dev/actions/view","http://photoz.example.com/dev/actions/edit"]
+    gat = @uma_command.uma_rp_get_gat(scopes)
+    render :template => "uma/index", :locals => { :gat => gat } 
+end
+    </pre>
+    </div>
+</div>

data/demosite/config/initializers/oxd_config.rb

@@ -2,12 +2,12 @@
 Oxd.configure do |config|
   	config.oxd_host_ip                			= '127.0.0.1'
 	config.oxd_host_port      		  			= 8099
+	config.op_host								= "https://ce-dev2.gluu.org"
 	config.authorization_redirect_uri 			= "https://oxd-rails.com/login"
 	config.logout_redirect_uri 		  			= "https://oxd-rails.com/logout"
-	config.post_logout_redirect_uri	  			= "https://oxd-rails.com/logout"
-	config.scope					  			= [ "openid", "profile" ]
+	config.post_logout_redirect_uri	  			= "https://oxd-rails.com/"
+	config.scope					  			= [ "openid", "profile","uma_protection","uma_authorization" ]
 	config.application_type       	  			= "web"
-	config.redirect_uris     		  			= ["https://oxd-rails.com/login" ]
 	config.client_jwks_uri			  			= ""
 	config.client_token_endpoint_auth_method	= ""
 	config.client_request_uris					= []

data/demosite/config/routes.rb

@@ -5,6 +5,16 @@ Rails.application.routes.draw do
   get '/login' => 'home#login'
   get '/logout' => 'home#logout'
   
+  resources :uma do
+    collection do
+      get 'protect_resources'
+      get 'get_rpt'
+      get 'check_access'
+      get 'authorize_rpt'
+      get 'get_gat'
+    end
+  end
+  
   # The priority is based upon order of creation: first created -> highest priority.
   # See how all your routes lay out with "rake routes".
 

data/lib/generators/oxd/templates/oxd_config.rb

@@ -2,12 +2,12 @@
 Oxd.configure do |config|
   	config.oxd_host_ip                			= '127.0.0.1'
 	config.oxd_host_port      		  			= 8099
+	config.op_host					 			= "https://your.openid.provider.com"
 	config.authorization_redirect_uri 			= "https://domain.example.com/callback"
 	config.logout_redirect_uri 		  			= "https://domain.example.com/callback2"
 	config.post_logout_redirect_uri	  			= "https://domain.example.com/logout"
-	config.scope					  			= [ "openid", "profile" ]
+	config.scope					  			= ["openid","profile","uma_protection","uma_authorization"]
 	config.application_type       	  			= "web"
-	config.redirect_uris     		  			= ["https://domain.example.com/callback" ]
 	config.client_jwks_uri			  			= ""
 	config.client_token_endpoint_auth_method	= ""
 	config.client_request_uris					= []

data/lib/oxd-ruby.rb

@@ -2,10 +2,11 @@
 require 'oxd/config'
 require 'oxd/oxd_connector'
 require 'oxd/client_oxd_commands'
+require 'oxd/uma_commands'
 
 # @author Inderpal Singh
 # Oxd Module namespace
-# oxd_version 2.4.3	
+# oxd_version 2.4.4	
 module Oxd
 	
 end

data/lib/oxd/client_oxd_commands.rb

@@ -1,5 +1,5 @@
 # @author Inderpal Singh
-# @note supports oxd-version 2.4.3
+# @note supports oxd-version 2.4.4
 module Oxd
 
 	require 'json'
@@ -21,12 +21,11 @@ module Oxd
 				return @configuration.oxd_id
 			else
 				@command = 'register_site'
-				@configuration.scope = [ "openid", "profile","email"]
 				@params = {
+					"op_host" => @configuration.op_host,
 		        	"authorization_redirect_uri" => @configuration.authorization_redirect_uri,
 		            "post_logout_redirect_uri" => @configuration.post_logout_redirect_uri,
-		            "application_type" => @configuration.application_type,
-		            "redirect_uris" => @configuration.redirect_uris,
+		            "application_type" => @configuration.application_type,		            
 		            "acr_values" => @configuration.acr_values,
 		            "scope" => @configuration.scope,
 		            "client_jwks_uri" => @configuration.client_jwks_uri,
@@ -35,7 +34,9 @@ module Oxd
 		            "contacts" => @configuration.contacts,
 		            "grant_types" => @configuration.grant_types,
 		            "response_types"=> @configuration.response_types,
-		            "client_logout_uris"=> @configuration.client_logout_uris
+		            "client_logout_uris"=> @configuration.client_logout_uris,
+		            "client_secret"=> @configuration.client_secret,
+		            "client_id"=> @configuration.client_id
 		        }
 		        request
 		        @configuration.oxd_id = getResponseData['oxd_id']
@@ -54,6 +55,7 @@ module Oxd
 			@command = 'get_authorization_url'
 			@params = {
 	            "oxd_id" => @configuration.oxd_id,
+	            "prompt" => @configuration.prompt,
 	            "acr_values" => acr_values || @configuration.acr_values
         	}
 		    request
@@ -61,22 +63,21 @@ module Oxd
 		end
 
 		# @param code [String] code obtained from the authorization url callback
-		# @param scopes [Array] scopes authorized by the OP, obtained from the authorization url callback
-		# @param state [String] state key obtained from the authorization url callback
-		# @return [String] access_token
+		# @param state [String] state obtained from the authorization url callback
+		# @return [Hash] {:access_token, :id_token}
 		# method to retrieve access token. It is called after the user authorizes by visiting the authorization url.
-		def get_tokens_by_code( code, scopes, state = nil)
-            if (code.empty? || scopes.empty? || (!scopes.kind_of? Array))
-            	logger(:log_msg => "Empty/Wrong value in place of code or scope.")
+		def get_tokens_by_code( code,state )
+            if (code.empty?)
+            	logger(:log_msg => "Empty/Wrong value in place of code.")
         	end
 			@command = 'get_tokens_by_code'
 			@params = {
 	            "oxd_id" => @configuration.oxd_id,
 	            "code" => code,
-	            "scopes" => scopes,
 	            "state" => state
         	}        	
 			request
+			@configuration.id_token = getResponseData['id_token']
 			getResponseData['access_token']
 		end
 
@@ -95,23 +96,23 @@ module Oxd
         	request
 			getResponseData['claims']
 		end
-
-		# @param access_token [String] REQUIRED, oxd server will use last used access token		
+	
 		# @param state [String] OPTIONAL, website state obtained from the authorization url callback
 		# @param session_state [String] OPTIONAL, session state obtained from the authorization url callback
 		# @return [String] uri
 		# method to retrieve logout url from OP. User must be redirected to this url to perform logout
-		def get_logout_uri(access_token, state = nil, session_state = nil)
+		def get_logout_uri( state = nil, session_state = nil)
 			@command = 'get_logout_uri'
 			@params = {
 	            "oxd_id" => @configuration.oxd_id,
-	            "id_token_hint" => access_token,	            
+	            "id_token_hint" => @configuration.id_token,
 	            "post_logout_redirect_uri" => @configuration.post_logout_redirect_uri, 
 	            "state" => state,
 	            "session_state" => session_state
         	}
         	request
         	getResponseData['uri']
+        	#@configuration.oxd_id = "" #unset oxd_id after logout
 		end
 
 		# @return [Boolean] status - if site registration was updated successfully or not
@@ -124,7 +125,6 @@ module Oxd
 	        	"oxd_id" => @configuration.oxd_id,
 	            "post_logout_redirect_uri" => @configuration.post_logout_redirect_uri,
 	            "application_type" => @configuration.application_type,
-	            "redirect_uris" => @configuration.redirect_uris,
 	            "acr_values" => @configuration.acr_values,
 	            "scope" => @configuration.scope,
 	            "client_jwks_uri" => @configuration.client_jwks_uri,
@@ -133,6 +133,7 @@ module Oxd
 	            "contacts" => @configuration.contacts,
 	            "grant_types" => @configuration.grant_types,
 	            "response_types"=> @configuration.response_types,
+	            "client_secret_expires_at" => 3080736637943,
 	            "client_logout_uris"=> @configuration.client_logout_uris
 	        }
 	        request

data/lib/oxd/config.rb

@@ -1,7 +1,7 @@
 require 'active_support/configurable'
 
 # @author Inderpal Singh
-# @note supports oxd-version 2.4.3
+# @note supports oxd-version 2.4.4
 module Oxd
 
   # Configures global settings for Oxd
@@ -27,9 +27,12 @@ module Oxd
     include ActiveSupport::Configurable    
     config_accessor :oxd_host_ip
     config_accessor :oxd_host_port
+    config_accessor :op_host
+    config_accessor :client_id
+    config_accessor :client_secret
     config_accessor :application_type
+    config_accessor :prompt
     config_accessor :authorization_redirect_uri
-    config_accessor :redirect_uris
     config_accessor :post_logout_redirect_uri
     config_accessor :client_logout_uris
     config_accessor :logout_redirect_uri
@@ -39,9 +42,12 @@ module Oxd
     config_accessor :client_token_endpoint_auth_method
     config_accessor :client_request_uris
     config_accessor :scope
+    config_accessor :id_token
     config_accessor :contacts
     config_accessor :response_types
     config_accessor :oxd_id
+    config_accessor :rpt
+    config_accessor :ticket
 
     # define param_name writer
     def param_name
@@ -60,7 +66,6 @@ module Oxd
   #[client]
   # application_type: the app_type is generally 'web' although 'native' can be used for native app
   # authorization_redirect_uri: [REQUIRED] this is the primary redirect URL of the website or app
-  # redirect_uris: [OPTIONAL, LIST] other redirect uris that the website can use - given as comma seperated values.
   # => the first one is always your primary uri set in authorization_redirect_uri
   # post_logout_redirect_uri: [OPTIONAL] website's public uri to call upon logout
   # client_logout_uris:  [REQUIRED, LIST] logout uris of the client
@@ -75,20 +80,22 @@ module Oxd
   configure do |config|
   	config.oxd_host_ip = '127.0.0.1' 
   	config.oxd_host_port = 8099 
-  	config.application_type = "web"
+    config.op_host = "https://gluu.example.com"
+    config.application_type = "web"
+  	config.prompt = "login"
   	config.authorization_redirect_uri = "https://gluu.example.com/callback"
-  	config.redirect_uris = ["https://gluu.example.com/callback","https://gluu.example.com/callback2"]
   	config.post_logout_redirect_uri = "https://gluu.example.com/logout"
   	config.client_logout_uris = ["https://gluu.example.com/callback"]
   	config.logout_redirect_uri = 'https://gluu.example.com/logout'
   	config.grant_types = []
-  	config.acr_values = [ "basic" ]
+  	config.acr_values = ["basic"]
   	config.client_jwks_uri = ""
   	config.client_token_endpoint_auth_method = ""
   	config.client_request_uris = []
-  	config.scope = [ "openid", "profile" ]
+  	config.scope = ["openid", "profile","uma_protection","uma_authorization"]
   	config.contacts = ["example-email@gmail.com"]
   	config.response_types = ["code"]
     config.oxd_id = ""
+    config.id_token = ""
   end 
 end

data/lib/oxd/oxd_connector.rb

@@ -2,7 +2,7 @@ require 'socket'
 require 'ipaddr'
 
 # @author Inderpal Singh
-# @note supports oxd-version 2.4.3
+# @note supports oxd-version 2.4.4
 module Oxd
 
 	# A class which takes care of the socket communication with oxD Server.
@@ -16,7 +16,7 @@ module Oxd
 	    	@data = Hash.new
 	    	@params = Hash.new
 	    	@response_data = Hash.new
-	    	@configuration = Oxd.config			
+	    	@configuration = Oxd.config		    	
 			logger(:log_msg => "Problem with json data : authorization_redirect_uri can't be blank") if @configuration.authorization_redirect_uri.empty?
 			logger(:log_msg => "#{@configuration.oxd_host_ip} is not a valid IP address") if (IPAddr.new(@configuration.oxd_host_ip) rescue nil).nil?
 			logger(:log_msg => "#{@configuration.oxd_host_port} is not a valid port for socket. Port must be integer and between from 0 to 65535") if (!@configuration.oxd_host_port.is_a?(Integer) || (@configuration.oxd_host_port < 0 && @configuration.oxd_host_port > 65535))	
@@ -24,7 +24,7 @@ module Oxd
 
 	    # Checks the validity of command that is to be passed to oxd-server
 	    def validate_command
-	    	command_types = ['get_authorization_url','update_site_registration', 'get_tokens_by_code','get_user_info', 'register_site', 'get_logout_uri','get_authorization_code']
+	    	command_types = ['get_authorization_url','update_site_registration', 'get_tokens_by_code','get_user_info', 'register_site', 'get_logout_uri','get_authorization_code','uma_rs_protect','uma_rs_check_access','uma_rp_get_rpt','uma_rp_authorize_rpt','uma_rp_get_gat']
 	    	if (!command_types.include?(@command))
 				logger(:log_msg => "Command: #{@command} does not exist! Exiting process.")
         	end
@@ -61,6 +61,8 @@ module Oxd
 		# method to send commands to the oxD server and to recieve the response via {#oxd_socket_request}
 		# @return [JSON] @response_object : response from the oxd server in JSON form
 	    def request
+	    	uri = URI.parse(@configuration.authorization_redirect_uri)	
+			logger(:log_msg => "Please enable SSL on your website or check URIs in Oxd configuration.") if (uri.scheme != 'https')
 	    	validate_command
 	    	jsondata = getData.to_json
 	    	if(!is_json? (jsondata))
@@ -72,7 +74,7 @@ module Oxd
 	        else
 	            length = length <= 999 ? sprintf('0%d', length) : length
 	        end
-	        @response_json = oxd_socket_request((length + jsondata).encode("UTF-8"))
+	        @response_json = oxd_socket_request((length.to_s + jsondata).encode("UTF-8"))
 	        @response_json.sub!(@response_json[0..3], "")
 
 	        if (@response_json)
@@ -88,6 +90,11 @@ module Oxd
 	        return @response_object
 	    end
 
+		# @return [Mixed] @response_object set by request method
+	    def getResponseObject
+	    	return @response_object
+	    end
+
 	    # extracts 'data' parameter from @response_object
 	    # @return [Mixed] @response_data
 	    def getResponseData

data/lib/oxd/uma_commands.rb

@@ -0,0 +1,113 @@
+# @author Inderpal Singh
+# @note supports oxd-version 2.4.4
+module Oxd
+
+	require 'json'
+
+	# This class carries out the commands for UMA Resource Server and UMA Requesting Party
+	class UMACommands < OxdConnector
+
+		# class constructor
+		def initialize
+			@resources = Array.new
+			super
+		end	
+
+		# @param path [STRING] REQUIRED
+		# @param conditions [HASH] REQUIRED (variable number of conditions can be passed)
+		# @return [ARRAY] resources
+		# @example
+		#   condition1 = {:httpMethods => ["GET"], :scopes => ["http://photoz.example.com/dev/actions/view"]}
+		#   condition2 = {:httpMethods => ["PUT", "POST"], :scopes => ["http://photoz.example.com/dev/actions/all","http://photoz.example.com/dev/actions/add"],:ticketScopes => ["http://photoz.example.com/dev/actions/add"]}
+		#   uma_add_resource("/photo", condition1, condition2)
+		# combines multiple resources into @resources array to pass to uma_rs_protect method
+		def uma_add_resource(path, *conditions)
+		    @resources.push({:path => path, :conditions => conditions})
+		end
+
+		# @return [STRING] oxd_id
+		# @raise RuntimeError if @resources is nil
+		# method to protect resources with UMA resource server
+		def uma_rs_protect
+			logger(:log_msg => "Please set resources with uma_add_resource(path, *conditions) method first.") if(@resources.nil?)
+			@command = 'uma_rs_protect'
+			@params = {
+				"oxd_id" => @configuration.oxd_id,
+				"resources" => @resources
+			}
+	        request
+	        getResponseData['oxd_id']
+		end
+
+		# @param force_new [BOOLEAN] REQUIRED
+		# @return [STRING] RPT
+		# @raise RuntimeError if force_new param is not boolean
+		# method for obtaining RPT to gain access to protected resources at the UMA resource server
+		def uma_rp_get_rpt(force_new) 
+			logger(:log_msg => "Wrong value for force_new param. #{force_new.kind_of?(TrueClass)}") if(force_new.kind_of?(TrueClass) || force_new.kind_of?(FalseClass))
+			@command = 'uma_rp_get_rpt'
+			@params = {
+				"oxd_id" => @configuration.oxd_id,
+				"force_new" => force_new
+	        }
+	        request
+	        @configuration.rpt = getResponseData['rpt']
+		end
+
+		# @param path [STRING] REQUIRED
+		# @param http_method [Array] REQUIRED, must be one from 'GET', 'POST', 'PUT', 'DELETE'
+		# @return [Hash] response data (access, ticket)
+		# method to check if we have permission to access particular resource or not
+		def uma_rs_check_access(path, http_method)
+			if (path.empty? || http_method.empty? || (!['GET', 'POST', 'PUT', 'DELETE'].include? http_method))
+            	logger(:log_msg => "Empty/Wrong value in place of path or http_method.")
+        	end
+			@command = 'uma_rs_check_access'
+			@params = {
+				"oxd_id" => @configuration.oxd_id,
+				"rpt" => @configuration.rpt,
+				"path" => path,
+				"http_method" => http_method
+	        }
+	        request
+	        if getResponseData['access'] == 'denied' && !getResponseData['ticket'].empty?
+	        	@configuration.ticket = getResponseData['ticket']
+	        elsif getResponseData['access'] == 'granted' 
+	        	@configuration.ticket = ""
+	        end
+	        getResponseData
+		end	
+
+		# @return [String] oxd_id 
+		# @note This method should always be called after uma_rp_get_rpt and uma_rs_check_access methods
+		# Method to authorize generated RPT using oxd_id and ticket.
+		def uma_rp_authorize_rpt
+			@command = 'uma_rp_authorize_rpt'
+			@params = {
+				"oxd_id" => @configuration.oxd_id,
+				"rpt" => @configuration.rpt,
+				"ticket" => @configuration.ticket
+	        }
+	        request
+	        getResponseData['oxd_id']
+		end
+
+		# @param scopes [Array] REQUIRED
+		# @return [String] rpt 
+		# @example
+		# 	scopes = ["http://photoz.example.com/dev/actions/add","http://photoz.example.com/dev/actions/view"]
+		# 	uma_rp_get_gat(scopes)
+		# method to obtain GAT (Gluu Access Token)
+		def uma_rp_get_gat(scopes)
+			logger(:log_msg => "Invalid value for scopes argument.") if(!scopes.kind_of? Array)
+			@command = 'uma_rp_get_gat'
+			@params = {
+				"oxd_id" => @configuration.oxd_id,
+				"scopes" => scopes
+	        }
+	        request
+	        logger(:log_msg => "Invalid GAT recieved : #{getResponseData['rpt']}") if(!getResponseData['rpt'].match(/gat_/)[0])
+	        getResponseData['rpt']
+		end
+	end
+end

data/lib/oxd/version.rb

@@ -1,4 +1,4 @@
 # Gem version
 module Oxd
-    VERSION = "0.1.3"
+    VERSION = "0.1.7"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: oxd-ruby
 version: !ruby/object:Gem::Version
-  version: 0.1.3
+  version: 0.1.7
 platform: ruby
 authors:
 - inderpal6785
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2016-06-24 00:00:00.000000000 Z
+date: 2017-03-11 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -76,6 +76,7 @@ files:
 - ".gitignore"
 - ".rspec"
 - ".travis.yml"
+- CHANGELOG.md
 - CODE_OF_CONDUCT.md
 - Gemfile
 - LICENSE.txt
@@ -83,7 +84,6 @@ files:
 - Rakefile
 - demosite/.gitignore
 - demosite/Gemfile
-- demosite/Gemfile.lock
 - demosite/README.md
 - demosite/Rakefile
 - demosite/app/assets/images/.keep
@@ -94,12 +94,14 @@ files:
 - demosite/app/controllers/application_controller.rb
 - demosite/app/controllers/concerns/.keep
 - demosite/app/controllers/home_controller.rb
+- demosite/app/controllers/uma_controller.rb
 - demosite/app/helpers/application_helper.rb
 - demosite/app/mailers/.keep
 - demosite/app/models/.keep
 - demosite/app/models/concerns/.keep
 - demosite/app/views/home/index.html.erb
 - demosite/app/views/layouts/application.html.erb
+- demosite/app/views/uma/index.html.erb
 - demosite/bin/bundle
 - demosite/bin/rails
 - demosite/bin/rake
@@ -150,6 +152,7 @@ files:
 - lib/oxd/client_oxd_commands.rb
 - lib/oxd/config.rb
 - lib/oxd/oxd_connector.rb
+- lib/oxd/uma_commands.rb
 - lib/oxd/version.rb
 - oxd-ruby.gemspec
 homepage: https://github.com/GluuFederation/oxd-ruby

data/demosite/Gemfile.lock

@@ -1,190 +0,0 @@
-PATH
-  remote: /var/www/oxd-ruby
-  specs:
-    oxd-ruby (0.1.3)
-
-GEM
-  remote: https://rubygems.org/
-  specs:
-    actionmailer (4.2.6)
-      actionpack (= 4.2.6)
-      actionview (= 4.2.6)
-      activejob (= 4.2.6)
-      mail (~> 2.5, >= 2.5.4)
-      rails-dom-testing (~> 1.0, >= 1.0.5)
-    actionpack (4.2.6)
-      actionview (= 4.2.6)
-      activesupport (= 4.2.6)
-      rack (~> 1.6)
-      rack-test (~> 0.6.2)
-      rails-dom-testing (~> 1.0, >= 1.0.5)
-      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (4.2.6)
-      activesupport (= 4.2.6)
-      builder (~> 3.1)
-      erubis (~> 2.7.0)
-      rails-dom-testing (~> 1.0, >= 1.0.5)
-      rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    activejob (4.2.6)
-      activesupport (= 4.2.6)
-      globalid (>= 0.3.0)
-    activemodel (4.2.6)
-      activesupport (= 4.2.6)
-      builder (~> 3.1)
-    activerecord (4.2.6)
-      activemodel (= 4.2.6)
-      activesupport (= 4.2.6)
-      arel (~> 6.0)
-    activesupport (4.2.6)
-      i18n (~> 0.7)
-      json (~> 1.7, >= 1.7.7)
-      minitest (~> 5.1)
-      thread_safe (~> 0.3, >= 0.3.4)
-      tzinfo (~> 1.1)
-    arel (6.0.3)
-    binding_of_caller (0.7.2)
-      debug_inspector (>= 0.0.1)
-    builder (3.2.2)
-    byebug (9.0.5)
-    coffee-rails (4.1.1)
-      coffee-script (>= 2.2.0)
-      railties (>= 4.0.0, < 5.1.x)
-    coffee-script (2.4.1)
-      coffee-script-source
-      execjs
-    coffee-script-source (1.10.0)
-    commonjs (0.2.7)
-    concurrent-ruby (1.0.2)
-    daemons (1.2.3)
-    debug_inspector (0.0.2)
-    erubis (2.7.0)
-    eventmachine (1.0.8)
-    execjs (2.7.0)
-    globalid (0.3.6)
-      activesupport (>= 4.1.0)
-    i18n (0.7.0)
-    jbuilder (2.5.0)
-      activesupport (>= 3.0.0, < 5.1)
-      multi_json (~> 1.2)
-    jquery-rails (4.1.1)
-      rails-dom-testing (>= 1, < 3)
-      railties (>= 4.2.0)
-      thor (>= 0.14, < 2.0)
-    json (1.8.3)
-    less (2.6.0)
-      commonjs (~> 0.2.7)
-    less-rails (2.7.1)
-      actionpack (>= 4.0)
-      less (~> 2.6.0)
-      sprockets (> 2, < 4)
-      tilt
-    loofah (2.0.3)
-      nokogiri (>= 1.5.9)
-    mail (2.6.4)
-      mime-types (>= 1.16, < 4)
-    mime-types (3.1)
-      mime-types-data (~> 3.2015)
-    mime-types-data (3.2016.0521)
-    mini_portile2 (2.1.0)
-    minitest (5.9.0)
-    multi_json (1.12.1)
-    nokogiri (1.6.8)
-      mini_portile2 (~> 2.1.0)
-      pkg-config (~> 1.1.7)
-    passenger (5.0.28)
-      rack
-      rake (>= 0.8.1)
-    pkg-config (1.1.7)
-    rack (1.6.4)
-    rack-test (0.6.3)
-      rack (>= 1.0)
-    rails (4.2.6)
-      actionmailer (= 4.2.6)
-      actionpack (= 4.2.6)
-      actionview (= 4.2.6)
-      activejob (= 4.2.6)
-      activemodel (= 4.2.6)
-      activerecord (= 4.2.6)
-      activesupport (= 4.2.6)
-      bundler (>= 1.3.0, < 2.0)
-      railties (= 4.2.6)
-      sprockets-rails
-    rails-deprecated_sanitizer (1.0.3)
-      activesupport (>= 4.2.0.alpha)
-    rails-dom-testing (1.0.7)
-      activesupport (>= 4.2.0.beta, < 5.0)
-      nokogiri (~> 1.6.0)
-      rails-deprecated_sanitizer (>= 1.0.1)
-    rails-html-sanitizer (1.0.3)
-      loofah (~> 2.0)
-    railties (4.2.6)
-      actionpack (= 4.2.6)
-      activesupport (= 4.2.6)
-      rake (>= 0.8.7)
-      thor (>= 0.18.1, < 2.0)
-    rake (11.2.0)
-    rdoc (4.2.2)
-      json (~> 1.4)
-    sass (3.4.22)
-    sass-rails (5.0.4)
-      railties (>= 4.0.0, < 5.0)
-      sass (~> 3.1)
-      sprockets (>= 2.8, < 4.0)
-      sprockets-rails (>= 2.0, < 4.0)
-      tilt (>= 1.1, < 3)
-    sdoc (0.4.1)
-      json (~> 1.7, >= 1.7.7)
-      rdoc (~> 4.0)
-    spring (1.7.1)
-    sprockets (3.6.0)
-      concurrent-ruby (~> 1.0)
-      rack (> 1, < 3)
-    sprockets-rails (3.0.4)
-      actionpack (>= 4.0)
-      activesupport (>= 4.0)
-      sprockets (>= 3.0.0)
-    sqlite3 (1.3.11)
-    thin (1.7.0)
-      daemons (~> 1.0, >= 1.0.9)
-      eventmachine (~> 1.0, >= 1.0.4)
-      rack (>= 1, < 3)
-    thor (0.19.1)
-    thread_safe (0.3.5)
-    tilt (2.0.5)
-    turbolinks (2.5.3)
-      coffee-rails
-    twitter-bootstrap-rails (3.2.2)
-      actionpack (>= 3.1)
-      execjs (>= 2.2.2, >= 2.2)
-      less-rails (>= 2.5.0)
-      railties (>= 3.1)
-    tzinfo (1.2.2)
-      thread_safe (~> 0.1)
-    uglifier (3.0.0)
-      execjs (>= 0.3.0, < 3)
-    web-console (2.3.0)
-      activemodel (>= 4.0)
-      binding_of_caller (>= 0.7.2)
-      railties (>= 4.0)
-      sprockets-rails (>= 2.0, < 4.0)
-
-PLATFORMS
-  ruby
-
-DEPENDENCIES
-  byebug
-  coffee-rails (~> 4.1.0)
-  jbuilder (~> 2.0)
-  jquery-rails
-  oxd-ruby!
-  passenger
-  rails (= 4.2.6)
-  sass-rails (~> 5.0)
-  sdoc (~> 0.4.0)
-  spring
-  sqlite3
-  thin
-  turbolinks
-  twitter-bootstrap-rails
-  uglifier (>= 1.3.0)
-  web-console (~> 2.0)