panjiva-oauth-plugin 0.4.1

Sign up to get free protection for your applications and to get access to all the features.
Files changed (167) hide show
  1. checksums.yaml +15 -0
  2. data/.gitignore +12 -0
  3. data/CHANGELOG +178 -0
  4. data/Gemfile +27 -0
  5. data/Guardfile +8 -0
  6. data/MIT-LICENSE +20 -0
  7. data/README.rdoc +531 -0
  8. data/Rakefile +2 -0
  9. data/UPGRADE.rdoc +21 -0
  10. data/generators/oauth_consumer/USAGE +10 -0
  11. data/generators/oauth_consumer/oauth_consumer_generator.rb +50 -0
  12. data/generators/oauth_consumer/templates/consumer_token.rb +11 -0
  13. data/generators/oauth_consumer/templates/controller.rb +27 -0
  14. data/generators/oauth_consumer/templates/index.html.erb +29 -0
  15. data/generators/oauth_consumer/templates/index.html.haml +18 -0
  16. data/generators/oauth_consumer/templates/migration.rb +20 -0
  17. data/generators/oauth_consumer/templates/oauth_config.rb +73 -0
  18. data/generators/oauth_consumer/templates/show.html.erb +7 -0
  19. data/generators/oauth_consumer/templates/show.html.haml +8 -0
  20. data/generators/oauth_provider/USAGE +20 -0
  21. data/generators/oauth_provider/lib/insert_routes.rb +67 -0
  22. data/generators/oauth_provider/oauth_provider_generator.rb +127 -0
  23. data/generators/oauth_provider/templates/_form.html.erb +17 -0
  24. data/generators/oauth_provider/templates/_form.html.haml +21 -0
  25. data/generators/oauth_provider/templates/access_token.rb +16 -0
  26. data/generators/oauth_provider/templates/authorize.html.erb +14 -0
  27. data/generators/oauth_provider/templates/authorize.html.haml +16 -0
  28. data/generators/oauth_provider/templates/authorize_failure.html.erb +1 -0
  29. data/generators/oauth_provider/templates/authorize_failure.html.haml +1 -0
  30. data/generators/oauth_provider/templates/authorize_success.html.erb +1 -0
  31. data/generators/oauth_provider/templates/authorize_success.html.haml +1 -0
  32. data/generators/oauth_provider/templates/client_application.rb +57 -0
  33. data/generators/oauth_provider/templates/client_application_spec.rb +29 -0
  34. data/generators/oauth_provider/templates/client_application_test.rb +42 -0
  35. data/generators/oauth_provider/templates/client_applications.yml +23 -0
  36. data/generators/oauth_provider/templates/clients_controller.rb +52 -0
  37. data/generators/oauth_provider/templates/clients_controller_spec.rb +176 -0
  38. data/generators/oauth_provider/templates/clients_controller_test.rb +280 -0
  39. data/generators/oauth_provider/templates/controller.rb +23 -0
  40. data/generators/oauth_provider/templates/edit.html.erb +7 -0
  41. data/generators/oauth_provider/templates/edit.html.haml +4 -0
  42. data/generators/oauth_provider/templates/index.html.erb +43 -0
  43. data/generators/oauth_provider/templates/index.html.haml +39 -0
  44. data/generators/oauth_provider/templates/migration.rb +47 -0
  45. data/generators/oauth_provider/templates/new.html.erb +5 -0
  46. data/generators/oauth_provider/templates/new.html.haml +5 -0
  47. data/generators/oauth_provider/templates/oauth2_authorize.html.erb +16 -0
  48. data/generators/oauth_provider/templates/oauth2_authorize.html.haml +17 -0
  49. data/generators/oauth_provider/templates/oauth2_token.rb +20 -0
  50. data/generators/oauth_provider/templates/oauth2_token_spec.rb +52 -0
  51. data/generators/oauth_provider/templates/oauth2_verifier.rb +35 -0
  52. data/generators/oauth_provider/templates/oauth2_verifier_spec.rb +44 -0
  53. data/generators/oauth_provider/templates/oauth_nonce.rb +13 -0
  54. data/generators/oauth_provider/templates/oauth_nonce_spec.rb +24 -0
  55. data/generators/oauth_provider/templates/oauth_nonce_test.rb +26 -0
  56. data/generators/oauth_provider/templates/oauth_nonces.yml +13 -0
  57. data/generators/oauth_provider/templates/oauth_token.rb +30 -0
  58. data/generators/oauth_provider/templates/oauth_token_spec.rb +309 -0
  59. data/generators/oauth_provider/templates/oauth_token_test.rb +57 -0
  60. data/generators/oauth_provider/templates/oauth_tokens.yml +17 -0
  61. data/generators/oauth_provider/templates/request_token.rb +40 -0
  62. data/generators/oauth_provider/templates/show.html.erb +27 -0
  63. data/generators/oauth_provider/templates/show.html.haml +30 -0
  64. data/init.rb +1 -0
  65. data/install.rb +2 -0
  66. data/lib/generators/active_record/oauth_consumer_generator.rb +33 -0
  67. data/lib/generators/active_record/oauth_consumer_templates/consumer_token.rb +11 -0
  68. data/lib/generators/active_record/oauth_consumer_templates/migration.rb +20 -0
  69. data/lib/generators/active_record/oauth_provider_generator.rb +39 -0
  70. data/lib/generators/active_record/oauth_provider_templates/access_token.rb +16 -0
  71. data/lib/generators/active_record/oauth_provider_templates/client_application.rb +57 -0
  72. data/lib/generators/active_record/oauth_provider_templates/migration.rb +47 -0
  73. data/lib/generators/active_record/oauth_provider_templates/oauth2_token.rb +20 -0
  74. data/lib/generators/active_record/oauth_provider_templates/oauth2_verifier.rb +35 -0
  75. data/lib/generators/active_record/oauth_provider_templates/oauth_nonce.rb +13 -0
  76. data/lib/generators/active_record/oauth_provider_templates/oauth_token.rb +30 -0
  77. data/lib/generators/active_record/oauth_provider_templates/request_token.rb +40 -0
  78. data/lib/generators/erb/oauth_consumer_generator.rb +14 -0
  79. data/lib/generators/erb/oauth_consumer_templates/index.html.erb +29 -0
  80. data/lib/generators/erb/oauth_consumer_templates/show.html.erb +7 -0
  81. data/lib/generators/erb/oauth_provider_generator.rb +23 -0
  82. data/lib/generators/erb/oauth_provider_templates/_form.html.erb +17 -0
  83. data/lib/generators/erb/oauth_provider_templates/authorize.html.erb +14 -0
  84. data/lib/generators/erb/oauth_provider_templates/authorize_failure.html.erb +1 -0
  85. data/lib/generators/erb/oauth_provider_templates/authorize_success.html.erb +1 -0
  86. data/lib/generators/erb/oauth_provider_templates/edit.html.erb +7 -0
  87. data/lib/generators/erb/oauth_provider_templates/index.html.erb +43 -0
  88. data/lib/generators/erb/oauth_provider_templates/new.html.erb +5 -0
  89. data/lib/generators/erb/oauth_provider_templates/oauth2_authorize.html.erb +16 -0
  90. data/lib/generators/erb/oauth_provider_templates/show.html.erb +27 -0
  91. data/lib/generators/haml/oauth_consumer_generator.rb +21 -0
  92. data/lib/generators/haml/oauth_consumer_templates/index.html.haml +18 -0
  93. data/lib/generators/haml/oauth_consumer_templates/show.html.haml +8 -0
  94. data/lib/generators/haml/oauth_provider_generator.rb +28 -0
  95. data/lib/generators/haml/oauth_provider_templates/_form.html.haml +21 -0
  96. data/lib/generators/haml/oauth_provider_templates/authorize.html.haml +16 -0
  97. data/lib/generators/haml/oauth_provider_templates/authorize_failure.html.haml +1 -0
  98. data/lib/generators/haml/oauth_provider_templates/authorize_success.html.haml +1 -0
  99. data/lib/generators/haml/oauth_provider_templates/edit.html.haml +4 -0
  100. data/lib/generators/haml/oauth_provider_templates/index.html.haml +39 -0
  101. data/lib/generators/haml/oauth_provider_templates/new.html.haml +5 -0
  102. data/lib/generators/haml/oauth_provider_templates/oauth2_authorize.html.haml +17 -0
  103. data/lib/generators/haml/oauth_provider_templates/show.html.haml +30 -0
  104. data/lib/generators/mongoid/oauth_consumer_generator.rb +15 -0
  105. data/lib/generators/mongoid/oauth_consumer_templates/consumer_token.rb +41 -0
  106. data/lib/generators/mongoid/oauth_provider_generator.rb +21 -0
  107. data/lib/generators/mongoid/oauth_provider_templates/access_token.rb +16 -0
  108. data/lib/generators/mongoid/oauth_provider_templates/client_application.rb +71 -0
  109. data/lib/generators/mongoid/oauth_provider_templates/oauth2_token.rb +20 -0
  110. data/lib/generators/mongoid/oauth_provider_templates/oauth2_verifier.rb +35 -0
  111. data/lib/generators/mongoid/oauth_provider_templates/oauth_nonce.rb +24 -0
  112. data/lib/generators/mongoid/oauth_provider_templates/oauth_token.rb +44 -0
  113. data/lib/generators/mongoid/oauth_provider_templates/request_token.rb +36 -0
  114. data/lib/generators/oauth_consumer/USAGE +11 -0
  115. data/lib/generators/oauth_consumer/oauth_consumer_generator.rb +31 -0
  116. data/lib/generators/oauth_consumer/templates/controller.rb +59 -0
  117. data/lib/generators/oauth_consumer/templates/oauth_config.rb +68 -0
  118. data/lib/generators/oauth_inflections.rb +6 -0
  119. data/lib/generators/oauth_plugin.rb +0 -0
  120. data/lib/generators/oauth_provider/USAGE +18 -0
  121. data/lib/generators/oauth_provider/oauth_provider_generator.rb +37 -0
  122. data/lib/generators/oauth_provider/templates/clients_controller.rb +52 -0
  123. data/lib/generators/oauth_provider/templates/controller.rb +23 -0
  124. data/lib/generators/rspec/oauth_provider_generator.rb +35 -0
  125. data/lib/generators/rspec/templates/client_application_spec.rb +29 -0
  126. data/lib/generators/rspec/templates/client_applications.yml +23 -0
  127. data/lib/generators/rspec/templates/clients_controller_spec.rb +176 -0
  128. data/lib/generators/rspec/templates/oauth2_token_spec.rb +52 -0
  129. data/lib/generators/rspec/templates/oauth2_verifier_spec.rb +44 -0
  130. data/lib/generators/rspec/templates/oauth_nonce_spec.rb +24 -0
  131. data/lib/generators/rspec/templates/oauth_nonces.yml +13 -0
  132. data/lib/generators/rspec/templates/oauth_token_spec.rb +309 -0
  133. data/lib/generators/rspec/templates/oauth_tokens.yml +17 -0
  134. data/lib/generators/test_unit/oauth_provider_generator.rb +33 -0
  135. data/lib/generators/test_unit/templates/client_application_test.rb +42 -0
  136. data/lib/generators/test_unit/templates/client_applications.yml +23 -0
  137. data/lib/generators/test_unit/templates/clients_controller_test.rb +280 -0
  138. data/lib/generators/test_unit/templates/oauth_nonce_test.rb +26 -0
  139. data/lib/generators/test_unit/templates/oauth_nonces.yml +13 -0
  140. data/lib/generators/test_unit/templates/oauth_token_test.rb +57 -0
  141. data/lib/generators/test_unit/templates/oauth_tokens.yml +17 -0
  142. data/lib/oauth-plugin.rb +24 -0
  143. data/lib/oauth-plugin/version.rb +5 -0
  144. data/lib/oauth/controllers/application_controller_methods.rb +136 -0
  145. data/lib/oauth/controllers/consumer_controller.rb +150 -0
  146. data/lib/oauth/controllers/provider_controller.rb +181 -0
  147. data/lib/oauth/models/consumers/service_loader.rb +28 -0
  148. data/lib/oauth/models/consumers/services/agree2_token.rb +15 -0
  149. data/lib/oauth/models/consumers/services/fireeagle_token.rb +39 -0
  150. data/lib/oauth/models/consumers/services/google_token.rb +21 -0
  151. data/lib/oauth/models/consumers/services/oauth2_token.rb +27 -0
  152. data/lib/oauth/models/consumers/services/opentransact_token.rb +15 -0
  153. data/lib/oauth/models/consumers/services/picomoney_token.rb +17 -0
  154. data/lib/oauth/models/consumers/services/twitter_token.rb +24 -0
  155. data/lib/oauth/models/consumers/simple_client.rb +50 -0
  156. data/lib/oauth/models/consumers/token.rb +93 -0
  157. data/lib/oauth/provider/authorizer.rb +83 -0
  158. data/lib/oauth/rack/oauth_filter.rb +93 -0
  159. data/oauth-plugin.gemspec +39 -0
  160. data/rails/init.rb +1 -0
  161. data/spec/dummy_provider_models.rb +53 -0
  162. data/spec/oauth/provider/authorizer_spec.rb +202 -0
  163. data/spec/rack/oauth_filter_spec.rb +244 -0
  164. data/spec/spec_helper.rb +3 -0
  165. data/tasks/oauth_tasks.rake +4 -0
  166. data/uninstall.rb +1 -0
  167. metadata +362 -0
@@ -0,0 +1,28 @@
1
+ require 'oauth/controllers/consumer_controller'
2
+
3
+ # Goes through the entries in your OAUTH_CREDENTIALS and either loads the class required
4
+ # or subclasses ConsumerToken with the name.
5
+ #
6
+ # So an entry called "my_service" will create a class MyServiceToken which you can
7
+ # connect with has_one to your user model.
8
+ if defined? ConsumerToken && defined? OAUTH_CREDENTIALS
9
+ require File.join(File.dirname(__FILE__), 'services', 'oauth2_token')
10
+
11
+ OAUTH_CREDENTIALS.each do |key, value|
12
+ class_name=value[:class_name]||"#{key.to_s.classify}Token"
13
+ unless Object.const_defined?(class_name.to_sym)
14
+ if File.exists?(File.join(File.dirname(__FILE__), "services","#{key.to_s}_token.rb"))
15
+ Rails.logger.info File.join(File.dirname(__FILE__), "services","#{key.to_s}_token")
16
+ require File.join(File.dirname(__FILE__), "services","#{key.to_s}_token")
17
+ else
18
+ begin
19
+ # Let Rails auto-load from the models folder
20
+ eval class_name
21
+ rescue NameError
22
+ super_class = value[:super_class]||value[:oauth_version].to_i>=2 ? "Oauth2Token" : "ConsumerToken"
23
+ eval "class #{class_name} < #{super_class} ;end"
24
+ end
25
+ end
26
+ end
27
+ end
28
+ end
@@ -0,0 +1,15 @@
1
+ require 'agree2'
2
+ class Agree2Token < ConsumerToken
3
+ AGREE2_SETTINGS={:site=>"https://agree2.com"}
4
+ def self.consumer
5
+ @consumer||=OAuth::Consumer.new credentials[:key],credentials[:secret],AGREE2_SETTINGS
6
+ end
7
+
8
+ def self.agree2_client
9
+ @agree2_client||=Agree2::Client.new credentials[:key],credentials[:secret]
10
+ end
11
+
12
+ def client
13
+ @client||=Agree2Token.agree2_client.user(token,secret)
14
+ end
15
+ end
@@ -0,0 +1,39 @@
1
+ require 'fireeagle'
2
+ # For more information on FireEagle
3
+ # http://fireeagle.rubyforge.org/
4
+ class FireeagleToken < ConsumerToken
5
+ FIREEAGLE_SETTINGS={
6
+ :site=>"https://fireeagle.yahooapis.com",
7
+ :authorize_url=>"https://fireeagle.yahoo.net/oauth/authorize"}
8
+
9
+ def self.consumer
10
+ @consumer||=OAuth::Consumer.new credentials[:key],credentials[:secret],FIREEAGLE_SETTINGS
11
+ end
12
+
13
+ def client
14
+ @client||=FireEagle::Client.new :consumer_key => FireeagleToken.consumer.key,
15
+ :consumer_secret => FireeagleToken.consumer.secret,
16
+ :access_token => token,
17
+ :access_token_secret => secret
18
+ end
19
+
20
+ # Returns the FireEagle User object
21
+ # http://fireeagle.rubyforge.org/classes/FireEagle/User.html
22
+ def fireeagle_user
23
+ @fireeagle_user||=client.user
24
+ end
25
+
26
+ # gives you the best guess of a location for user.
27
+ # This returns the FireEagle Location object:
28
+ # http://fireeagle.rubyforge.org/classes/FireEagle/Location.html
29
+ def location
30
+ fireeagle_user.best_guess.name
31
+ end
32
+
33
+ # Updates thes users location
34
+ # see: http://fireeagle.rubyforge.org/classes/FireEagle/Client.html#M000026
35
+ def update_location(location={})
36
+ client.update(location)
37
+ end
38
+ end
39
+
@@ -0,0 +1,21 @@
1
+ class GoogleToken < ConsumerToken
2
+ GOOGLE_SETTINGS={
3
+ :site=>"https://www.google.com",
4
+ :request_token_path => "/accounts/OAuthGetRequestToken",
5
+ :authorize_path => "/accounts/OAuthAuthorizeToken",
6
+ :access_token_path => "/accounts/OAuthGetAccessToken",
7
+ }
8
+
9
+ def self.consumer
10
+ @consumer||=create_consumer
11
+ end
12
+
13
+ def self.create_consumer(options={})
14
+ OAuth::Consumer.new credentials[:key],credentials[:secret],GOOGLE_SETTINGS.merge(options)
15
+ end
16
+
17
+ def self.get_request_token(callback_url, scope=nil)
18
+ consumer.get_request_token({:oauth_callback=>callback_url}, :scope=>scope||credentials[:scope]||"http://www-opensocial.googleusercontent.com/api/people")
19
+ end
20
+
21
+ end
@@ -0,0 +1,27 @@
1
+ require 'oauth2'
2
+ class Oauth2Token < ConsumerToken
3
+
4
+ def self.consumer
5
+ @consumer||=create_consumer
6
+ end
7
+
8
+ def self.create_consumer(options={})
9
+ @consumer||=OAuth2::Client.new credentials[:key],credentials[:secret],credentials[:options]
10
+ end
11
+
12
+ def self.authorize_url(callback_url)
13
+ options = {:redirect_uri=>callback_url}
14
+ options[:scope] = credentials[:scope] if credentials[:scope].present?
15
+ consumer.auth_code.authorize_url(options)
16
+ end
17
+
18
+ def self.access_token(user, code, redirect_uri)
19
+ access_token = consumer.auth_code.get_token(code, :redirect_uri => redirect_uri)
20
+ find_or_create_from_access_token user, access_token
21
+ end
22
+
23
+ def client
24
+ @client ||= OAuth2::AccessToken.new self.class.consumer, token
25
+ end
26
+
27
+ end
@@ -0,0 +1,15 @@
1
+ require 'opentransact'
2
+ class OpenTransactToken < ConsumerToken
3
+
4
+ # def self.server
5
+ # @consumer||=OpenTransact::Server.new credentials
6
+ # end
7
+
8
+ # def self.consumer
9
+ # @consumer||=server.consumer
10
+ # end
11
+
12
+ def client
13
+ @client ||= OpenTransact::Client.new self.class.credentials.merge( {:token=>token, :secret=>secret})
14
+ end
15
+ end
@@ -0,0 +1,17 @@
1
+ require File.join(File.dirname(__FILE__),'opentransact_token')
2
+
3
+ class PicomoneyToken < OpenTransactToken
4
+
5
+ def self.credentials
6
+ @credentials||={
7
+ :site=>"https://picomoney.com",
8
+ :consumer_key => super[:key],
9
+ :consumer_secret => super[:secret]
10
+ }.merge(super)
11
+ end
12
+
13
+ def about_user
14
+ client.get("/about_user")
15
+ end
16
+
17
+ end
@@ -0,0 +1,24 @@
1
+ class TwitterToken < ConsumerToken
2
+ TWITTER_SETTINGS={
3
+ :site => "https://api.twitter.com",
4
+ :request_token_path => "/oauth/request_token",
5
+ :authorize_path => "/oauth/authorize",
6
+ :access_token_path => "/oauth/access_token",
7
+ }
8
+
9
+ def self.consumer(options={})
10
+ @consumer ||= OAuth::Consumer.new(credentials[:key], credentials[:secret], TWITTER_SETTINGS.merge(options))
11
+ end
12
+
13
+ def client
14
+ @client ||= begin
15
+ if self.class.credentials[:client].to_sym == :oauth_gem
16
+ super
17
+ else
18
+ require 'twitter'
19
+ Twitter::Client.new(:consumer_key => self.class.consumer.key, :consumer_secret => self.class.consumer.secret)
20
+ end
21
+ end
22
+ end
23
+
24
+ end
@@ -0,0 +1,50 @@
1
+ require 'json'
2
+ module Oauth
3
+ module Models
4
+ module Consumers
5
+ # This is just a simple
6
+ class SimpleClient
7
+ attr_reader :token
8
+
9
+ def initialize(token)
10
+ @token = token
11
+ end
12
+
13
+
14
+ def put(path,params={})
15
+ parse(token.put(path,params, {'Accept' => 'application/json'}))
16
+ end
17
+
18
+ def delete(path)
19
+ parse(token.delete(path, {'Accept' => 'application/json'}))
20
+ end
21
+
22
+ def post(path,params={})
23
+ parse(token.post(path,params, {'Accept' => 'application/json'}))
24
+ end
25
+
26
+ def get(path)
27
+ parse(token.get(path, {'Accept' => 'application/json'}))
28
+ end
29
+
30
+ protected
31
+
32
+ def parse(response)
33
+ return false unless response
34
+ if ["200","201"].include? response.code
35
+ unless response.body.blank?
36
+ JSON.parse(response.body)
37
+ else
38
+ true
39
+ end
40
+ else
41
+ logger.debug "Got Response code: #{response.code}"
42
+ false
43
+ end
44
+
45
+ end
46
+
47
+ end
48
+ end
49
+ end
50
+ end
@@ -0,0 +1,93 @@
1
+ require 'oauth/consumer'
2
+ require File.join(File.dirname(__FILE__), 'simple_client')
3
+
4
+ module Oauth
5
+ module Models
6
+ module Consumers
7
+ module Token
8
+ def self.included(model)
9
+ model.class_eval do
10
+ validates_presence_of :user, :token
11
+ end
12
+
13
+ model.send(:include, InstanceMethods)
14
+ model.send(:extend, ClassMethods)
15
+
16
+ end
17
+
18
+ module ClassMethods
19
+
20
+ def service_name
21
+ @service_name||=self.to_s.underscore.scan(/^(.*?)(_token)?$/)[0][0].to_sym
22
+ end
23
+
24
+ def consumer
25
+ options = credentials[:options] || {}
26
+ @consumer||=OAuth::Consumer.new credentials[:key],credentials[:secret],options
27
+ end
28
+
29
+ def get_request_token(callback_url)
30
+ consumer.get_request_token(:oauth_callback=>callback_url)
31
+ end
32
+
33
+ def find_or_create_from_request_token(user,token,secret,oauth_verifier)
34
+ request_token=OAuth::RequestToken.new consumer,token,secret
35
+ options={}
36
+ options[:oauth_verifier]=oauth_verifier if oauth_verifier
37
+ access_token=request_token.get_access_token options
38
+ find_or_create_from_access_token user, access_token
39
+ end
40
+
41
+ def find_or_create_from_access_token(user,access_token)
42
+ secret = access_token.respond_to?(:secret) ? access_token.secret : nil
43
+ if user
44
+ token = self.find_or_initialize_by_user_id_and_token(user.id, access_token.token)
45
+ else
46
+ token = self.find_or_initialize_by_token(access_token.token)
47
+ end
48
+
49
+ # set or update the secret
50
+ token.secret = secret
51
+ token.save! if token.new_record? or token.changed?
52
+
53
+ token
54
+ end
55
+
56
+ def build_user_from_token
57
+ end
58
+
59
+ def credentials
60
+ @credentials||=OAUTH_CREDENTIALS[service_name]
61
+ end
62
+
63
+ end
64
+
65
+ module InstanceMethods
66
+
67
+ # Main client for interfacing with remote service. Override this to use
68
+ # preexisting library eg. Twitter gem.
69
+ def client
70
+ @client||=OAuth::AccessToken.new self.class.consumer,token,secret
71
+ end
72
+
73
+ def simple_client
74
+ @simple_client||=SimpleClient.new client
75
+ end
76
+
77
+ # Override this to return user data from service
78
+ def params_for_user
79
+ {}
80
+ end
81
+
82
+ def create_user
83
+ self.user ||= begin
84
+ User.new params_for_user
85
+ user.save(:validate=>false)
86
+ end
87
+ end
88
+
89
+ end
90
+ end
91
+ end
92
+ end
93
+ end
@@ -0,0 +1,83 @@
1
+ require 'uri'
2
+
3
+ module OAuth
4
+ module Provider
5
+ class Authorizer
6
+ attr_accessor :user, :params, :app
7
+
8
+ def initialize(user, authorized, params = {})
9
+ @user = user
10
+ @params = params
11
+ @authorized = authorized
12
+ end
13
+
14
+ def app
15
+ @app ||= ::ClientApplication.find_by_key!(params[:client_id])
16
+ end
17
+
18
+ def code
19
+ @code ||= ::Oauth2Verifier.create! :client_application => app,
20
+ :user => @user,
21
+ :scope => @params[:scope],
22
+ :callback_url => @params[:redirect_uri]
23
+ end
24
+
25
+ def token
26
+ @token ||= ::Oauth2Token.create! :client_application => app,
27
+ :user => @user,
28
+ :scope => @params[:scope],
29
+ :callback_url => @params[:redirect_uri]
30
+ end
31
+
32
+ def authorized?
33
+ @authorized == true
34
+ end
35
+
36
+ def redirect_uri
37
+ uri = base_uri
38
+ if params[:response_type] == 'code'
39
+ if uri.query
40
+ uri.query << '&'
41
+ else
42
+ uri.query = ''
43
+ end
44
+ uri.query << encode_response
45
+ else
46
+ uri.fragment = encode_response
47
+ end
48
+ uri.to_s
49
+ end
50
+
51
+ def response
52
+ r = {}
53
+ if ['token','code'].include? params[:response_type]
54
+ if authorized?
55
+ if params[:response_type] == 'code'
56
+ r[:code] = code.token
57
+ else
58
+ r[:access_token] = token.token
59
+ end
60
+ else
61
+ r[:error] = 'access_denied'
62
+ end
63
+ else
64
+ r[:error] = 'unsupported_response_type'
65
+ end
66
+ r[:state] = params[:state] if params[:state]
67
+ r
68
+ end
69
+
70
+ def encode_response
71
+ response.map do |k, v|
72
+ [URI.escape(k.to_s),URI.escape(v)] * "="
73
+ end * "&"
74
+ end
75
+
76
+ protected
77
+
78
+ def base_uri
79
+ URI.parse(params[:redirect_uri] || app.callback_url)
80
+ end
81
+ end
82
+ end
83
+ end
@@ -0,0 +1,93 @@
1
+ require "rack"
2
+ require "rack/request"
3
+ require "oauth"
4
+ require "oauth/request_proxy/rack_request"
5
+
6
+ module OAuth
7
+ module Rack
8
+
9
+ # An OAuth 1.0a filter to be used together with the oauth-plugin for rails.T
10
+ # This is still experimental
11
+ #
12
+ # Add it as middleware to your config/application.rb:
13
+ #
14
+ # require 'oauth/rack/oauth_filter'
15
+ # config.middleware.use OAuth::Rack::OAuthFilter
16
+
17
+ class OAuthFilter
18
+ def initialize(app)
19
+ @app = app
20
+ end
21
+
22
+ def call(env)
23
+ request = ::Rack::Request.new(env)
24
+ env["oauth_plugin"] = true
25
+ strategies = []
26
+ if token_string = oauth2_token(request)
27
+ if token = Oauth2Token.first(:conditions => ['invalidated_at IS NULL AND authorized_at IS NOT NULL and token = ?', token_string])
28
+ env["oauth.token"] = token
29
+ env["oauth.version"] = 2
30
+ strategies << :oauth20_token
31
+ strategies << :token
32
+ end
33
+
34
+ elsif oauth1_verify(request) do |request_proxy|
35
+ client_application = ClientApplication.find_by_key(request_proxy.consumer_key)
36
+ env["oauth.client_application_candidate"] = client_application
37
+
38
+ # Store this temporarily in client_application object for use in request token generation
39
+ client_application.token_callback_url = request_proxy.oauth_callback if request_proxy.oauth_callback
40
+ oauth_token = nil
41
+
42
+ if request_proxy.token
43
+ oauth_token = client_application.tokens.first(:conditions => ['invalidated_at IS NULL AND authorized_at IS NOT NULL and token = ?', request_proxy.token])
44
+ if oauth_token.respond_to?(:provided_oauth_verifier=)
45
+ oauth_token.provided_oauth_verifier = request_proxy.oauth_verifier
46
+ end
47
+ env["oauth.token_candidate"] = oauth_token
48
+ end
49
+ # return the token secret and the consumer secret
50
+ [(oauth_token.nil? ? nil : oauth_token.secret), (client_application.nil? ? nil : client_application.secret)]
51
+ end
52
+ if env["oauth.token_candidate"]
53
+ env["oauth.token"] = env["oauth.token_candidate"]
54
+ strategies << :oauth10_token
55
+ if env["oauth.token"].is_a?(::RequestToken)
56
+ strategies << :oauth10_request_token
57
+ elsif env["oauth.token"].is_a?(::AccessToken)
58
+ strategies << :token
59
+ strategies << :oauth10_access_token
60
+ end
61
+ else
62
+ strategies << :two_legged
63
+ end
64
+ env["oauth.client_application"] = env["oauth.client_application_candidate"]
65
+ env["oauth.version"] = 1
66
+
67
+ end
68
+ env["oauth.strategies"] = strategies unless strategies.empty?
69
+ env["oauth.client_application_candidate"] = nil
70
+ env["oauth.token_candidate"] = nil
71
+ @app.call(env)
72
+ end
73
+
74
+ def oauth1_verify(request, options = {}, &block)
75
+ begin
76
+ signature = OAuth::Signature.build(request, options, &block)
77
+ return false unless OauthNonce.remember(signature.request.nonce, signature.request.timestamp)
78
+ value = signature.verify
79
+ value
80
+ rescue OAuth::Signature::UnknownSignatureMethod => e
81
+ false
82
+ end
83
+ end
84
+
85
+ def oauth2_token(request)
86
+ request.params['bearer_token'] || request.params['access_token'] || (request.params["oauth_token"] && !request.params["oauth_signature"] ? request.params["oauth_token"] : nil ) ||
87
+ request.env["HTTP_AUTHORIZATION"] &&
88
+ !request.env["HTTP_AUTHORIZATION"][/(oauth_version="1.0")/] &&
89
+ request.env["HTTP_AUTHORIZATION"][/^(Bearer|OAuth|Token) (token=)?([^\s]*)$/, 3]
90
+ end
91
+ end
92
+ end
93
+ end