panjiva-oauth2 0.4.1

checksums.yaml

@@ -0,0 +1,15 @@
+---
+!binary "U0hBMQ==":
+  metadata.gz: !binary |-
+    ZTRiNmRhZTJhZjVlNTY5ZDU1MDQzZjEyNDg1NzRhM2QyYWJlOTIxMw==
+  data.tar.gz: !binary |-
+    NTI0MjQ4MzBkYTlmM2ExZTZjZDg5ODgzMDZiYjZhMjUyZWM4M2RmMw==
+SHA512:
+  metadata.gz: !binary |-
+    MTJkYTgzNjM2MTQ3YzVkYTk0YTNhNDFmZDQwZjNlNmE2NjBmM2I4Y2RhMWI1
+    Njk0NjA1N2ViZjI0NzA3Njc2NDkwMTY0OThmM2ZkMjFjNTQzZjY5NmZlNTEw
+    Y2NkNTdmYTEyOWFjMzJkMGRjNGRjMGI2NWM2YWRjZTAyYTBmMjI=
+  data.tar.gz: !binary |-
+    OTFiNzYwMDY4ZWQxZWEwMzBmYmM4YThiOTM0ZTA5OTk3ZGY2OTBmYmYyOGEy
+    MTYyYTkyZWE3YjA5ZGY2OWJmOGMyYTY1ZTJmMmQ4OTlmMmU0ZGZjYzMzZTc2
+    NDkyYTVhMWVkMjAxMmI4M2M5NTZlMGJjZDU4MWJhYjRhZjVhYWM=

data/.document

@@ -0,0 +1,5 @@
+README.rdoc
+lib/**/*.rb
+bin/*
+features/**/*.feature
+LICENSE

data/.gitignore

@@ -0,0 +1,35 @@
+.rvmrc
+/live
+
+## MAC OS
+.DS_Store
+
+## TEXTMATE
+*.tmproj
+tmtags
+
+## EMACS
+*~
+\#*
+.\#*
+
+## VIM
+*.swp
+
+## PROJECT::GENERAL
+coverage
+doc
+rdoc
+log
+
+## BUNDLER
+*.gem
+.bundle
+pkg
+Gemfile.lock
+
+## RCOV
+coverage.data
+
+## PROJECT::SPECIFIC
+.svn

data/.rspec

@@ -0,0 +1,3 @@
+--color
+--format=nested
+--backtrace

data/.travis.yml

@@ -0,0 +1,7 @@
+rvm:
+  - 1.8.7
+  - 1.9.1
+  - 1.9.2
+  - jruby
+  - rbx
+  - ree

data/CHANGELOG.md

@@ -0,0 +1,21 @@
+# CHANGELOG
+
+* [0.4.1 - April 20, 2011](https://github.com/intridea/oauth2/compare/v0.4.0...v0.4.1)
+* [0.4.0 - April 20, 2011](https://github.com/intridea/oauth2/compare/v0.3.0...v0.4.0)
+* [0.3.0 - April 8, 2011](https://github.com/intridea/oauth2/compare/v0.2.0...v0.3.0)
+* [0.2.0 - April 1, 2011](https://github.com/intridea/oauth2/compare/v0.1.1...v0.2.0)
+* [0.1.1 - January 12, 2011](https://github.com/intridea/oauth2/compare/v0.1.0...v0.1.1)
+* [0.1.0 - October 13, 2010](https://github.com/intridea/oauth2/compare/v0.0.13...v0.1.0)
+* [0.0.13 - August 17, 2010](https://github.com/intridea/oauth2/compare/v0.0.12...v0.0.13)
+* [0.0.12 - August 17, 2010](https://github.com/intridea/oauth2/compare/v0.0.11...v0.0.12)
+* [0.0.11 - August 17, 2010](https://github.com/intridea/oauth2/compare/v0.0.10...v0.0.11)
+* [0.0.10 - June 19, 2010](https://github.com/intridea/oauth2/compare/v0.0.9...v0.0.10)
+* [0.0.9 - June 18, 2010](https://github.com/intridea/oauth2/compare/v0.0.8...v0.0.9)
+* [0.0.8 - April 27, 2010](https://github.com/intridea/oauth2/compare/v0.0.7...v0.0.8)
+* [0.0.7 - April 27, 2010](https://github.com/intridea/oauth2/compare/v0.0.6...v0.0.7)
+* [0.0.6 - April 25, 2010](https://github.com/intridea/oauth2/compare/v0.0.5...v0.0.6)
+* [0.0.5 - April 23, 2010](https://github.com/intridea/oauth2/compare/v0.0.4...v0.0.5)
+* [0.0.4 - April 22, 2010](https://github.com/intridea/oauth2/compare/v0.0.3...v0.0.4)
+* [0.0.3 - April 22, 2010](https://github.com/intridea/oauth2/compare/v0.0.2...v0.0.3)
+* [0.0.2 - April 22, 2010](https://github.com/intridea/oauth2/compare/v0.0.1...v0.0.2)
+* [0.0.1 - April 22, 2010](https://github.com/intridea/oauth2/compare/311d9f42e52b832119170d90e818f0f0b0078851...v0.0.1)

data/Gemfile

@@ -0,0 +1,3 @@
+source "http://rubygems.org"
+
+gemspec

data/LICENSE.md

@@ -0,0 +1,20 @@
+Copyright (c) 2011 Intridea, Inc. and Michael Bleigh
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,102 @@
+OAuth2 Fork (version 0.4.1 - OUT OF DATE)
+=========================================
+
+changelog: relaxed 0.8 > version dependency for faraday 
+-------------------------------------------------------
+
+
+OAuth2
+======
+A Ruby wrapper for the OAuth 2.0 specification. This is a work in progress, being built first to solve the pragmatic process of connecting to existing OAuth 2.0 endpoints (a.k.a. Facebook) with the goal of building it up to meet the entire specification over time.
+
+Installation
+------------
+    gem install oauth2
+
+Continuous Integration
+----------------------
+[![Build Status](http://travis-ci.org/intridea/oauth2.png)](http://travis-ci.org/intridea/oauth2)
+
+Resources
+---------
+* View Source on GitHub (https://github.com/intridea/oauth2)
+* Report Issues on GitHub (https://github.com/intridea/oauth2/issues)
+* Read More at the Wiki (https://wiki.github.com/intridea/oauth2)
+
+Web Server Example (Sinatra)
+----------------------------
+Below is a fully functional example of a Sinatra application that would authenticate to Facebook utilizing the OAuth 2.0 web server flow.
+
+    require 'rubygems'
+    require 'sinatra'
+    require 'oauth2'
+    require 'json'
+    
+    def client
+      OAuth2::Client.new('app_id', 'app_secret', :site => 'https://graph.facebook.com')
+    end
+    
+    get '/auth/facebook' do
+      redirect client.web_server.authorize_url(
+        :redirect_uri => redirect_uri,
+        :scope => 'email,offline_access'
+      )
+    end
+    
+    get '/auth/facebook/callback' do
+      access_token = client.web_server.get_access_token(params[:code], :redirect_uri => redirect_uri)
+      user = JSON.parse(access_token.get('/me'))
+      user.inspect
+    end
+    
+    def redirect_uri
+      uri = URI.parse(request.url)
+      uri.path = '/auth/facebook/callback'
+      uri.query = nil
+      uri.to_s
+    end
+
+That's all there is to it! You can use the access token like you would with the
+OAuth gem, calling HTTP verbs on it etc. You can view more examples on the [OAuth2
+Wiki](http://wiki.github.com/intridea/oauth2/examples).
+
+JSON Parsing
+------------
+Because JSON has become the standard format of the OAuth 2.0 specification,
+the <tt>oauth2</tt> gem contains a mode that will perform automatic parsing
+of JSON response bodies, returning a hash instead of a string. To enable this
+mode, simply add the <tt>:parse_json</tt> option to your client initialization:
+
+    client = OAuth2::Client.new(
+      'app_id',
+      'app_secret',
+      :site => 'https://example.com',
+      :parse_json => true,
+    )
+    
+    # Obtain an access token using the client
+    token.get('/some/url.json') #=> {"some" => "hash"}
+
+Testing
+-------
+To use the OAuth2 client for testing error conditions do:
+
+    my_client.raise_errors = false
+
+It will then return the error status and response instead of raising an exception.
+
+Note on Patches/Pull Requests
+-----------------------------
+1. Fork the project.
+2. Create a topic branch.
+3. Implement your feature or bug fix.
+4. Add documentation for your feature or bug fix.
+5. Add specs for your feature or bug fix.
+6. Run <tt>bundle exec rake spec</tt>. If your changes are not 100% covered, go back to step 5.
+7. Commit and push your changes.
+8. Submit a pull request. Please do not include changes to the [gemspec](https://github.com/intridea/oauth2/blob/master/oauth2.gemspec), [version](https://github.com/intridea/oauth2/blob/master/lib/oauth2/version.rb), or [changelog](https://github.com/intridea/oauth2/blob/master/CHANGELOG.md) file. (If you want to create your own version for some reason, please do so in a separate commit.)
+
+Copyright
+---------
+Copyright (c) 2011 Intridea, Inc. and Michael Bleigh.
+See [LICENSE](https://github.com/intridea/oauth2/blob/master/LICENSE.md) for details.

data/Rakefile

@@ -0,0 +1,16 @@
+require 'bundler'
+Bundler::GemHelper.install_tasks
+
+require 'rspec/core/rake_task'
+RSpec::Core::RakeTask.new(:spec)
+
+task :default => :spec
+task :test => :spec
+
+require 'rake/rdoctask'
+Rake::RDocTask.new do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title = "oauth2 #{OAuth2::VERSION}"
+  rdoc.rdoc_files.include('README*')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end

data/lib/oauth2.rb

@@ -0,0 +1,13 @@
+module OAuth2
+  class ErrorWithResponse < StandardError; attr_accessor :response end
+  class AccessDenied < ErrorWithResponse; end
+  class Conflict < ErrorWithResponse; end
+  class HTTPError < ErrorWithResponse; end
+end
+
+require 'oauth2/client'
+require 'oauth2/strategy/base'
+require 'oauth2/strategy/web_server'
+require 'oauth2/strategy/password'
+require 'oauth2/access_token'
+require 'oauth2/response_object'

data/lib/oauth2/access_token.rb

@@ -0,0 +1,53 @@
+module OAuth2
+  class AccessToken
+    attr_reader :client, :token, :refresh_token, :expires_in, :expires_at, :params
+    attr_accessor :token_param
+
+    def initialize(client, token, refresh_token=nil, expires_in=nil, params={})
+      @client = client
+      @token = token.to_s
+      @refresh_token = refresh_token.to_s
+      @expires_in = (expires_in.nil? || expires_in == '') ? nil : expires_in.to_i
+      @expires_at = Time.now + @expires_in if @expires_in
+      @params = params
+      @token_param = 'oauth_token'
+    end
+
+    def [](key)
+      @params[key]
+    end
+
+    # True if the token in question has an expiration time.
+    def expires?
+      !!@expires_in
+    end
+
+    def expired?
+      expires? && expires_at < Time.now
+    end
+
+    def request(verb, path, params={}, headers={})
+      if params.instance_of?(Hash)
+        params = params.merge token_param => @token
+      end
+      headers = headers.merge 'Authorization' => "OAuth #{@token}"
+      @client.request(verb, path, params, headers)
+    end
+
+    def get(path, params={}, headers={})
+      request(:get, path, params, headers)
+    end
+
+    def post(path, params={}, headers={})
+      request(:post, path, params, headers)
+    end
+
+    def put(path, params={}, headers={})
+      request(:put, path, params, headers)
+    end
+
+    def delete(path, params={}, headers={})
+      request(:delete, path, params, headers)
+    end
+  end
+end

data/lib/oauth2/client.rb

@@ -0,0 +1,105 @@
+require 'faraday'
+
+module OAuth2
+  class Client
+    attr_accessor :id, :secret, :site, :connection, :options, :raise_errors, :token_method
+    attr_writer :json
+
+    # Instantiate a new OAuth 2.0 client using the
+    # client ID and client secret registered to your
+    # application.
+    #
+    # Options:
+    #
+    # <tt>:site</tt> :: Specify a base URL for your OAuth 2.0 client.
+    # <tt>:authorize_path</tt> :: Specify the path to the authorization endpoint.
+    # <tt>:authorize_url</tt> :: Specify a full URL of the authorization endpoint.
+    # <tt>:access_token_path</tt> :: Specify the path to the access token endpoint.
+    # <tt>:access_token_method</tt> :: Specify the method to use for token endpoints, can be :get or :post
+    # (note: for Facebook this should be :get and for Google this should be :post)
+    # <tt>:access_token_url</tt> :: Specify the full URL of the access token endpoint.
+    # <tt>:parse_json</tt> :: If true, <tt>application/json</tt> responses will be automatically parsed.
+    # <tt>:ssl</tt> :: Specify SSL options for the connection.
+    # <tt>:adapter</tt> :: The name of the Faraday::Adapter::* class to use, e.g. :net_http. To pass arguments
+    # to the adapter pass an array here, e.g. [:action_dispatch, my_test_session]
+    # <tt>:raise_errors</tt> :: Default true. When false it will then return the error status and response instead of raising an exception.
+    def initialize(client_id, client_secret, opts={})
+      self.options      = opts.dup
+      self.token_method = self.options.delete(:access_token_method) || :post
+      adapter           = self.options.delete(:adapter)
+      ssl_opts          = self.options.delete(:ssl) || {}
+      connection_opts   = ssl_opts ? {:ssl => ssl_opts} : {}
+      self.id           = client_id
+      self.secret       = client_secret
+      self.site         = self.options.delete(:site) if self.options[:site]
+      self.connection   = Faraday::Connection.new(site, connection_opts)
+      self.json         = self.options.delete(:parse_json)
+      self.raise_errors = !(self.options.delete(:raise_errors) == false)
+
+      if adapter && adapter != :test
+        connection.build do |b|
+          b.adapter(*[adapter].flatten)
+        end
+      end
+    end
+
+    def authorize_url(params=nil)
+      path = options[:authorize_url] || options[:authorize_path] || "/oauth/authorize"
+      connection.build_url(path, params).to_s
+    end
+
+    def access_token_url(params=nil)
+      path = options[:access_token_url] || options[:access_token_path] || "/oauth/access_token"
+      connection.build_url(path, params).to_s
+    end
+
+    # Makes a request relative to the specified site root.
+    def request(verb, url, params={}, headers={})
+      if (verb == :get) || (verb == :delete)
+        resp = connection.run_request(verb, url, nil, headers) do |req|
+          req.params.update(params)
+        end
+      else
+        resp = connection.run_request(verb, url, params, headers)
+      end
+
+      if raise_errors
+        case resp.status
+          when 200...299
+            return response_for(resp)
+          when 302
+            return request(verb, resp.headers['location'], params, headers)
+          when 401
+            e = OAuth2::AccessDenied.new("Received HTTP 401 during request.")
+            e.response = resp
+            raise e
+          when 409
+            e = OAuth2::Conflict.new("Received HTTP 409 during request.")
+            e.response = resp
+            raise e
+          else
+            e = OAuth2::HTTPError.new("Received HTTP #{resp.status} during request.")
+            e.response = resp
+            raise e
+        end
+      else
+        response_for resp
+      end
+    end
+
+    def json?; !!@json end
+
+    def web_server; OAuth2::Strategy::WebServer.new(self) end
+    def password; OAuth2::Strategy::Password.new(self) end
+
+    private
+
+    def response_for(resp)
+      if json?
+        return ResponseObject.from(resp)
+      else
+        return ResponseString.new(resp)
+      end
+    end
+  end
+end

data/lib/oauth2/response_object.rb

@@ -0,0 +1,58 @@
+module OAuth2
+  module ResponseObject
+    def self.from(response)
+      object = MultiJson.decode(response.body)
+
+      case object
+        when Array
+          ResponseArray.new(response, object)
+        when Hash
+          ResponseHash.new(response, object)
+        else
+          ResponseString.new(response)
+      end
+    rescue
+      ResponseString.new(response)
+    end
+
+    def self.included(base)
+      base.class_eval do
+        attr_accessor :response
+      end
+    end
+
+    def headers; response.headers end
+    def status; response.status end
+  end
+
+  class ResponseHash < Hash
+    include ResponseObject
+
+    def initialize(response, hash)
+      self.response = response
+      hash.keys.each{|k| self[k] = hash[k]}
+    end
+  end
+
+  class ResponseArray < Array
+    include ResponseObject
+
+    def initialize(response, array)
+      self.response = response
+      super(array)
+    end
+  end
+
+  # This special String class is returned from HTTP requests
+  # and contains the original full response along with convenience
+  # methods for accessing the HTTP status code and headers. It
+  # is returned from all access token requests.
+  class ResponseString < String
+    include ResponseObject
+
+    def initialize(response)
+      super(response.body.to_s)
+      self.response = response
+    end
+  end
+end

data/lib/oauth2/strategy/base.rb

@@ -0,0 +1,38 @@
+module OAuth2
+  module Strategy
+    class Base #:nodoc:
+      def initialize(client)#:nodoc:
+        @client = client
+      end
+
+      def authorize_url(options={}) #:nodoc:
+        @client.authorize_url(authorize_params(options))
+      end
+
+      def authorize_params(options={}) #:nodoc:
+        options = options.inject({}){|h, (k, v)| h[k.to_s] = v; h}
+        {'client_id' => @client.id}.merge(options)
+      end
+
+      def access_token_url(options={})
+        @client.access_token_url(access_token_params(options))
+      end
+
+      def access_token_params(options={})
+        return default_params(options)
+      end
+
+      def refresh_token_params(options={})
+        return default_params(options)
+      end
+
+      private
+      def default_params(options={})
+        {
+          'client_id' => @client.id,
+          'client_secret' => @client.secret
+        }.merge(options)
+      end
+    end
+  end
+end

data/lib/oauth2/strategy/password.rb

@@ -0,0 +1,38 @@
+require 'multi_json'
+
+module OAuth2
+  module Strategy
+    class Password < Base
+      def authorize_url
+        raise NotImplementedError, "The authorization endpoint is not used in this strategy"
+      end
+      # Retrieve an access token given the specified validation code.
+      # Note that you must also provide a <tt>:redirect_uri</tt> option
+      # in order to successfully verify your request for most OAuth 2.0
+      # endpoints.
+      def get_access_token(username, password, options={})
+        response = @client.request(:post, @client.access_token_url, access_token_params(username, password, options))
+
+        params   = MultiJson.decode(response) rescue nil
+        # the ActiveSupport JSON parser won't cause an exception when
+        # given a formencoded string, so make sure that it was
+        # actually parsed in an Hash. This covers even the case where
+        # it caused an exception since it'll still be nil.
+        params   = Rack::Utils.parse_query(response) unless params.is_a? Hash
+
+        access   = params.delete('access_token')
+        refresh  = params.delete('refresh_token')
+        expires_in = params.delete('expires_in')
+        OAuth2::AccessToken.new(@client, access, refresh, expires_in, params)
+      end
+
+      def access_token_params(username, password, options={}) #:nodoc:
+        super(options).merge({
+          'grant_type'  => 'password',
+          'username'    => username,
+          'password'    => password
+        })
+      end
+    end
+  end
+end

data/lib/oauth2/strategy/web_server.rb

@@ -0,0 +1,58 @@
+require 'multi_json'
+
+module OAuth2
+  module Strategy
+    class WebServer < Base
+      def authorize_params(options={}) #:nodoc:
+        super(options).merge('response_type' => 'code')
+      end
+
+      # Retrieve an access token given the specified validation code.
+      # Note that you must also provide a <tt>:redirect_uri</tt> option
+      # in order to successfully verify your request for most OAuth 2.0
+      # endpoints.
+      def get_access_token(code, options={})
+        response = @client.request(@client.token_method, @client.access_token_url, access_token_params(code, options))
+        parse_response(response)
+      end
+
+      def refresh_access_token(refresh_token, options={})
+        response = @client.request(@client.token_method, @client.access_token_url, refresh_token_params(refresh_token, options))
+        parse_response(response, refresh_token)
+      end
+
+      def access_token_params(code, options={}) #:nodoc:
+        super(options).merge({
+          'grant_type' => 'authorization_code',
+          'code' => code,
+        })
+      end
+
+      def refresh_token_params(refresh_token, options={}) #:nodoc:
+        super(options).merge({
+          'grant_type' => 'refresh_token',
+          'refresh_token' => refresh_token,
+        })
+      end
+
+      def parse_response(response, refresh_token = nil)
+        if response.is_a? Hash
+          params = response
+        else
+          params = MultiJson.decode(response) rescue nil
+          # the ActiveSupport JSON parser won't cause an exception when
+          # given a formencoded string, so make sure that it was
+          # actually parsed in an Hash. This covers even the case where
+          # it caused an exception since it'll still be nil.
+          params = Rack::Utils.parse_query(response) unless params.is_a? Hash
+        end
+
+        access = params.delete('access_token')
+        refresh = params.delete('refresh_token') || refresh_token
+        # params['expires'] is only for Facebook
+        expires_in = params.delete('expires_in') || params.delete('expires')
+        OAuth2::AccessToken.new(@client, access, refresh, expires_in, params)
+      end
+    end
+  end
+end

data/lib/oauth2/version.rb

@@ -0,0 +1,3 @@
+module OAuth2
+  VERSION = "0.4.1"
+end

data/oauth2.gemspec

@@ -0,0 +1,24 @@
+# -*- encoding: utf-8 -*-
+require File.expand_path("../lib/oauth2/version", __FILE__)
+
+Gem::Specification.new do |s|
+  s.name = "panjiva-oauth2"
+  s.version = OAuth2::VERSION
+  s.required_rubygems_version = Gem::Requirement.new(">= 1.3.6") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Michael Bleigh"]
+  s.description = %q{A Ruby wrapper for the OAuth 2.0 protocol built with a similar style to the original OAuth gem.}
+  s.summary = %q{A Ruby wrapper for the OAuth 2.0 protocol.}
+  s.email = "michael@intridea.com"
+  s.homepage = "http://github.com/intridea/oauth2"
+  s.require_paths = ["lib"]
+  s.executables = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
+  s.files = `git ls-files`.split("\n")
+  s.test_files = `git ls-files -- {test,spec,features}/*`.split("\n")
+  s.add_runtime_dependency("faraday", ">= 0.6.1")
+  s.add_runtime_dependency("multi_json", ">= 0.0.5")
+  s.add_development_dependency("json_pure", "~> 1.5")
+  s.add_development_dependency("rake", "~> 0.8")
+  s.add_development_dependency("simplecov", "~> 0.4")
+  s.add_development_dependency("rspec", "~> 2.5")
+  s.add_development_dependency("ZenTest", "~> 4.5")
+end

data/spec/oauth2/access_token_spec.rb

@@ -0,0 +1,90 @@
+require 'spec_helper'
+
+describe OAuth2::AccessToken do
+  let(:client) do
+    cli = OAuth2::Client.new('abc', 'def', :site => 'https://api.example.com')
+    cli.connection.build do |b|
+      b.adapter :test do |stub|
+        stub.get('/client?oauth_token=monkey')    {|env| [200, {}, 'get']}
+        stub.post('/client')                      {|env| [200, {}, 'oauth_token=' << env[:body]['oauth_token']]}
+        stub.get('/empty_get?oauth_token=monkey') {|env| [204, {},  nil]}
+        stub.put('/client')                       {|env| [200, {}, 'oauth_token=' << env[:body]['oauth_token']]}
+        stub.delete('/client?oauth_token=monkey') {|env| [200, {}, 'delete']}
+      end
+    end
+    cli
+  end
+
+  let(:token) {'monkey'}
+
+  subject {OAuth2::AccessToken.new(client, token)}
+
+  describe '#initialize' do
+    it 'should assign client and token' do
+      subject.client.should == client
+      subject.token.should  == token
+    end
+
+    it 'should assign extra params' do
+      target = OAuth2::AccessToken.new(client, token, nil, nil, {'foo' => 'bar'})
+      target.params.should include('foo')
+      target.params['foo'].should == 'bar'
+    end
+
+    %w(get delete).each do |http_method|
+      it "makes #{http_method.upcase} requests with access token" do
+        subject.send(http_method.to_sym, 'client').should == http_method
+      end
+    end
+
+    %w(post put).each do |http_method|
+      it "makes #{http_method.upcase} requests with access token" do
+        subject.send(http_method.to_sym, 'client').should == 'oauth_token=monkey'
+      end
+    end
+    
+    it "works with a null response body" do
+      subject.get('empty_get').should == ''
+    end
+  end
+
+  describe '#expires?' do
+    it 'should be false if there is no expires_at' do
+      OAuth2::AccessToken.new(client, token).should_not be_expires
+    end
+
+    it 'should be true if there is an expires_at' do
+      OAuth2::AccessToken.new(client, token, 'abaca', 600).should be_expires
+    end
+  end
+
+  describe '#expires_at' do
+    before do
+      @now = Time.now
+      Time.stub!(:now).and_return(@now)
+    end
+
+    subject{OAuth2::AccessToken.new(client, token, 'abaca', 600)}
+
+    it 'should be a time representation of #expires_in' do
+      subject.expires_at.should == (@now + 600)
+    end
+  end
+
+  describe '#expired?' do
+    it 'should be false if there is no expires_at' do
+      OAuth2::AccessToken.new(client, token).should_not be_expired
+    end
+
+    it 'should be false if expires_at is in the future' do
+      OAuth2::AccessToken.new(client, token, 'abaca', 10800).should_not be_expired
+    end
+
+    it 'should be true if expires_at is in the past' do
+      access = OAuth2::AccessToken.new(client, token, 'abaca', 600)
+      @now = Time.now + 10800
+      Time.stub!(:now).and_return(@now)
+      access.should be_expired
+    end
+  end
+end

data/spec/oauth2/client_spec.rb

@@ -0,0 +1,168 @@
+require 'spec_helper'
+
+describe OAuth2::Client do
+  subject do
+    cli = OAuth2::Client.new('abc', 'def', :site => 'https://api.example.com')
+    cli.connection.build do |b|
+      b.adapter :test do |stub|
+        stub.get('/success')      {|env| [200, {'Content-Type' => 'text/awesome'}, 'yay']}
+        stub.get('/unauthorized') {|env| [401, {'Content-Type' => 'text/plain'}, 'not authorized']}
+        stub.get('/conflict')    {|env| [409, {'Content-Type' => 'text/plain'}, 'not authorized']}
+        stub.get('/redirect')     {|env| [302, {'Content-Type' => 'text/plain', 'location' => '/success' }, '']}
+        stub.get('/error')        {|env| [500, {}, '']}
+        stub.get('/json')         {|env| [200, {'Content-Type' => 'application/json; charset=utf8'}, '{"abc":"def"}']}
+      end
+    end
+    cli
+  end
+
+  describe '#initialize' do
+    it 'should assign id and secret' do
+      subject.id.should == 'abc'
+      subject.secret.should == 'def'
+    end
+
+    it 'should assign site from the options hash' do
+      subject.site.should == 'https://api.example.com'
+    end
+
+    it 'should assign Faraday::Connection#host' do
+      subject.connection.host.should == 'api.example.com'
+    end
+
+    it 'should leave Faraday::Connection#ssl unset' do
+      subject.connection.ssl.should == {}
+    end
+
+    it "should be able to pass parameters to the adapter, e.g. Faraday::Adapter::ActionDispatch" do
+      connection = stub('connection')
+      Faraday::Connection.stub(:new => connection)
+      session = stub('session', :to_ary => nil)
+      builder = stub('builder')
+      connection.stub(:build).and_yield(builder)
+
+      builder.should_receive(:adapter).with(:action_dispatch, session)
+
+      OAuth2::Client.new('abc', 'def', :adapter => [:action_dispatch, session])
+    end
+
+    it "defaults raise_errors to true" do
+      subject.raise_errors.should be_true
+    end
+
+    it "allows true/false for raise_errors option" do
+      client = OAuth2::Client.new('abc', 'def', :site => 'https://api.example.com', :raise_errors => false)
+      client.raise_errors.should be_false
+      client = OAuth2::Client.new('abc', 'def', :site => 'https://api.example.com', :raise_errors => true)
+      client.raise_errors.should be_true
+    end
+
+    it "allows get/post for access_token_method option" do
+      client = OAuth2::Client.new('abc', 'def', :site => 'https://api.example.com', :access_token_method => :get)
+      client.token_method.should == :get
+      client = OAuth2::Client.new('abc', 'def', :site => 'https://api.example.com', :access_token_method => :post)
+      client.token_method.should == :post
+    end
+  end
+
+  %w(authorize access_token).each do |path_type|
+    describe "##{path_type}_url" do
+      it "should default to a path of /oauth/#{path_type}" do
+        subject.send("#{path_type}_url").should == "https://api.example.com/oauth/#{path_type}"
+      end
+
+      it "should be settable via the :#{path_type}_path option" do
+        subject.options[:"#{path_type}_path"] = '/oauth/custom'
+        subject.send("#{path_type}_url").should == 'https://api.example.com/oauth/custom'
+      end
+
+      it "should be settable via the :#{path_type}_url option" do
+        subject.options[:"#{path_type}_url"] = 'https://abc.com/authorize'
+        subject.send("#{path_type}_url").should == 'https://abc.com/authorize'
+      end
+    end
+  end
+
+  describe "#request" do
+    it "returns ResponseString on successful response" do
+      response = subject.request(:get, '/success', {}, {})
+      response.should == 'yay'
+      response.status.should == 200
+      response.headers.should == {'Content-Type' => 'text/awesome'}
+    end
+
+    it "follows redirects properly" do
+      response = subject.request(:get, '/redirect', {}, {})
+      response.should == 'yay'
+      response.status.should == 200
+      response.headers.should == {'Content-Type' => 'text/awesome'}
+    end
+
+    it "returns ResponseString on error if raise_errors is false" do
+      subject.raise_errors = false
+      response = subject.request(:get, '/unauthorized', {}, {})
+
+      response.should == 'not authorized'
+      response.status.should == 401
+      response.headers.should == {'Content-Type' => 'text/plain'}
+    end
+
+    it "raises OAuth2::AccessDenied on 401 response" do
+      lambda {subject.request(:get, '/unauthorized', {}, {})}.should raise_error(OAuth2::AccessDenied)
+    end
+
+    it "raises OAuth2::Conflict on 409 response" do
+      lambda {subject.request(:get, '/conflict', {}, {})}.should raise_error(OAuth2::Conflict)
+    end
+
+    it "raises OAuth2::HTTPError on error response" do
+      lambda {subject.request(:get, '/error', {}, {})}.should raise_error(OAuth2::HTTPError)
+    end
+  end
+
+  it '#web_server should instantiate a WebServer strategy with this client' do
+    subject.web_server.should be_kind_of(OAuth2::Strategy::WebServer)
+  end
+
+  context 'with JSON parsing' do
+    before do
+      subject.json = true
+    end
+
+    describe '#request' do
+      it 'should return a response hash' do
+        response = subject.request(:get, '/json')
+        puts response.inspect
+        response.should be_kind_of(OAuth2::ResponseHash)
+        response['abc'].should == 'def'
+      end
+
+      it 'should only try to decode application/json' do
+        subject.request(:get, '/success').should == 'yay'
+      end
+    end
+
+    it 'should set json? based on the :parse_json option' do
+      OAuth2::Client.new('abc', 'def', :site => 'http://example.com', :parse_json => true).should be_json
+      OAuth2::Client.new('abc', 'def', :site => 'http://example.com', :parse_json => false).should_not be_json
+    end
+
+    after do
+      subject.json = false
+    end
+  end
+
+  context 'with SSL options' do
+    subject do
+      cli = OAuth2::Client.new('abc', 'def', :site => 'https://api.example.com', :ssl => {:ca_file => 'foo.pem'})
+      cli.connection.build do |b|
+        b.adapter :test
+      end
+      cli
+    end
+
+    it 'should pass the SSL options along to Faraday::Connection#ssl' do
+      subject.connection.ssl.should == {:ca_file => 'foo.pem'}
+    end
+  end
+end

data/spec/oauth2/strategy/base_spec.rb

@@ -0,0 +1,7 @@
+require 'spec_helper'
+
+describe OAuth2::Strategy::Base do
+  it 'should initialize with a Client' do
+    lambda{OAuth2::Strategy::Base.new(OAuth2::Client.new('abc', 'def'))}.should_not raise_error
+  end
+end

data/spec/oauth2/strategy/password_spec.rb

@@ -0,0 +1,57 @@
+require 'spec_helper'
+
+describe OAuth2::Strategy::Password do
+  let(:client) do
+    cli = OAuth2::Client.new('abc', 'def', :site => 'http://api.example.com')
+    cli.connection.build do |b|
+      b.adapter :test do |stub|
+        stub.post('/oauth/access_token') do |env|
+          case @mode
+            when "formencoded"
+              [200, {}, 'expires_in=600&access_token=salmon&refresh_token=trout']
+            when "json"
+              [200, {}, '{"expires_in":600,"access_token":"salmon","refresh_token":"trout"}']
+          end
+        end
+      end
+    end
+    cli
+  end
+  subject {client.password}
+
+  describe "#authorize_url" do
+    it "should raise NotImplementedError" do
+      lambda {subject.authorize_url}.should raise_error(NotImplementedError)
+    end
+  end
+
+  %w(json formencoded).each do |mode|
+    describe "#get_access_token (#{mode})" do
+      before do
+        @mode = mode
+        @access = subject.get_access_token('username', 'password')
+      end
+
+      it 'returns AccessToken with same Client' do
+        @access.client.should == client
+      end
+
+      it 'returns AccessToken with #token' do
+        @access.token.should == 'salmon'
+      end
+
+      it 'returns AccessToken with #refresh_token' do
+        @access.refresh_token.should == 'trout'
+      end
+
+      it 'returns AccessToken with #expires_in' do
+        @access.expires_in.should == 600
+      end
+
+      it 'returns AccessToken with #expires_at' do
+        @access.expires_at.should be_kind_of(Time)
+      end
+    end
+  end
+
+end

data/spec/oauth2/strategy/web_server_spec.rb

@@ -0,0 +1,138 @@
+require 'spec_helper'
+
+describe OAuth2::Strategy::WebServer do
+  let(:client) do
+    cli = OAuth2::Client.new('abc', 'def', :site => 'http://api.example.com')
+    cli.connection.build do |b|
+      b.adapter :test do |stub|
+        stub.get('/oauth/access_token?client_id=abc&client_secret=def&code=sushi&grant_type=authorization_code') do |env|
+          case @mode
+          when "formencoded"
+            [200, {}, 'expires_in=600&access_token=salmon&refresh_token=trout&extra_param=steve']
+          when "json"
+            [200, {}, '{"expires_in":600,"access_token":"salmon","refresh_token":"trout","extra_param":"steve"}']
+          when "from_facebook"
+            [200, {}, 'expires=600&access_token=salmon&refresh_token=trout&extra_param=steve']
+          end
+        end
+        stub.post('/oauth/access_token', { 'client_id' => 'abc', 'client_secret' => 'def', 'code' => 'sushi', 'grant_type' => 'authorization_code' }) do |env|
+          case @mode
+          when "formencoded"
+            [200, {}, 'expires_in=600&access_token=salmon&refresh_token=trout&extra_param=steve']
+          when "json"
+            [200, {}, '{"expires_in":600,"access_token":"salmon","refresh_token":"trout","extra_param":"steve"}']
+          when "from_facebook"
+            [200, {}, 'expires=600&access_token=salmon&refresh_token=trout&extra_param=steve']
+          end
+        end
+        stub.get('/oauth/access_token?client_id=abc&client_secret=def&grant_type=refresh_token&refresh_token=trout') do |env|
+          case @mode
+          when "formencoded"
+            [200, {}, 'expires_in=600&access_token=tuna']
+          when "json"
+            [200, {}, '{"expires_in":600,"access_token":"tuna"}']
+          end
+        end
+        stub.post('/oauth/access_token', { 'client_id' => 'abc', 'client_secret' => 'def', 'refresh_token' => 'trout', 'grant_type' => 'refresh_token' }) do |env|
+          case @mode
+          when "formencoded"
+            [200, {}, 'expires_in=600&access_token=tuna']
+          when "json"
+            [200, {}, '{"expires_in":600,"access_token":"tuna"}']
+          end
+        end
+      end
+    end
+    cli
+  end
+  subject{client.web_server}
+
+  describe '#authorize_url' do
+    it 'should include the client_id' do
+      subject.authorize_url.should be_include('client_id=abc')
+    end
+
+    it 'should include the type' do
+      subject.authorize_url.should be_include('response_type=code')
+    end
+
+    it 'should include passed in options' do
+      cb = 'http://myserver.local/oauth/callback'
+      subject.authorize_url(:redirect_uri => cb).should be_include("redirect_uri=#{Rack::Utils.escape(cb)}")
+    end
+  end
+
+  %w(json formencoded from_facebook).each do |mode|
+    [false, true].each do |parse_json|
+      [:get, :post].each do |verb|
+        describe "#get_access_token (#{mode}, token_method=#{verb} parse_json=#{parse_json})" do
+          before do
+            @mode = mode
+            client.json=parse_json
+            client.token_method=verb
+            @access = subject.get_access_token('sushi')
+          end
+
+          it 'returns AccessToken with same Client' do
+            @access.client.should == client
+          end
+
+          it 'returns AccessToken with #token' do
+            @access.token.should == 'salmon'
+          end
+
+          it 'returns AccessToken with #refresh_token' do
+            @access.refresh_token.should == 'trout'
+          end
+
+          it 'returns AccessToken with #expires_in' do
+            @access.expires_in.should == 600
+          end
+
+          it 'returns AccessToken with #expires_at' do
+            @access.expires_at.should be_kind_of(Time)
+          end
+
+          it 'returns AccessToken with params accessible via []' do
+            @access['extra_param'].should == 'steve'
+          end
+        end
+      end
+    end
+  end
+
+  %w(json formencoded).each do |mode|
+    [false, true].each do |parse_json|
+      [:get].each do |verb|
+        describe "#refresh_access_token (#{mode}, token_method=#{verb} parse_json=#{parse_json})" do
+          before do
+            @mode = mode
+            client.json=parse_json
+            client.token_method=verb
+            @access = subject.refresh_access_token('trout')
+          end
+
+           it 'returns AccessToken with same Client' do
+             @access.client.should == client
+           end
+
+          it 'returns AccessToken with #token' do
+            @access.token.should == 'tuna'
+          end
+
+          it 'returns AccessToken with #refresh_token' do
+            @access.refresh_token.should == 'trout'
+          end
+
+          it 'returns AccessToken with #expires_in' do
+            @access.expires_in.should == 600
+          end
+
+          it 'returns AccessToken with #expires_at' do
+            @access.expires_at.should be_kind_of(Time)
+          end
+        end
+      end
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,11 @@
+require "rubygems"
+require "bundler"
+Bundler.setup
+
+require 'simplecov'
+SimpleCov.start
+require 'oauth2'
+require 'rspec'
+require 'rspec/autorun'
+
+Faraday.default_adapter = :test

metadata

@@ -0,0 +1,166 @@
+--- !ruby/object:Gem::Specification
+name: panjiva-oauth2
+version: !ruby/object:Gem::Version
+  version: 0.4.1
+platform: ruby
+authors:
+- Michael Bleigh
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2013-12-18 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: faraday
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 0.6.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 0.6.1
+- !ruby/object:Gem::Dependency
+  name: multi_json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 0.0.5
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 0.0.5
+- !ruby/object:Gem::Dependency
+  name: json_pure
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.5'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '1.5'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.8'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.8'
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.4'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '0.4'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '2.5'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '2.5'
+- !ruby/object:Gem::Dependency
+  name: ZenTest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '4.5'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: '4.5'
+description: A Ruby wrapper for the OAuth 2.0 protocol built with a similar style
+  to the original OAuth gem.
+email: michael@intridea.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .document
+- .gemtest
+- .gitignore
+- .rspec
+- .travis.yml
+- CHANGELOG.md
+- Gemfile
+- LICENSE.md
+- README.md
+- Rakefile
+- lib/oauth2.rb
+- lib/oauth2/access_token.rb
+- lib/oauth2/client.rb
+- lib/oauth2/response_object.rb
+- lib/oauth2/strategy/base.rb
+- lib/oauth2/strategy/password.rb
+- lib/oauth2/strategy/web_server.rb
+- lib/oauth2/version.rb
+- oauth2.gemspec
+- spec/oauth2/access_token_spec.rb
+- spec/oauth2/client_spec.rb
+- spec/oauth2/strategy/base_spec.rb
+- spec/oauth2/strategy/password_spec.rb
+- spec/oauth2/strategy/web_server_spec.rb
+- spec/spec_helper.rb
+homepage: http://github.com/intridea/oauth2
+licenses: []
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: 1.3.6
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.1.11
+signing_key: 
+specification_version: 4
+summary: A Ruby wrapper for the OAuth 2.0 protocol.
+test_files: []