RubyGems - passenger - Versions diffs - 2.2.1 → 2.2.2 - Mend

passenger 2.2.1 → 2.2.2

Potentially problematic release.

This version of passenger might be problematic. Click here for more details.

Files changed (216) hide show

data/vendor/rack-0.9.1/Rakefile DELETED Viewed

@@ -1,188 +0,0 @@
-# Rakefile for Rack.  -*-ruby-*-
-require 'rake/rdoctask'
-require 'rake/testtask'
-desc "Run all the tests"
-task :default => [:test]
-desc "Do predistribution stuff"
-task :predist => [:chmod, :changelog, :rdoc]
-desc "Make an archive as .tar.gz"
-task :dist => [:fulltest, :predist] do
-  sh "git archive --format=tar --prefix=#{release}/ HEAD^{tree} >#{release}.tar"
-  sh "pax -waf #{release}.tar -s ':^:#{release}/:' RDOX SPEC ChangeLog doc"
-  sh "gzip -f -9 #{release}.tar"
-end
-# Helper to retrieve the "revision number" of the git tree.
-def git_tree_version
-  if File.directory?(".git")
-    @tree_version ||= `git describe`.strip.sub('-', '.')
-    @tree_version << ".0"  unless @tree_version.count('.') == 2
-  else
-    $: << "lib"
-    require 'rack'
-    @tree_version = Rack.release
-  end
-  @tree_version
-end
-def gem_version
-  git_tree_version.gsub(/-.*/, '')
-end
-def release
-  "rack-#{git_tree_version}"
-end
-def manifest
-  `git ls-files`.split("\n")
-end
-desc "Make binaries executable"
-task :chmod do
-  Dir["bin/*"].each { |binary| File.chmod(0775, binary) }
-  Dir["test/cgi/test*"].each { |binary| File.chmod(0775, binary) }
-end
-desc "Generate a ChangeLog"
-task :changelog do
-  File.open("ChangeLog", "w") { |out|
-    `git log -z`.split("\0").map { |chunk|
-      author = chunk[/Author: (.*)/, 1].strip
-      date = chunk[/Date: (.*)/, 1].strip
-      desc, detail = $'.strip.split("\n", 2)
-      detail ||= ""
-      detail = detail.gsub(/.*darcs-hash:.*/, '')
-      detail.rstrip!
-      out.puts "#{date}  #{author}"
-      out.puts "  * #{desc.strip}"
-      out.puts detail  unless detail.empty?
-      out.puts
-    }
-  }
-end
-desc "Generate RDox"
-task "RDOX" do
-  sh "specrb -Ilib:test -a --rdox >RDOX"
-end
-desc "Generate Rack Specification"
-task "SPEC" do
-  File.open("SPEC", "wb") { |file|
-    IO.foreach("lib/rack/lint.rb") { |line|
-      if line =~ /## (.*)/
-        file.puts $1
-      end
-    }
-  }
-end
-desc "Run all the fast tests"
-task :test do
-  sh "specrb -Ilib:test -w #{ENV['TEST'] || '-a'} #{ENV['TESTOPTS'] || '-t "^(?!Rack::Handler|Rack::Adapter|Rack::Session::Memcache|Rack::Auth::OpenID)"'}"
-end
-desc "Run all the tests"
-task :fulltest => [:chmod] do
-  sh "specrb -Ilib:test -w #{ENV['TEST'] || '-a'} #{ENV['TESTOPTS']}"
-end
-begin
-  require 'rubygems'
-  require 'rake'
-  require 'rake/clean'
-  require 'rake/packagetask'
-  require 'rake/gempackagetask'
-  require 'fileutils'
-rescue LoadError
-  # Too bad.
-else
-  spec = Gem::Specification.new do |s|
-    s.name            = "rack"
-    s.version         = gem_version
-    s.platform        = Gem::Platform::RUBY
-    s.summary         = "a modular Ruby webserver interface"
-    s.description = <<-EOF
-Rack provides minimal, modular and adaptable interface for developing
-web applications in Ruby.  By wrapping HTTP requests and responses in
-the simplest way possible, it unifies and distills the API for web
-servers, web frameworks, and software in between (the so-called
-middleware) into a single method call.
-Also see http://rack.rubyforge.org.
-    EOF
-    s.files           = manifest + %w(SPEC RDOX)
-    s.bindir          = 'bin'
-    s.executables     << 'rackup'
-    s.require_path    = 'lib'
-    s.has_rdoc        = true
-    s.extra_rdoc_files = ['README', 'SPEC', 'RDOX', 'KNOWN-ISSUES']
-    s.test_files      = Dir['test/{test,spec}_*.rb']
-    s.author          = 'Christian Neukirchen'
-    s.email           = 'chneukirchen@gmail.com'
-    s.homepage        = 'http://rack.rubyforge.org'
-    s.rubyforge_project = 'rack'
-    s.add_development_dependency 'test-spec'
-    s.add_development_dependency 'camping'
-    s.add_development_dependency 'fcgi'
-    s.add_development_dependency 'memcache-client'
-    s.add_development_dependency 'mongrel'
-    s.add_development_dependency 'ruby-openid', '~> 2.0.0'
-    s.add_development_dependency 'thin'
-  end
-  Rake::GemPackageTask.new(spec) do |p|
-    p.gem_spec = spec
-    p.need_tar = false
-    p.need_zip = false
-  end
-end
-desc "Generate RDoc documentation"
-Rake::RDocTask.new(:rdoc) do |rdoc|
-  rdoc.options << '--line-numbers' << '--inline-source' <<
-    '--main' << 'README' <<
-    '--title' << 'Rack Documentation' <<
-    '--charset' << 'utf-8'
-  rdoc.rdoc_dir = "doc"
-  rdoc.rdoc_files.include 'README'
-  rdoc.rdoc_files.include 'KNOWN-ISSUES'
-  rdoc.rdoc_files.include 'SPEC'
-  rdoc.rdoc_files.include 'RDOX'
-  rdoc.rdoc_files.include('lib/rack.rb')
-  rdoc.rdoc_files.include('lib/rack/*.rb')
-  rdoc.rdoc_files.include('lib/rack/*/*.rb')
-end
-task :rdoc => ["SPEC", "RDOX"]
-task :pushsite => [:rdoc] do
-  sh "rsync -avz doc/ chneukirchen@rack.rubyforge.org:/var/www/gforge-projects/rack/doc/"
-  sh "rsync -avz site/ chneukirchen@rack.rubyforge.org:/var/www/gforge-projects/rack/"
-end
-begin
-  require 'rcov/rcovtask'
-  Rcov::RcovTask.new do |t|
-    t.test_files = FileList['test/{spec,test}_*.rb']
-    t.verbose = true     # uncomment to see the executed command
-    t.rcov_opts = ["--text-report",
-                   "-Ilib:test",
-                   "--include-file", "^lib,^test",
-                   "--exclude-only", "^/usr,^/home/.*/src,active_"]
-  end
-rescue LoadError
-end

data/vendor/rack-0.9.1/SPEC DELETED Viewed

@@ -1,129 +0,0 @@
-This specification aims to formalize the Rack protocol.  You
-can (and should) use Rack::Lint to enforce it.
-When you develop middleware, be sure to add a Lint before and
-after to catch all mistakes.
-= Rack applications
-A Rack application is an Ruby object (not a class) that
-responds to +call+.
-It takes exactly one argument, the *environment*
-and returns an Array of exactly three values:
-The *status*,
-the *headers*,
-and the *body*.
-== The Environment
-The environment must be an true instance of Hash (no
-subclassing allowed) that includes CGI-like headers.
-The application is free to modify the environment.
-The environment is required to include these variables
-(adopted from PEP333), except when they'd be empty, but see
-below.
-<tt>REQUEST_METHOD</tt>:: The HTTP request method, such as
-                          "GET" or "POST". This cannot ever
-                          be an empty string, and so is
-                          always required.
-<tt>SCRIPT_NAME</tt>:: The initial portion of the request
-                       URL's "path" that corresponds to the
-                       application object, so that the
-                       application knows its virtual
-                       "location". This may be an empty
-                       string, if the application corresponds
-                       to the "root" of the server.
-<tt>PATH_INFO</tt>:: The remainder of the request URL's
-                     "path", designating the virtual
-                     "location" of the request's target
-                     within the application. This may be an
-                     empty string, if the request URL targets
-                     the application root and does not have a
-                     trailing slash.
-<tt>QUERY_STRING</tt>:: The portion of the request URL that
-                        follows the <tt>?</tt>, if any. May be
-                        empty, but is always required!
-<tt>SERVER_NAME</tt>, <tt>SERVER_PORT</tt>:: When combined with <tt>SCRIPT_NAME</tt> and <tt>PATH_INFO</tt>, these variables can be used to complete the URL. Note, however, that <tt>HTTP_HOST</tt>, if present, should be used in preference to <tt>SERVER_NAME</tt> for reconstructing the request URL.  <tt>SERVER_NAME</tt> and <tt>SERVER_PORT</tt> can never be empty strings, and so are always required.
-<tt>HTTP_</tt> Variables:: Variables corresponding to the
-                           client-supplied HTTP request
-                           headers (i.e., variables whose
-                           names begin with <tt>HTTP_</tt>). The
-                           presence or absence of these
-                           variables should correspond with
-                           the presence or absence of the
-                           appropriate HTTP header in the
-                           request.
-In addition to this, the Rack environment must include these
-Rack-specific variables:
-<tt>rack.version</tt>:: The Array [0,1], representing this version of Rack.
-<tt>rack.url_scheme</tt>:: +http+ or +https+, depending on the request URL.
-<tt>rack.input</tt>:: See below, the input stream.
-<tt>rack.errors</tt>:: See below, the error stream.
-<tt>rack.multithread</tt>:: true if the application object may be simultaneously invoked by another thread in the same process, false otherwise.
-<tt>rack.multiprocess</tt>:: true if an equivalent application object may be simultaneously invoked by another process, false otherwise.
-<tt>rack.run_once</tt>:: true if the server expects (but does not guarantee!) that the application will only be invoked this one time during the life of its containing process. Normally, this will only be true for a server based on CGI (or something similar).
-The server or the application can store their own data in the
-environment, too.  The keys must contain at least one dot,
-and should be prefixed uniquely.  The prefix <tt>rack.</tt>
-is reserved for use with the Rack core distribution and must
-not be used otherwise.
-The environment must not contain the keys
-<tt>HTTP_CONTENT_TYPE</tt> or <tt>HTTP_CONTENT_LENGTH</tt>
-(use the versions without <tt>HTTP_</tt>).
-The CGI keys (named without a period) must have String values.
-There are the following restrictions:
-* <tt>rack.version</tt> must be an array of Integers.
-* <tt>rack.url_scheme</tt> must either be +http+ or +https+.
-* There must be a valid input stream in <tt>rack.input</tt>.
-* There must be a valid error stream in <tt>rack.errors</tt>.
-* The <tt>REQUEST_METHOD</tt> must be a valid token.
-* The <tt>SCRIPT_NAME</tt>, if non-empty, must start with <tt>/</tt>
-* The <tt>PATH_INFO</tt>, if non-empty, must start with <tt>/</tt>
-* The <tt>CONTENT_LENGTH</tt>, if given, must consist of digits only.
-* One of <tt>SCRIPT_NAME</tt> or <tt>PATH_INFO</tt> must be
-  set.  <tt>PATH_INFO</tt> should be <tt>/</tt> if
-  <tt>SCRIPT_NAME</tt> is empty.
-  <tt>SCRIPT_NAME</tt> never should be <tt>/</tt>, but instead be empty.
-=== The Input Stream
-The input stream must respond to +gets+, +each+ and +read+.
-* +gets+ must be called without arguments and return a string,
-  or +nil+ on EOF.
-* +read+ must be called without or with one integer argument
-  and return a string, or +nil+ on EOF.
-* +each+ must be called without arguments and only yield Strings.
-* +close+ must never be called on the input stream.
-=== The Error Stream
-The error stream must respond to +puts+, +write+ and +flush+.
-* +puts+ must be called with a single argument that responds to +to_s+.
-* +write+ must be called with a single argument that is a String.
-* +flush+ must be called without arguments and must be called
-  in order to make the error appear for sure.
-* +close+ must never be called on the error stream.
-== The Response
-=== The Status
-The status, if parsed as integer (+to_i+), must be greater than or equal to 100.
-=== The Headers
-The header must respond to each, and yield values of key and value.
-The header keys must be Strings.
-The header must not contain a +Status+ key,
-contain keys with <tt>:</tt> or newlines in their name,
-contain keys names that end in <tt>-</tt> or <tt>_</tt>,
-but only contain keys that consist of
-letters, digits, <tt>_</tt> or <tt>-</tt> and start with a letter.
-The values of the header must respond to #each.
-The values passed on #each must be Strings
-and not contain characters below 037.
-=== The Content-Type
-There must be a <tt>Content-Type</tt>, except when the
-+Status+ is 1xx, 204 or 304, in which case there must be none
-given.
-=== The Content-Length
-There must be a <tt>Content-Length</tt>, except when the
-+Status+ is 1xx, 204 or 304, in which case there must be none
-given.
-=== The Body
-The Body must respond to #each
-and must only yield String values.
-If the Body responds to #close, it will be called after iteration.
-The Body commonly is an Array of Strings, the application
-instance itself, or a File-like object.
-== Thanks
-Some parts of this specification are adopted from PEP333: Python
-Web Server Gateway Interface
-v1.0 (http://www.python.org/dev/peps/pep-0333/). I'd like to thank
-everyone involved in that effort.

data/vendor/rack-0.9.1/lib/rack/auth/abstract/handler.rb DELETED Viewed

@@ -1,28 +0,0 @@
-module Rack
-  module Auth
-    # Rack::Auth::AbstractHandler implements common authentication functionality.
-    #
-    # +realm+ should be set for all handlers.
-    class AbstractHandler
-      attr_accessor :realm
-      def initialize(app, &authenticator)
-        @app, @authenticator = app, authenticator
-      end
-      private
-      def unauthorized(www_authenticate = challenge)
-        return [ 401, { 'WWW-Authenticate' => www_authenticate.to_s }, [] ]
-      end
-      def bad_request
-        [ 400, {}, [] ]
-      end
-    end
-  end
-end

data/vendor/rack-0.9.1/lib/rack/auth/openid.rb DELETED Viewed

@@ -1,438 +0,0 @@
-# AUTHOR: blink <blinketje@gmail.com>; blink#ruby-lang@irc.freenode.net
-gem 'ruby-openid', '~> 2' if defined? Gem
-require 'rack/auth/abstract/handler' #rack
-require 'uri' #std
-require 'pp' #std
-require 'openid' #gem
-require 'openid/extension' #gem
-require 'openid/store/memory' #gem
-module Rack
-  module Auth
-    # Rack::Auth::OpenID provides a simple method for permitting
-    # openid based logins. It requires the ruby-openid library from
-    # janrain to operate, as well as a rack method of session management.
-    #
-    # The ruby-openid home page is at http://openidenabled.com/ruby-openid/.
-    #
-    # The OpenID specifications can be found at
-    # http://openid.net/specs/openid-authentication-1_1.html
-    # and
-    # http://openid.net/specs/openid-authentication-2_0.html. Documentation
-    # for published OpenID extensions and related topics can be found at
-    # http://openid.net/developers/specs/.
-    #
-    # It is recommended to read through the OpenID spec, as well as
-    # ruby-openid's documentation, to understand what exactly goes on. However
-    # a setup as simple as the presented examples is enough to provide
-    # functionality.
-    #
-    # This library strongly intends to utilize the OpenID 2.0 features of the
-    # ruby-openid library, while maintaining OpenID 1.0 compatiblity.
-    #
-    # All responses from this rack application will be 303 redirects unless an
-    # error occurs, with the exception of an authentication request requiring
-    # an HTML form submission.
-    #
-    # NOTE: Extensions are not currently supported by this implimentation of
-    # the OpenID rack application due to the complexity of the current
-    # ruby-openid extension handling.
-    #
-    # NOTE: Due to the amount of data that this library stores in the
-    # session, Rack::Session::Cookie may fault.
-    class OpenID < AbstractHandler
-      class NoSession < RuntimeError; end
-      # Required for ruby-openid
-      OIDStore = ::OpenID::Store::Memory.new
-      HTML = '<html><head><title>%s</title></head><body>%s</body></html>'
-      # A Hash of options is taken as it's single initializing
-      # argument. For example:
-      #
-      #   simple_oid = OpenID.new('http://mysite.com/')
-      #
-      #   return_oid = OpenID.new('http://mysite.com/', {
-      #     :return_to => 'http://mysite.com/openid'
-      #   })
-      #
-      #   page_oid = OpenID.new('http://mysite.com/',
-      #     :login_good => 'http://mysite.com/auth_good'
-      #   )
-      #
-      #   complex_oid = OpenID.new('http://mysite.com/',
-      #     :return_to => 'http://mysite.com/openid',
-      #     :login_good => 'http://mysite.com/user/preferences',
-      #     :auth_fail => [500, {'Content-Type'=>'text/plain'},
-      #       'Unable to negotiate with foreign server.'],
-      #     :immediate => true,
-      #     :extensions => {
-      #       ::OpenID::SReg => [['email'],['nickname']]
-      #     }
-      #   )
-      #
-      # = Arguments
-      #
-      # The first argument is the realm, identifying the site they are trusting
-      # with their identity. This is required.
-      #
-      # NOTE: In OpenID 1.x, the realm or trust_root is optional and the
-      # return_to url is required. As this library strives tward ruby-openid
-      # 2.0, and OpenID 2.0 compatibiliy, the realm is required and return_to
-      # is optional. However, this implimentation is still backwards compatible
-      # with OpenID 1.0 servers.
-      #
-      # The optional second argument is a hash of options.
-      #
-      # == Options
-      #
-      # <tt>:return_to</tt> defines the url to return to after the client
-      # authenticates with the openid service provider. This url should point
-      # to where Rack::Auth::OpenID is mounted. If <tt>:return_to</tt> is not
-      # provided, :return_to will be the current url including all query
-      # parameters.
-      #
-      # <tt>:session_key</tt> defines the key to the session hash in the env.
-      # It defaults to 'rack.session'.
-      #
-      # <tt>:openid_param</tt> defines at what key in the request parameters to
-      # find the identifier to resolve. As per the 2.0 spec, the default is
-      # 'openid_identifier'.
-      #
-      # <tt>:immediate</tt> as true will make immediate type of requests the
-      # default. See OpenID specification documentation.
-      #
-      # === URL options
-      #
-      # <tt>:login_good</tt> is the url to go to after the authentication
-      # process has completed.
-      #
-      # <tt>:login_fail</tt> is the url to go to after the authentication
-      # process has failed.
-      #
-      # <tt>:login_quit</tt> is the url to go to after the authentication
-      # process
-      # has been cancelled.
-      #
-      # === Response options
-      #
-      # <tt>:no_session</tt> should be a rack response to be returned if no or
-      # an incompatible session is found.
-      #
-      # <tt>:auth_fail</tt> should be a rack response to be returned if an
-      # OpenID::DiscoveryFailure occurs. This is typically due to being unable
-      # to access the identity url or identity server.
-      #
-      # <tt>:error</tt> should be a rack response to return if any other
-      # generic error would occur and <tt>options[:catch_errors]</tt> is true.
-      #
-      # === Extensions
-      #
-      # <tt>:extensions</tt> should be a hash of openid extension
-      # implementations. The key should be the extension main module, the value
-      # should be an array of arguments for extension::Request.new
-      #
-      # The hash is iterated over and passed to #add_extension for processing.
-      # Please see #add_extension for further documentation.
-      def initialize(realm, options={})
-        @realm = realm
-        realm = URI(realm)
-        if realm.path.empty?
-          raise ArgumentError, "Invalid realm path: '#{realm.path}'"
-        elsif not realm.absolute?
-          raise ArgumentError, "Realm '#{@realm}' not absolute"
-        end
-        [:return_to, :login_good, :login_fail, :login_quit].each do |key|
-          if options.key? key and luri = URI(options[key])
-            if !luri.absolute?
-              raise ArgumentError, ":#{key} is not an absolute uri: '#{luri}'"
-            end
-          end
-        end
-        if options[:return_to] and ruri = URI(options[:return_to])
-          if ruri.path.empty?
-            raise ArgumentError, "Invalid return_to path: '#{ruri.path}'"
-          elsif realm.path != ruri.path[0, realm.path.size]
-            raise ArgumentError, 'return_to not within realm.' \
-          end
-        end
-        # TODO: extension support
-        if extensions = options.delete(:extensions)
-          extensions.each do |ext, args|
-            add_extension ext, *args
-          end
-        end
-        @options = {
-          :session_key => 'rack.session',
-          :openid_param => 'openid_identifier',
-          #:return_to, :login_good, :login_fail, :login_quit
-          #:no_session, :auth_fail, :error
-          :store => OIDStore,
-          :immediate => false,
-          :anonymous => false,
-          :catch_errors => false
-        }.merge(options)
-        @extensions = {}
-      end
-      attr_reader :options, :extensions
-      # It sets up and uses session data at <tt>:openid</tt> within the
-      # session. It sets up the ::OpenID::Consumer using the store specified by
-      # <tt>options[:store]</tt>.
-      #
-      # If the parameter specified by <tt>options[:openid_param]</tt> is
-      # present, processing is passed to #check and the result is returned.
-      #
-      # If the parameter 'openid.mode' is set, implying a followup from the
-      # openid server, processing is passed to #finish and the result is
-      # returned.
-      #
-      # If neither of these conditions are met, a 400 error is returned.
-      #
-      # If an error is thrown and <tt>options[:catch_errors]</tt> is false, the
-      # exception will be reraised. Otherwise a 500 error is returned.
-      def call(env)
-        env['rack.auth.openid'] = self
-        session = env[@options[:session_key]]
-        unless session and session.is_a? Hash
-          raise(NoSession, 'No compatible session')
-        end
-        # let us work in our own namespace...
-        session = (session[:openid] ||= {})
-        unless session and session.is_a? Hash
-          raise(NoSession, 'Incompatible session')
-        end
-        request = Rack::Request.new env
-        consumer = ::OpenID::Consumer.new session, @options[:store]
-        if request.params['openid.mode']
-          finish consumer, session, request
-        elsif request.params[@options[:openid_param]]
-          check consumer, session, request
-        else
-          env['rack.errors'].puts "No valid params provided."
-          bad_request
-        end
-      rescue NoSession
-        env['rack.errors'].puts($!.message, *$@)
-        @options. ### Missing or incompatible session
-          fetch :no_session, [ 500,
-            {'Content-Type'=>'text/plain'},
-            $!.message ]
-      rescue
-        env['rack.errors'].puts($!.message, *$@)
-        if not @options[:catch_error]
-          raise($!)
-        end
-        @options.
-          fetch :error, [ 500,
-            {'Content-Type'=>'text/plain'},
-            'OpenID has encountered an error.' ]
-      end
-      # As the first part of OpenID consumer action, #check retrieves the data
-      # required for completion.
-      #
-      # * <tt>session[:openid][:openid_param]</tt> is set to the submitted
-      #   identifier to be authenticated.
-      # * <tt>session[:openid][:site_return]</tt> is set as the request's
-      #   HTTP_REFERER, unless already set.
-      # * <tt>env['rack.auth.openid.request']</tt> is the openid checkid
-      #   request instance.
-      def check(consumer, session, req)
-        session[:openid_param]  = req.params[@options[:openid_param]]
-        oid = consumer.begin(session[:openid_param], @options[:anonymous])
-        pp oid if $DEBUG
-        req.env['rack.auth.openid.request'] = oid
-        session[:site_return] ||= req.env['HTTP_REFERER']
-        # SETUP_NEEDED check!
-        # see OpenID::Consumer::CheckIDRequest docs
-        query_args = [@realm, *@options.values_at(:return_to, :immediate)]
-        query_args[1] ||= req.url
-        query_args[2] = false if session.key? :setup_needed
-        pp query_args if $DEBUG
-        ## Extension support
-        extensions.each do |ext,args|
-          oid.add_extension ext::Request.new(*args)
-        end
-        if oid.send_redirect?(*query_args)
-          redirect = oid.redirect_url(*query_args)
-          if $DEBUG
-            pp redirect
-            pp Rack::Utils.parse_query(URI(redirect).query)
-          end
-          [ 303, {'Location'=>redirect}, [] ]
-        else
-          # check on 'action' option.
-          formbody = oid.form_markup(*query_args)
-          if $DEBUG
-            pp formbody
-          end
-          body = HTML % ['Confirm...', formbody]
-          [ 200, {'Content-Type'=>'text/html'}, body.to_a ]
-        end
-      rescue ::OpenID::DiscoveryFailure => e
-        # thrown from inside OpenID::Consumer#begin by yadis stuff
-        req.env['rack.errors'].puts($!.message, *$@)
-        @options. ### Foreign server failed
-          fetch :auth_fail, [ 503,
-            {'Content-Type'=>'text/plain'},
-            'Foreign server failure.' ]
-      end
-      # This is the final portion of authentication. Unless any errors outside
-      # of specification occur, a 303 redirect will be returned with Location
-      # determined by the OpenID response type. If none of the response type
-      # :login_* urls are set, the redirect will be set to
-      # <tt>session[:openid][:site_return]</tt>. If
-      # <tt>session[:openid][:site_return]</tt> is unset, the realm will be
-      # used.
-      #
-      # Any messages from OpenID's response are appended to the 303 response
-      # body.
-      #
-      # Data gathered from extensions are stored in session[:openid] with the
-      # extension's namespace uri as the key.
-      #
-      # * <tt>env['rack.auth.openid.response']</tt> is the openid response.
-      #
-      # The four valid possible outcomes are:
-      # * failure: <tt>options[:login_fail]</tt> or
-      #   <tt>session[:site_return]</tt> or the realm
-      #   * <tt>session[:openid]</tt> is cleared and any messages are send to
-      #     rack.errors
-      #   * <tt>session[:openid]['authenticated']</tt> is <tt>false</tt>
-      # * success: <tt>options[:login_good]</tt> or
-      #   <tt>session[:site_return]</tt> or the realm
-      #   * <tt>session[:openid]</tt> is cleared
-      #   * <tt>session[:openid]['authenticated']</tt> is <tt>true</tt>
-      #   * <tt>session[:openid]['identity']</tt> is the actual identifier
-      #   * <tt>session[:openid]['identifier']</tt> is the pretty identifier
-      # * cancel: <tt>options[:login_good]</tt> or
-      #   <tt>session[:site_return]</tt> or the realm
-      #   * <tt>session[:openid]</tt> is cleared
-      #   * <tt>session[:openid]['authenticated']</tt> is <tt>false</tt>
-      # * setup_needed: resubmits the authentication request. A flag is set for
-      #   non-immediate handling.
-      #   * <tt>session[:openid][:setup_needed]</tt> is set to <tt>true</tt>,
-      #     which will prevent immediate style openid authentication.
-      def finish(consumer, session, req)
-        oid = consumer.complete(req.params, req.url)
-        pp oid if $DEBUG
-        req.env['rack.auth.openid.response'] = oid
-        goto = session.fetch :site_return, @realm
-        body = []
-        case oid.status
-        when ::OpenID::Consumer::FAILURE
-          session.clear
-          session['authenticated'] = false
-          req.env['rack.errors'].puts oid.message
-          goto = @options[:login_fail] if @options.key? :login_fail
-          body << "Authentication unsuccessful.\n"
-        when ::OpenID::Consumer::SUCCESS
-          session.clear
-          ## Extension support
-          extensions.each do |ext, args|
-            session[ext::NS_URI] = ext::Response.
-              from_success_response(oid).
-              get_extension_args
-          end
-          session['authenticated'] = true
-          # Value for unique identification and such
-          session['identity'] = oid.identity_url
-          # Value for display and UI labels
-          session['identifier'] = oid.display_identifier
-          goto = @options[:login_good] if @options.key? :login_good
-          body << "Authentication successful.\n"
-        when ::OpenID::Consumer::CANCEL
-          session.clear
-          session['authenticated'] = false
-          goto = @options[:login_fail] if @options.key? :login_fail
-          body << "Authentication cancelled.\n"
-        when ::OpenID::Consumer::SETUP_NEEDED
-          session[:setup_needed] = true
-          unless o_id = session[:openid_param]
-            raise('Required values missing.')
-          end
-          goto = req.script_name+
-            '?'+@options[:openid_param]+
-            '='+o_id
-          body << "Reauthentication required.\n"
-        end
-        body << oid.message if oid.message
-        [ 303, {'Location'=>goto}, body]
-      end
-      # The first argument should be the main extension module.
-      # The extension module should contain the constants:
-      #   * class Request, with OpenID::Extension as an ancestor
-      #   * class Response, with OpenID::Extension as an ancestor
-      #   * string NS_URI, which defines the namespace of the extension, should
-      #     be an absolute http uri
-      #
-      # All trailing arguments will be passed to extension::Request.new in
-      # #check.
-      # The openid response will be passed to
-      # extension::Response#from_success_response, #get_extension_args will be
-      # called on the result to attain the gathered data.
-      #
-      # This method returns the key at which the response data will be found in
-      # the session, which is the namespace uri by default.
-      def add_extension ext, *args
-        if not ext.is_a? Module
-          raise TypeError, "#{ext.inspect} is not a module"
-        elsif !(m = %w'Request Response NS_URI' -
-                ext.constants.map{ |c| c.to_s }).empty?
-          raise ArgumentError, "#{ext.inspect} missing #{m*', '}"
-        end
-        consts = [ext::Request, ext::Response]
-        if not consts.all?{|c| c.is_a? Class }
-          raise TypeError, "#{ext.inspect}'s Request or Response is not a class"
-        elsif not consts.all?{|c| ::OpenID::Extension > c }
-          raise ArgumentError, "#{ext.inspect}'s Request or Response not a decendant of OpenID::Extension"
-        end
-        if not ext::NS_URI.is_a? String
-          raise TypeError, "#{ext.inspect}'s NS_URI is not a string"
-        elsif not uri = URI(ext::NS_URI)
-          raise ArgumentError, "#{ext.inspect}'s NS_URI is not a valid uri"
-        elsif not uri.scheme =~ /^https?$/
-          raise ArgumentError, "#{ext.inspect}'s NS_URI is not an http uri"
-        elsif not uri.absolute?
-          raise ArgumentError, "#{ext.inspect}'s NS_URI is not and absolute uri"
-        end
-        @extensions[ext] = args
-        return ext::NS_URI
-      end
-      # A conveniance method that returns the namespace of all current
-      # extensions used by this instance.
-      def extension_namespaces
-        @extensions.keys.map{|e|e::NS_URI}
-      end
-    end
-  end
-end