proletarian-oauth 0.3.2

data/test/test_rsa_sha1.rb

@@ -0,0 +1,59 @@
+require File.dirname(__FILE__) + '/test_helper.rb'
+require 'oauth/consumer'
+require 'oauth/signature/rsa/sha1'
+
+class TestSignatureRsaSha1 < Test::Unit::TestCase
+  
+  def setup
+    @request = Net::HTTP::Get.new('/photos?file=vacaction.jpg&size=original&oauth_version=1.0&oauth_consumer_key=dpf43f3p2l4k3l03&oauth_timestamp=1196666512&oauth_nonce=13917289812797014437&oauth_signature_method=RSA-SHA1')
+
+    @consumer = OAuth::Consumer.new('dpf43f3p2l4k3l03', OpenSSL::PKey::RSA.new(IO.read(File.dirname(__FILE__) + "/keys/rsa.pem")))
+    
+  end
+  
+  def test_that_rsa_sha1_implements_rsa_sha1
+    assert OAuth::Signature.available_methods.include?('rsa-sha1')
+  end
+  
+  def test_that_get_request_from_oauth_test_cases_produces_matching_signature_base_string
+    sbs = OAuth::Signature.signature_base_string(@request, { :consumer => @consumer,
+                                                 :uri => 'http://photos.example.net/photos' } )
+
+    assert_equal 'GET&http%3A%2F%2Fphotos.example.net%2Fphotos&file%3Dvacaction.jpg%26oauth_consumer_key%3Ddpf43f3p2l4k3l03%26oauth_nonce%3D13917289812797014437%26oauth_signature_method%3DRSA-SHA1%26oauth_timestamp%3D1196666512%26oauth_version%3D1.0%26size%3Doriginal', sbs
+  end
+
+  def test_that_get_request_from_oauth_test_cases_produces_matching_signature
+    signature = OAuth::Signature.sign(@request, { :consumer => @consumer,
+                                                 :uri => 'http://photos.example.net/photos' } )
+
+    assert_equal 'jvTp/wX1TYtByB1m+Pbyo0lnCOLIsyGCH7wke8AUs3BpnwZJtAuEJkvQL2/9n4s5wUmUl4aCI4BwpraNx4RtEXMe5qg5T1LVTGliMRpKasKsW//e+RinhejgCuzoH26dyF8iY2ZZ/5D1ilgeijhV/vBka5twt399mXwaYdCwFYE=', signature
+    
+  end
+
+  def test_that_get_request_from_oauth_test_cases_produces_matching_signature_using_private_key_file
+    @consumer = OAuth::Consumer.new('dpf43f3p2l4k3l03',nil)
+
+    signature = OAuth::Signature.sign(@request, { :consumer => @consumer,
+                                                  :private_key_file=>File.dirname(__FILE__) + "/keys/rsa.pem",
+                                                 :uri => 'http://photos.example.net/photos' } )
+
+    assert_equal 'jvTp/wX1TYtByB1m+Pbyo0lnCOLIsyGCH7wke8AUs3BpnwZJtAuEJkvQL2/9n4s5wUmUl4aCI4BwpraNx4RtEXMe5qg5T1LVTGliMRpKasKsW//e+RinhejgCuzoH26dyF8iY2ZZ/5D1ilgeijhV/vBka5twt399mXwaYdCwFYE=', signature
+  end
+
+  def test_that_get_request_from_oauth_test_cases_verifies_signature
+    @request = Net::HTTP::Get.new('/photos?oauth_signature_method=RSA-SHA1&oauth_version=1.0&oauth_consumer_key=dpf43f3p2l4k3l03&oauth_timestamp=1196666512&oauth_nonce=13917289812797014437&file=vacaction.jpg&size=original&oauth_signature=jvTp%2FwX1TYtByB1m%2BPbyo0lnCOLIsyGCH7wke8AUs3BpnwZJtAuEJkvQL2%2F9n4s5wUmUl4aCI4BwpraNx4RtEXMe5qg5T1LVTGliMRpKasKsW%2F%2Fe%2BRinhejgCuzoH26dyF8iY2ZZ%2F5D1ilgeijhV%2FvBka5twt399mXwaYdCwFYE%3D')
+    @consumer = OAuth::Consumer.new('dpf43f3p2l4k3l03',OpenSSL::X509::Certificate.new(IO.read(File.dirname(__FILE__) + "/keys/rsa.cert")))
+
+    assert OAuth::Signature.verify(@request, { :consumer => @consumer,
+                                                 :uri => 'http://photos.example.net/photos' } )
+
+  end
+  
+  def test_that_get_request_from_oauth_test_cases_verifies_signature_with_pem
+    @request = Net::HTTP::Get.new('/photos?oauth_signature_method=RSA-SHA1&oauth_version=1.0&oauth_consumer_key=dpf43f3p2l4k3l03&oauth_timestamp=1196666512&oauth_nonce=13917289812797014437&file=vacaction.jpg&size=original&oauth_signature=jvTp%2FwX1TYtByB1m%2BPbyo0lnCOLIsyGCH7wke8AUs3BpnwZJtAuEJkvQL2%2F9n4s5wUmUl4aCI4BwpraNx4RtEXMe5qg5T1LVTGliMRpKasKsW%2F%2Fe%2BRinhejgCuzoH26dyF8iY2ZZ%2F5D1ilgeijhV%2FvBka5twt399mXwaYdCwFYE%3D')
+    assert OAuth::Signature.verify(@request, { :consumer => @consumer,
+                                                 :uri => 'http://photos.example.net/photos' } )
+
+  end
+
+end

data/test/test_server.rb

@@ -0,0 +1,40 @@
+require 'test/unit'
+require 'oauth/server'
+class ServerTest < Test::Unit::TestCase
+  def setup
+    @server=OAuth::Server.new "http://test.com"
+  end
+  
+  def test_default_paths
+    assert_equal "/oauth/request_token",@server.request_token_path
+    assert_equal "/oauth/authorize",@server.authorize_path
+    assert_equal "/oauth/access_token",@server.access_token_path
+  end
+  
+  def test_default_urls
+    assert_equal "http://test.com/oauth/request_token",@server.request_token_url
+    assert_equal "http://test.com/oauth/authorize",@server.authorize_url
+    assert_equal "http://test.com/oauth/access_token",@server.access_token_url
+  end
+  
+  def test_generate_consumer_credentials
+    consumer=@server.generate_consumer_credentials
+    assert_not_nil consumer.key
+    assert_not_nil consumer.secret
+  end
+
+  def test_create_consumer
+    @consumer=@server.create_consumer
+    assert_not_nil @consumer
+    assert_not_nil @consumer.key
+    assert_not_nil @consumer.secret
+    assert_equal "http://test.com",@consumer.site
+    assert_equal "/oauth/request_token",@consumer.request_token_path
+    assert_equal "/oauth/authorize",@consumer.authorize_path
+    assert_equal "/oauth/access_token",@consumer.access_token_path
+    assert_equal "http://test.com/oauth/request_token",@consumer.request_token_url
+    assert_equal "http://test.com/oauth/authorize",@consumer.authorize_url
+    assert_equal "http://test.com/oauth/access_token",@consumer.access_token_url
+  end  
+  
+end

data/test/test_signature.rb

@@ -0,0 +1,11 @@
+require File.dirname(__FILE__) + '/test_helper.rb'
+
+class TestOauth < Test::Unit::TestCase
+
+  def setup
+  end
+  
+  def test_truth
+    assert true
+  end
+end

data/test/test_signature_base.rb

@@ -0,0 +1,32 @@
+require File.dirname(__FILE__) + '/test_helper.rb'
+require 'oauth/signature/base'
+require 'net/http'
+class SignatureBaseTest < Test::Unit::TestCase
+
+  def test_that_initialize_requires_one_request_argument
+    assert_raises ArgumentError do
+      OAuth::Signature::Base.new()
+    end
+  end
+
+  def test_that_initialize_requires_a_valid_request_argument
+    request = nil
+    assert_raises TypeError do
+      OAuth::Signature::Base.new(request) { |token|
+        # just a stub
+      }
+    end
+  end
+
+  def test_that_initialize_succeeds_when_the_request_proxy_is_valid
+    # this isn't quite valid, but it will do.
+    raw_request = Net::HTTP::Get.new('/test')
+    request = OAuth::RequestProxy.proxy(raw_request)
+    assert_nothing_raised do
+      OAuth::Signature::Base.new(request) { |token|
+        # just a stub
+      }
+    end
+  end
+
+end

data/test/test_signature_plain_text.rb

@@ -0,0 +1,31 @@
+require File.dirname(__FILE__) + '/test_helper.rb'
+require 'oauth/signature/plaintext'
+
+class TestSignaturePlaintext < Test::Unit::TestCase
+  def test_that_plaintext_implements_plaintext
+    assert OAuth::Signature.available_methods.include?('plaintext')
+  end
+
+  def test_that_get_request_from_oauth_test_cases_produces_matching_signature
+    request = Net::HTTP::Get.new('/photos?file=vacation.jpg&size=original&oauth_version=1.0&oauth_consumer_key=dpf43f3p2l4k3l03&oauth_token=nnch734d00sl2jdk&oauth_signature=kd94hf93k423kf44%26&oauth_timestamp=1191242096&oauth_nonce=kllo9940pd9333jh&oauth_signature_method=PLAINTEXT')
+
+    consumer = OAuth::Consumer.new('dpf43f3p2l4k3l03','kd94hf93k423kf44')
+    token = OAuth::Token.new('nnch734d00sl2jdk', nil)
+
+    assert OAuth::Signature.verify(request, { :consumer => consumer,
+                                                :token => token,
+                                                :uri => 'http://photos.example.net/photos' } )
+  end
+
+  def test_that_get_request_from_oauth_test_cases_produces_matching_signature_part_two
+    request = Net::HTTP::Get.new('/photos?file=vacation.jpg&size=original&oauth_version=1.0&oauth_consumer_key=dpf43f3p2l4k3l03&oauth_token=nnch734d00sl2jdk&oauth_signature=kd94hf93k423kf44%26pfkkdhi9sl3r4s00&oauth_timestamp=1191242096&oauth_nonce=kllo9940pd9333jh&oauth_signature_method=PLAINTEXT')
+
+    consumer = OAuth::Consumer.new('dpf43f3p2l4k3l03','kd94hf93k423kf44')
+    token = OAuth::Token.new('nnch734d00sl2jdk', 'pfkkdhi9sl3r4s00')
+
+    assert OAuth::Signature.verify(request, { :consumer => consumer,
+                                                :token => token,
+                                                :uri => 'http://photos.example.net/photos' } )
+  end
+
+end

data/test/test_token.rb

@@ -0,0 +1,14 @@
+require File.dirname(__FILE__) + '/test_helper.rb'
+require 'oauth/token'
+
+class TestToken < Test::Unit::TestCase
+
+  def setup
+  end
+  
+  def test_token_constructor_produces_valid_token
+    token = OAuth::Token.new('xyz', '123')
+    assert_equal 'xyz', token.token
+    assert_equal '123', token.secret
+  end
+end

data/website/index.html

@@ -0,0 +1,87 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
+"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+  <link rel="stylesheet" href="stylesheets/screen.css" type="text/css" media="screen" />
+  <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+  <title>
+      Ruby OAuth GEM
+  </title>
+  <script src="javascripts/rounded_corners_lite.inc.js" type="text/javascript"></script>
+<style>
+
+</style>
+  <script type="text/javascript">
+    window.onload = function() {
+      settings = {
+          tl: { radius: 10 },
+          tr: { radius: 10 },
+          bl: { radius: 10 },
+          br: { radius: 10 },
+          antiAlias: true,
+          autoPad: true,
+          validTags: ["div"]
+      }
+      var versionBox = new curvyCorners(settings, document.getElementById("version"));
+      versionBox.applyCornersToAll();
+    }
+  </script>
+</head>
+<body>
+<div id="main">
+
+    <h1>Ruby OAuth GEM</h1>
+    <div id="version" class="clickable" onclick='document.location = "http://rubyforge.org/projects/oauth"; return false'>
+      <p>Get Version</p>
+      <a href="http://rubyforge.org/projects/oauth" class="numbers">0.3.0</a>
+    </div>
+    <h2>What</h2>
+<p>This is a RubyGem for implementing both OAuth clients and servers in Ruby applications.</p>
+<p>See the <a href="http://oauth.net/core/1.0/">OAuth specs</a></p>
+<h2>Installing</h2>
+<p><pre class='syntax'><span class="ident">sudo</span> <span class="ident">gem</span> <span class="ident">install</span> <span class="ident">oauth</span></pre></p>
+<p>You can also install it from the <a href="http://rubyforge.org/projects/oauth/">oauth rubyforge project</a>.</p>
+<p>The source code is now hosted on the <a href="http://github.com/pelle/oauth/tree/master">OAuth GitHub Project</a></p>
+<h2>The basics</h2>
+<p>This is a ruby library which is intended to be used in creating Ruby Consumer and Service Provider applications. It is <span class="caps">NOT</span> a Rails plugin, but could easily be used for the foundation for such a Rails plugin.</p>
+<p>As a matter of fact it has been pulled out from an <a href="http://code.google.com/p/oauth-plugin/">OAuth Rails Plugin</a> which now requires this <span class="caps">GEM</span>.</p>
+<h2>Demonstration of usage</h2>
+<p>Create a new consumer instance by passing it a configuration hash:</p>
+<pre><code>@consumer=OAuth::Consumer.new( "key","secret", {
+    :site=&gt;"https://agree2"
+    })</code></pre>
+<p>Start the process by requesting a token</p>
+<pre><code>@request_token=@consumer.get_request_token
+session[:request_token]=@request_token
+redirect_to @request_token.authorize_url</code></pre>
+<p>When user returns create an access_token</p>
+<pre><code>@access_token=@request_token.get_access_token
+@photos=@access_token.get('/photos.xml')</code></pre>
+<p>For more detailed instructions I have written this <a href="http://stakeventures.com/articles/2008/02/23/developing-oauth-clients-in-ruby">OAuth Client Tutorial</a> and &quot;How to turn your rails site into an OAuth Provider &quot;:http://stakeventures.com/articles/2007/11/26/how-to-turn-your-rails-site-into-an-oauth-provider.</p>
+<p>Finally be sure to check out the <a href="http://oauth.rubyforge.org/rdoc/">OAuth RDoc Manual</a>.</p>
+<h2>Documentation Wiki</h2>
+<p>There is some documentation on the Google Code project for the <a href="http://code.google.com/p/oauth-plugin/">OAuth Rails Plugin</a> :</p>
+<ul>
+	<li><a href="http://code.google.com/p/oauth-plugin/wiki/RequestToken">RequestToken</a></li>
+	<li><a href="http://code.google.com/p/oauth-plugin/wiki/AccessToken">AccessToken</a></li>
+</ul>
+<h2>Forum</h2>
+<p><a href="http://groups.google.com/group/oauth-ruby">http://groups.google.com/group/oauth-ruby</a></p>
+<h2>How to submit patches</h2>
+<p>Read the <a href="http://drnicwilliams.com/2007/06/01/8-steps-for-fixing-other-peoples-code/">8 steps for fixing other people&#8217;s code</a>.</p>
+<p>The source code is now hosted on the <a href="http://github.com/pelle/oauth/tree/master">OAuth GitHub Project</a></p>
+<p>To submit a patch, please fork the oauth project and create a patch with tests. Once you&#8217;re happy with it send a pull request and post a message to the google group.</p>
+<h2>License</h2>
+<p>This code is free to use under the terms of the <span class="caps">MIT</span> license.</p>
+<h2>Contact</h2>
+<p>Comments are welcome. Send an email to <a href="mailto:pelleb@gmail.com">Pelle Braendgaard</a> email via the <a href="http://groups.google.com/group/oauth-ruby">OAuth Ruby mailing list</a></p>
+    <p class="coda">
+      <a href="FIXME email">FIXME full name</a>, 9th September 2008<br>
+      Theme extended from <a href="http://rb2js.rubyforge.org/">Paul Battley</a>
+    </p>
+</div>
+
+<!-- insert site tracking codes here, like Google Urchin -->
+
+</body>
+</html>

data/website/index.txt

@@ -0,0 +1,73 @@
+h1. Ruby OAuth GEM
+
+h2. What
+
+This is a RubyGem for implementing both OAuth clients and servers in Ruby applications.
+
+See the "OAuth specs":http://oauth.net/core/1.0/
+
+h2. Installing
+
+<pre syntax="ruby">sudo gem install oauth</pre>
+
+You can also install it from the "oauth rubyforge project":http://rubyforge.org/projects/oauth/.
+
+The source code is now hosted on the "OAuth GitHub Project":http://github.com/pelle/oauth/tree/master
+
+h2. The basics
+
+This is a ruby library which is intended to be used in creating Ruby Consumer and Service Provider applications. It is NOT a Rails plugin, but could easily be used for the foundation for such a Rails plugin.
+
+As a matter of fact it has been pulled out from an "OAuth Rails Plugin":http://code.google.com/p/oauth-plugin/ which now requires this GEM.
+
+h2. Demonstration of usage
+
+Create a new consumer instance by passing it a configuration hash:
+
+<pre><code>@consumer=OAuth::Consumer.new( "key","secret", {
+    :site=>"https://agree2"
+    })</code></pre>
+
+Start the process by requesting a token
+
+<pre><code>@request_token=@consumer.get_request_token
+session[:request_token]=@request_token
+redirect_to @request_token.authorize_url</code></pre>
+
+When user returns create an access_token
+
+<pre><code>@access_token=@request_token.get_access_token
+@photos=@access_token.get('/photos.xml')</code></pre>
+
+For more detailed instructions I have written this "OAuth Client Tutorial":http://stakeventures.com/articles/2008/02/23/developing-oauth-clients-in-ruby and "How to turn your rails site into an OAuth Provider ":http://stakeventures.com/articles/2007/11/26/how-to-turn-your-rails-site-into-an-oauth-provider.
+
+Finally be sure to check out the "OAuth RDoc Manual":http://oauth.rubyforge.org/rdoc/.
+
+h2. Documentation Wiki
+
+There is some documentation on the Google Code project for the "OAuth Rails Plugin":http://code.google.com/p/oauth-plugin/ :
+
+* "RequestToken":http://code.google.com/p/oauth-plugin/wiki/RequestToken
+* "AccessToken":http://code.google.com/p/oauth-plugin/wiki/AccessToken
+
+h2. Forum
+
+"http://groups.google.com/group/oauth-ruby":http://groups.google.com/group/oauth-ruby
+
+
+h2. How to submit patches
+
+Read the "8 steps for fixing other people's code":http://drnicwilliams.com/2007/06/01/8-steps-for-fixing-other-peoples-code/.
+
+The source code is now hosted on the "OAuth GitHub Project":http://github.com/pelle/oauth/tree/master
+
+To submit a patch, please fork the oauth project and create a patch with tests. Once you're happy with it send a pull request and post a message to the google group.
+
+h2. License
+
+This code is free to use under the terms of the MIT license. 
+
+h2. Contact
+
+Comments are welcome. Send an email to "Pelle Braendgaard":mailto:pelleb@gmail.com email via the "OAuth Ruby mailing list":http://groups.google.com/group/oauth-ruby
+