rack-oauth2-revibe 1.0.7

data/spec/rack/oauth2/util_spec.rb

@@ -0,0 +1,97 @@
+require 'spec_helper.rb'
+
+describe Rack::OAuth2::Util do
+  let :util do
+    Rack::OAuth2::Util
+  end
+
+  let :uri do
+    'http://client.example.com/callback'
+  end
+
+  describe '.rfc3986_encode' do
+    subject { util.rfc3986_encode '=+ .-/' }
+    it { should == '%3D%2B%20.-%2F' }
+  end
+
+  describe '.base64_encode' do
+    subject { util.base64_encode '=+ .-/' }
+    it { should == 'PSsgLi0v' }
+  end
+
+  describe '.compact_hash' do
+    subject { util.compact_hash :k1 => 'v1', :k2 => '', :k3 => nil }
+    it { should == {:k1 => 'v1'} }
+  end
+
+  describe '.parse_uri' do
+    context 'when String is given' do
+      it { util.parse_uri(uri).should be_a URI::Generic }
+    end
+
+    context 'when URI is given' do
+      it 'should be itself' do
+        _uri_ = URI.parse uri
+        util.parse_uri(_uri_).should be _uri_
+      end
+    end
+
+    context 'when invalid URI is given' do
+      it do
+        expect do
+          util.parse_uri '::'
+        end.to raise_error URI::InvalidURIError
+      end
+    end
+
+    context 'otherwise' do
+      it do
+        expect { util.parse_uri nil }.to raise_error StandardError
+        expect { util.parse_uri 123 }.to raise_error StandardError
+      end
+    end
+  end
+
+  describe '.redirect_uri' do
+    let(:base_uri) { 'http://client.example.com' }
+    let(:params) do
+      {:k1 => :v1, :k2 => ''}
+    end
+    subject { util.redirect_uri base_uri, location, params }
+
+    context 'when location = :fragment' do
+      let(:location) { :fragment }
+      it { should == "#{base_uri}##{util.compact_hash(params).to_query}" }
+    end
+
+    context 'when location = :query' do
+      let(:location) { :query }
+      it { should == "#{base_uri}?#{util.compact_hash(params).to_query}" }
+    end
+  end
+
+  describe '.uri_match?' do
+    context 'when invalid URI is given' do
+      it do
+        util.uri_match?('::', '::').should be_false
+        util.uri_match?(123, 'http://client.example.com/other').should be_false
+        util.uri_match?('http://client.example.com/other', nil).should be_false
+      end
+    end
+
+    context 'when exactry same' do
+      it { util.uri_match?(uri, uri).should be_true }
+    end
+
+    context 'when path prefix matches' do
+      it { util.uri_match?(uri, "#{uri}/deep_path").should be_true }
+    end
+
+    context 'otherwise' do
+      it do
+        util.uri_match?(uri, 'http://client.example.com/other').should be_false
+        util.uri_match?(uri, 'http://attacker.example.com/callback').should be_false
+      end
+    end
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,14 @@
+if RUBY_VERSION >= '1.9'
+  require 'cover_me'
+end
+
+require 'rspec'
+require 'rack/oauth2'
+require 'helpers/time'
+require 'helpers/webmock_helper'
+
+def simple_app
+  lambda do |env|
+    [ 200, {'Content-Type' => 'text/plain'}, ["HELLO"] ]
+  end
+end

metadata

@@ -0,0 +1,326 @@
+--- !ruby/object:Gem::Specification
+name: rack-oauth2-revibe
+version: !ruby/object:Gem::Version
+  version: 1.0.7
+platform: ruby
+authors:
+- nov matake
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-01-22 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rack
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '1.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '1.1'
+- !ruby/object:Gem::Dependency
+  name: multi_json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 1.3.6
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 1.3.6
+- !ruby/object:Gem::Dependency
+  name: httpclient
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 2.2.0.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 2.2.0.2
+- !ruby/object:Gem::Dependency
+  name: activesupport
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '2.3'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '2.3'
+- !ruby/object:Gem::Dependency
+  name: attr_required
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 0.0.5
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 0.0.5
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0.8'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0.8'
+- !ruby/object:Gem::Dependency
+  name: cover_me
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 1.2.0
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '2'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '2'
+- !ruby/object:Gem::Dependency
+  name: webmock
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 1.6.2
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: 1.6.2
+description: OAuth 2.0 Server & Client Library. Both Bearer and MAC token type are
+  supported.
+email: nov@matake.jp
+executables: []
+extensions: []
+extra_rdoc_files:
+- LICENSE
+- README.rdoc
+files:
+- .document
+- .gitignore
+- .rspec
+- .travis.yml
+- Gemfile
+- LICENSE
+- README.rdoc
+- Rakefile
+- VERSION
+- lib/rack/oauth2.rb
+- lib/rack/oauth2/access_token.rb
+- lib/rack/oauth2/access_token/authenticator.rb
+- lib/rack/oauth2/access_token/bearer.rb
+- lib/rack/oauth2/access_token/legacy.rb
+- lib/rack/oauth2/access_token/mac.rb
+- lib/rack/oauth2/access_token/mac/sha256_hex_verifier.rb
+- lib/rack/oauth2/access_token/mac/signature.rb
+- lib/rack/oauth2/access_token/mac/verifier.rb
+- lib/rack/oauth2/client.rb
+- lib/rack/oauth2/client/error.rb
+- lib/rack/oauth2/client/grant.rb
+- lib/rack/oauth2/client/grant/authorization_code.rb
+- lib/rack/oauth2/client/grant/client_credentials.rb
+- lib/rack/oauth2/client/grant/facebook_token.rb
+- lib/rack/oauth2/client/grant/password.rb
+- lib/rack/oauth2/client/grant/refresh_token.rb
+- lib/rack/oauth2/debugger.rb
+- lib/rack/oauth2/debugger/request_filter.rb
+- lib/rack/oauth2/server.rb
+- lib/rack/oauth2/server/abstract.rb
+- lib/rack/oauth2/server/abstract/error.rb
+- lib/rack/oauth2/server/abstract/handler.rb
+- lib/rack/oauth2/server/abstract/request.rb
+- lib/rack/oauth2/server/abstract/response.rb
+- lib/rack/oauth2/server/authorize.rb
+- lib/rack/oauth2/server/authorize/code.rb
+- lib/rack/oauth2/server/authorize/error.rb
+- lib/rack/oauth2/server/authorize/extension.rb
+- lib/rack/oauth2/server/authorize/extension/code_and_token.rb
+- lib/rack/oauth2/server/authorize/token.rb
+- lib/rack/oauth2/server/resource.rb
+- lib/rack/oauth2/server/resource/bearer.rb
+- lib/rack/oauth2/server/resource/bearer/error.rb
+- lib/rack/oauth2/server/resource/error.rb
+- lib/rack/oauth2/server/resource/mac.rb
+- lib/rack/oauth2/server/resource/mac/error.rb
+- lib/rack/oauth2/server/token.rb
+- lib/rack/oauth2/server/token/authorization_code.rb
+- lib/rack/oauth2/server/token/client_credentials.rb
+- lib/rack/oauth2/server/token/error.rb
+- lib/rack/oauth2/server/token/extension.rb
+- lib/rack/oauth2/server/token/extension/jwt.rb
+- lib/rack/oauth2/server/token/facebook_token.rb
+- lib/rack/oauth2/server/token/password.rb
+- lib/rack/oauth2/server/token/refresh_token.rb
+- lib/rack/oauth2/util.rb
+- rack-oauth2.gemspec
+- spec/helpers/time.rb
+- spec/helpers/webmock_helper.rb
+- spec/mock_response/blank
+- spec/mock_response/errors/invalid_request.json
+- spec/mock_response/resources/fake.txt
+- spec/mock_response/tokens/_Bearer.json
+- spec/mock_response/tokens/bearer.json
+- spec/mock_response/tokens/legacy.json
+- spec/mock_response/tokens/legacy.txt
+- spec/mock_response/tokens/legacy_without_expires_in.txt
+- spec/mock_response/tokens/mac.json
+- spec/mock_response/tokens/unknown.json
+- spec/rack/oauth2/access_token/authenticator_spec.rb
+- spec/rack/oauth2/access_token/bearer_spec.rb
+- spec/rack/oauth2/access_token/legacy_spec.rb
+- spec/rack/oauth2/access_token/mac/sha256_hex_verifier_spec.rb
+- spec/rack/oauth2/access_token/mac/signature_spec.rb
+- spec/rack/oauth2/access_token/mac/verifier_spec.rb
+- spec/rack/oauth2/access_token/mac_spec.rb
+- spec/rack/oauth2/access_token_spec.rb
+- spec/rack/oauth2/client/error_spec.rb
+- spec/rack/oauth2/client/grant/authorization_code_spec.rb
+- spec/rack/oauth2/client/grant/client_credentials_spec.rb
+- spec/rack/oauth2/client/grant/password_spec.rb
+- spec/rack/oauth2/client/grant/refresh_token_spec.rb
+- spec/rack/oauth2/client_spec.rb
+- spec/rack/oauth2/debugger/request_filter_spec.rb
+- spec/rack/oauth2/oauth2_spec.rb
+- spec/rack/oauth2/server/abstract/error_spec.rb
+- spec/rack/oauth2/server/authorize/code_spec.rb
+- spec/rack/oauth2/server/authorize/error_spec.rb
+- spec/rack/oauth2/server/authorize/extensions/code_and_token_spec.rb
+- spec/rack/oauth2/server/authorize/token_spec.rb
+- spec/rack/oauth2/server/authorize_spec.rb
+- spec/rack/oauth2/server/resource/bearer/error_spec.rb
+- spec/rack/oauth2/server/resource/bearer_spec.rb
+- spec/rack/oauth2/server/resource/error_spec.rb
+- spec/rack/oauth2/server/resource/mac/error_spec.rb
+- spec/rack/oauth2/server/resource/mac_spec.rb
+- spec/rack/oauth2/server/resource_spec.rb
+- spec/rack/oauth2/server/token/authorization_code_spec.rb
+- spec/rack/oauth2/server/token/client_credentials_spec.rb
+- spec/rack/oauth2/server/token/error_spec.rb
+- spec/rack/oauth2/server/token/password_spec.rb
+- spec/rack/oauth2/server/token/refresh_token_spec.rb
+- spec/rack/oauth2/server/token_spec.rb
+- spec/rack/oauth2/util_spec.rb
+- spec/spec_helper.rb
+homepage: http://github.com/nov/rack-oauth2
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options:
+- --charset=UTF-8
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: 1.3.6
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.0.3
+signing_key: 
+specification_version: 4
+summary: OAuth 2.0 Server & Client Library - Both Bearer and MAC token type are supported
+test_files:
+- spec/helpers/time.rb
+- spec/helpers/webmock_helper.rb
+- spec/mock_response/blank
+- spec/mock_response/errors/invalid_request.json
+- spec/mock_response/resources/fake.txt
+- spec/mock_response/tokens/_Bearer.json
+- spec/mock_response/tokens/bearer.json
+- spec/mock_response/tokens/legacy.json
+- spec/mock_response/tokens/legacy.txt
+- spec/mock_response/tokens/legacy_without_expires_in.txt
+- spec/mock_response/tokens/mac.json
+- spec/mock_response/tokens/unknown.json
+- spec/rack/oauth2/access_token/authenticator_spec.rb
+- spec/rack/oauth2/access_token/bearer_spec.rb
+- spec/rack/oauth2/access_token/legacy_spec.rb
+- spec/rack/oauth2/access_token/mac/sha256_hex_verifier_spec.rb
+- spec/rack/oauth2/access_token/mac/signature_spec.rb
+- spec/rack/oauth2/access_token/mac/verifier_spec.rb
+- spec/rack/oauth2/access_token/mac_spec.rb
+- spec/rack/oauth2/access_token_spec.rb
+- spec/rack/oauth2/client/error_spec.rb
+- spec/rack/oauth2/client/grant/authorization_code_spec.rb
+- spec/rack/oauth2/client/grant/client_credentials_spec.rb
+- spec/rack/oauth2/client/grant/password_spec.rb
+- spec/rack/oauth2/client/grant/refresh_token_spec.rb
+- spec/rack/oauth2/client_spec.rb
+- spec/rack/oauth2/debugger/request_filter_spec.rb
+- spec/rack/oauth2/oauth2_spec.rb
+- spec/rack/oauth2/server/abstract/error_spec.rb
+- spec/rack/oauth2/server/authorize/code_spec.rb
+- spec/rack/oauth2/server/authorize/error_spec.rb
+- spec/rack/oauth2/server/authorize/extensions/code_and_token_spec.rb
+- spec/rack/oauth2/server/authorize/token_spec.rb
+- spec/rack/oauth2/server/authorize_spec.rb
+- spec/rack/oauth2/server/resource/bearer/error_spec.rb
+- spec/rack/oauth2/server/resource/bearer_spec.rb
+- spec/rack/oauth2/server/resource/error_spec.rb
+- spec/rack/oauth2/server/resource/mac/error_spec.rb
+- spec/rack/oauth2/server/resource/mac_spec.rb
+- spec/rack/oauth2/server/resource_spec.rb
+- spec/rack/oauth2/server/token/authorization_code_spec.rb
+- spec/rack/oauth2/server/token/client_credentials_spec.rb
+- spec/rack/oauth2/server/token/error_spec.rb
+- spec/rack/oauth2/server/token/password_spec.rb
+- spec/rack/oauth2/server/token/refresh_token_spec.rb
+- spec/rack/oauth2/server/token_spec.rb
+- spec/rack/oauth2/util_spec.rb
+- spec/spec_helper.rb