RubyGems - rack-oauth2 - Versions diffs - 1.12.0 → 2.2.0 - Mend

rack-oauth2 1.12.0 → 2.2.0

Files changed (61) hide show

checksums.yaml +4 -4
data/.github/FUNDING.yml +3 -0
data/.github/workflows/spec.yml +32 -0
data/CHANGELOG.md +25 -0
data/README.rdoc +1 -26
data/VERSION +1 -1
data/lib/rack/oauth2/access_token/authenticator.rb +1 -10
data/lib/rack/oauth2/access_token/bearer.rb +1 -1
data/lib/rack/oauth2/access_token/mtls.rb +2 -2
data/lib/rack/oauth2/access_token.rb +4 -6
data/lib/rack/oauth2/client.rb +97 -41
data/lib/rack/oauth2/server/abstract/error.rb +2 -1
data/lib/rack/oauth2/server/extension/pkce.rb +1 -1
data/lib/rack/oauth2/server/rails/response_ext.rb +5 -5
data/lib/rack/oauth2/server/resource/error.rb +4 -4
data/lib/rack/oauth2/server/resource.rb +0 -1
data/lib/rack/oauth2/server/token/error.rb +3 -1
data/lib/rack/oauth2/server/token.rb +16 -5
data/lib/rack/oauth2/urn.rb +3 -3
data/lib/rack/oauth2/util.rb +6 -2
data/lib/rack/oauth2.rb +11 -10
data/rack-oauth2.gemspec +7 -5
data/spec/helpers/webmock_helper.rb +8 -2
data/spec/rack/oauth2/access_token/authenticator_spec.rb +2 -22
data/spec/rack/oauth2/access_token/bearer_spec.rb +2 -2
data/spec/rack/oauth2/access_token_spec.rb +0 -17
data/spec/rack/oauth2/client_spec.rb +173 -75
data/spec/rack/oauth2/oauth2_spec.rb +0 -43
data/spec/rack/oauth2/server/authorize/error_spec.rb +6 -6
data/spec/rack/oauth2/server/resource/bearer/error_spec.rb +2 -2
data/spec/rack/oauth2/server/resource/bearer_spec.rb +9 -9
data/spec/rack/oauth2/server/resource/error_spec.rb +21 -21
data/spec/rack/oauth2/server/token/authorization_code_spec.rb +2 -2
data/spec/rack/oauth2/server/token/client_credentials_spec.rb +32 -2
data/spec/rack/oauth2/server/token/error_spec.rb +8 -8
data/spec/rack/oauth2/server/token_spec.rb +72 -3
data/spec/rack/oauth2/util_spec.rb +8 -3
metadata +47 -51
data/.travis.yml +0 -7
data/lib/rack/oauth2/access_token/legacy.rb +0 -19
data/lib/rack/oauth2/access_token/mac/sha256_hex_verifier.rb +0 -17
data/lib/rack/oauth2/access_token/mac/signature.rb +0 -34
data/lib/rack/oauth2/access_token/mac/verifier.rb +0 -44
data/lib/rack/oauth2/access_token/mac.rb +0 -103
data/lib/rack/oauth2/debugger/request_filter.rb +0 -30
data/lib/rack/oauth2/debugger.rb +0 -3
data/lib/rack/oauth2/server/resource/mac/error.rb +0 -24
data/lib/rack/oauth2/server/resource/mac.rb +0 -36
data/spec/mock_response/tokens/legacy.json +0 -5
data/spec/mock_response/tokens/legacy.txt +0 -1
data/spec/mock_response/tokens/legacy_without_expires_in.txt +0 -1
data/spec/mock_response/tokens/mac.json +0 -8
data/spec/rack/oauth2/access_token/legacy_spec.rb +0 -23
data/spec/rack/oauth2/access_token/mac/sha256_hex_verifier_spec.rb +0 -28
data/spec/rack/oauth2/access_token/mac/signature_spec.rb +0 -59
data/spec/rack/oauth2/access_token/mac/verifier_spec.rb +0 -25
data/spec/rack/oauth2/access_token/mac_spec.rb +0 -141
data/spec/rack/oauth2/debugger/request_filter_spec.rb +0 -33
data/spec/rack/oauth2/server/resource/mac/error_spec.rb +0 -52
data/spec/rack/oauth2/server/resource/mac_spec.rb +0 -119
/data/spec/mock_response/{blank → blank.txt} +0 -0

data/spec/rack/oauth2/server/resource/mac_spec.rb DELETED Viewed

@@ -1,119 +0,0 @@
-require 'spec_helper.rb'
-describe Rack::OAuth2::Server::Resource::MAC do
-  let(:app) do
-    Rack::OAuth2::Server::Resource::MAC.new(simple_app) do |request|
-      case request.access_token
-      when 'valid_token'
-        token = mac_token
-        token.verify!(request)
-        token
-      when 'insufficient_scope_token'
-        request.insufficient_scope!
-      else
-        request.invalid_token!
-      end
-    end
-  end
-  let(:mac_token) do
-    Rack::OAuth2::AccessToken::MAC.new(
-      access_token: 'valid_token',
-      mac_key: 'secret',
-      mac_algorithm: 'hmac-sha-256',
-      ts: 1305820230 # fix verification time
-    )
-  end
-  let(:access_token) { env[Rack::OAuth2::Server::Resource::ACCESS_TOKEN] }
-  let(:request) { app.call(env) }
-  subject { app.call(env) }
-  shared_examples_for :non_mac_request do
-    it 'should skip OAuth 2.0 authentication' do
-      status, header, response = request
-      status.should == 200
-      access_token.should be_nil
-    end
-  end
-  shared_examples_for :authenticated_mac_request do
-    it 'should be authenticated' do
-      status, header, response = request
-      status.should == 200
-      access_token.should == mac_token
-    end
-  end
-  shared_examples_for :unauthorized_mac_request do
-    it 'should be unauthorized' do
-      status, header, response = request
-      status.should == 401
-      header['WWW-Authenticate'].should include 'MAC'
-      access_token.should be_nil
-    end
-  end
-  shared_examples_for :bad_mac_request do
-    it 'should be unauthorized' do
-      status, header, response = request
-      status.should == 400
-      access_token.should be_nil
-    end
-  end
-  context 'when no access token is given' do
-    let(:env) { Rack::MockRequest.env_for('/protected_resource') }
-    it 'should skip OAuth 2.0 authentication' do
-      status, header, response = request
-      status.should == 200
-      access_token.should be_nil
-    end
-  end
-  context 'when valid_token is given' do
-    context 'when other required params are missing' do
-      let(:env) { Rack::MockRequest.env_for('/protected_resource', 'HTTP_AUTHORIZATION' => 'MAC id="valid_token"') }
-      it_behaves_like :unauthorized_mac_request
-    end
-    context 'when other required params are invalid' do
-      let(:env) { Rack::MockRequest.env_for('/protected_resource', 'HTTP_AUTHORIZATION' => 'MAC id="valid_token", nonce="51e74de734c05613f37520872e68db5f", ts="1305820234", mac="invalid""') }
-      it_behaves_like :unauthorized_mac_request
-    end
-    context 'when all required params are valid' do
-      let(:env) { Rack::MockRequest.env_for('/protected_resource', 'HTTP_AUTHORIZATION' => 'MAC id="valid_token", nonce="51e74de734c05613f37520872e68db5f", ts="1305820234", mac="26JP6MMZyAHLHeMU8+m+NbVJgZbikp5SlT86/a62pwg="') }
-      it_behaves_like :authenticated_mac_request
-    end
-    context 'when all required params are valid and ts is expired' do
-      let(:env) { Rack::MockRequest.env_for('/protected_resource', 'HTTP_AUTHORIZATION' => 'MAC id="valid_token", nonce="51e74de734c05613f37520872e68db5f", ts="1305819234", mac="nuo4765MZrVL/qMsAtuTczhqZAE5y02ChaLCyOiVU68="') }
-      it_behaves_like :unauthorized_mac_request
-    end
-  end
-  context 'when invalid_token is given' do
-    let(:env) { Rack::MockRequest.env_for('/protected_resource', 'HTTP_AUTHORIZATION' => 'MAC id="invalid_token"') }
-    it_behaves_like :unauthorized_mac_request
-    describe 'realm' do
-      let(:env) { Rack::MockRequest.env_for('/protected_resource', 'HTTP_AUTHORIZATION' => 'MAC id="invalid_token"') }
-      context 'when specified' do
-        let(:realm) { 'server.example.com' }
-        let(:app) do
-          Rack::OAuth2::Server::Resource::MAC.new(simple_app, realm) do |request|
-            request.unauthorized!
-          end
-        end
-        it 'should use specified realm' do
-          status, header, response = request
-          header['WWW-Authenticate'].should include "MAC realm=\"#{realm}\""
-        end
-      end
-      context 'otherwize' do
-        it 'should use default realm' do
-          status, header, response = request
-          header['WWW-Authenticate'].should include "MAC realm=\"#{Rack::OAuth2::Server::Resource::DEFAULT_REALM}\""
-        end
-      end
-    end
-  end
-end

/data/spec/mock_response/{blank → blank.txt} RENAMED Viewed

File without changes