rack-oauth_proxy 0.0.3 → 0.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +4 -0
- data/lib/rack/oauth_proxy.rb +0 -1
- data/lib/rack/oauth_proxy/client.rb +21 -36
- data/lib/rack/oauth_proxy/client/request.rb +20 -18
- data/lib/rack/oauth_proxy/version.rb +1 -1
- data/rack-oauth_proxy.gemspec +2 -1
- data/spec/rack/oauth_proxy/client_spec.rb +34 -9
- metadata +30 -3
- data/lib/rack/oauth_proxy/client/response.rb +0 -42
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 6c33bd03642050ec16695d9edd4eb0d128c1b26d
|
|
4
|
+
data.tar.gz: 18abbeca292daa9d059f18cfa3b13d86d86b04f8
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 2834913040a3706d41932e707744bbddec7bc2d522364fe0f8656c8c0c5ef93d12cce00adf69523b3495dc83700dde5d80e6a17125cba5a1a1232872563be432
|
|
7
|
+
data.tar.gz: b037d89e8c295df21a9c4cc88ccf02dd9807f01442c979d13c2f69784a65735d0fb81ccc3dcfff72b61ca8e06f5a7fb9a628e2b65c62b15884838ccd36eccd06
|
data/CHANGELOG.md
CHANGED
data/lib/rack/oauth_proxy.rb
CHANGED
|
@@ -3,7 +3,6 @@ require "rack/oauth_proxy/access_tokens/invalid"
|
|
|
3
3
|
require "rack/oauth_proxy/access_tokens/valid"
|
|
4
4
|
require "rack/oauth_proxy/client"
|
|
5
5
|
require "rack/oauth_proxy/client/request"
|
|
6
|
-
require "rack/oauth_proxy/client/response"
|
|
7
6
|
require "rack/oauth_proxy/version"
|
|
8
7
|
|
|
9
8
|
module Rack
|
|
@@ -1,60 +1,45 @@
|
|
|
1
|
-
require "
|
|
1
|
+
require "faraday"
|
|
2
|
+
require "faraday_middleware"
|
|
2
3
|
|
|
3
4
|
module Rack
|
|
4
5
|
class OauthProxy
|
|
5
6
|
class Client
|
|
6
|
-
|
|
7
|
-
OPEN_TIMEOUT = 1
|
|
7
|
+
attr_reader :options
|
|
8
8
|
|
|
9
9
|
def initialize(options = {})
|
|
10
10
|
@options = options
|
|
11
11
|
end
|
|
12
12
|
|
|
13
13
|
def fetch(env)
|
|
14
|
-
request = Request.new(env)
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
header = {
|
|
19
|
-
"Authorization" => request.authorization,
|
|
20
|
-
"Host" => host,
|
|
21
|
-
"Resource-Owner-Id" => request.resource_owner_id,
|
|
22
|
-
"Scopes" => request.scopes,
|
|
23
|
-
}.reject {|key, value| value.nil? }
|
|
24
|
-
raw_response = http_client.get(path, header)
|
|
25
|
-
response = Response.new(raw_response)
|
|
26
|
-
if response.valid_as_access_token?
|
|
27
|
-
AccessTokens::Valid.new(response.to_hash)
|
|
28
|
-
else
|
|
29
|
-
AccessTokens::Invalid.new
|
|
30
|
-
end
|
|
31
|
-
else
|
|
32
|
-
AccessTokens::Invalid.new
|
|
33
|
-
end
|
|
34
|
-
rescue Timeout::Error
|
|
14
|
+
request = Request.new(env, options)
|
|
15
|
+
response = connection.get(url, request.params, request.header)
|
|
16
|
+
AccessTokens::Valid.new(response.body)
|
|
17
|
+
rescue
|
|
35
18
|
AccessTokens::Invalid.new
|
|
36
19
|
end
|
|
37
20
|
|
|
38
21
|
private
|
|
39
22
|
|
|
40
|
-
def
|
|
41
|
-
@
|
|
42
|
-
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
client.read_timeout = READ_TIMEOUT
|
|
47
|
-
client.open_timeout = OPEN_TIMEOUT
|
|
48
|
-
client.use_ssl = true if uri.scheme == 'https'
|
|
49
|
-
client
|
|
23
|
+
def connection
|
|
24
|
+
@connection ||= Faraday.new(headers: header) do |connection|
|
|
25
|
+
connection.adapter :net_http
|
|
26
|
+
connection.response :raise_error
|
|
27
|
+
connection.response :json
|
|
28
|
+
end
|
|
50
29
|
end
|
|
51
30
|
|
|
52
31
|
def url
|
|
53
|
-
|
|
32
|
+
options[:url] or raise NoUrlError
|
|
54
33
|
end
|
|
55
34
|
|
|
56
35
|
def host
|
|
57
|
-
|
|
36
|
+
options[:host]
|
|
37
|
+
end
|
|
38
|
+
|
|
39
|
+
def header
|
|
40
|
+
{
|
|
41
|
+
"Host" => host,
|
|
42
|
+
}.reject {|key, value| value.nil? }
|
|
58
43
|
end
|
|
59
44
|
|
|
60
45
|
class NoUrlError < StandardError
|
|
@@ -1,40 +1,42 @@
|
|
|
1
1
|
require "active_support/core_ext/hash/slice"
|
|
2
|
-
require "
|
|
3
|
-
require "active_support/core_ext/object/to_query"
|
|
2
|
+
require "json"
|
|
4
3
|
require "rack"
|
|
5
4
|
|
|
6
5
|
module Rack
|
|
7
6
|
class OauthProxy
|
|
8
7
|
class Client
|
|
9
8
|
class Request
|
|
10
|
-
|
|
9
|
+
DEFAULT_PROPAGATED_HEADER_FIELDS = ["Authorization"]
|
|
10
|
+
|
|
11
|
+
attr_reader :env, :options
|
|
12
|
+
|
|
13
|
+
def initialize(env, options = {})
|
|
11
14
|
@env = env
|
|
15
|
+
@options = options
|
|
12
16
|
end
|
|
13
17
|
|
|
14
|
-
def
|
|
15
|
-
|
|
16
|
-
rack_request.params["access_token"].present? ||
|
|
17
|
-
rack_request.params["bearer_token"].present?
|
|
18
|
+
def header
|
|
19
|
+
header_with_nil_value.reject {|key, value| value.nil? }
|
|
18
20
|
end
|
|
19
21
|
|
|
20
|
-
def
|
|
21
|
-
|
|
22
|
+
def header_with_nil_value
|
|
23
|
+
propagated_header_fields.inject({}) do |result, field|
|
|
24
|
+
result.merge(field => env["HTTP_" + field.gsub("-", "_").upcase])
|
|
25
|
+
end
|
|
22
26
|
end
|
|
23
27
|
|
|
24
|
-
def
|
|
25
|
-
rack_request.params.slice("access_token", "bearer_token")
|
|
28
|
+
def params
|
|
29
|
+
rack_request.params.slice("access_token", "bearer_token")
|
|
26
30
|
end
|
|
27
31
|
|
|
28
|
-
|
|
29
|
-
@env["HTTP_AUTHORIZATION"]
|
|
30
|
-
end
|
|
32
|
+
private
|
|
31
33
|
|
|
32
|
-
def
|
|
33
|
-
@env
|
|
34
|
+
def rack_request
|
|
35
|
+
@rack_request ||= Rack::Request.new(@env)
|
|
34
36
|
end
|
|
35
37
|
|
|
36
|
-
def
|
|
37
|
-
|
|
38
|
+
def propagated_header_fields
|
|
39
|
+
options[:propagated_header_fields] || DEFAULT_PROPAGATED_HEADER_FIELDS
|
|
38
40
|
end
|
|
39
41
|
end
|
|
40
42
|
end
|
data/rack-oauth_proxy.gemspec
CHANGED
|
@@ -1,4 +1,3 @@
|
|
|
1
|
-
# coding: utf-8
|
|
2
1
|
lib = File.expand_path("../lib", __FILE__)
|
|
3
2
|
$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
|
|
4
3
|
require "rack/oauth_proxy/version"
|
|
@@ -18,8 +17,10 @@ Gem::Specification.new do |spec|
|
|
|
18
17
|
spec.require_paths = ["lib"]
|
|
19
18
|
|
|
20
19
|
spec.add_dependency "activesupport"
|
|
20
|
+
spec.add_dependency "faraday_middleware"
|
|
21
21
|
spec.add_dependency "rack"
|
|
22
22
|
spec.add_development_dependency "bundler", "~> 1.5"
|
|
23
|
+
spec.add_development_dependency "pry"
|
|
23
24
|
spec.add_development_dependency "rake"
|
|
24
25
|
spec.add_development_dependency "rspec", "2.14.1"
|
|
25
26
|
spec.add_development_dependency "webmock"
|
|
@@ -1,9 +1,19 @@
|
|
|
1
1
|
require "spec_helper"
|
|
2
|
+
require "securerandom"
|
|
2
3
|
require "stringio"
|
|
3
4
|
|
|
4
5
|
describe Rack::OauthProxy::Client do
|
|
6
|
+
before do
|
|
7
|
+
stub_request(:get, url).to_return(status: 401, body: {}.to_json)
|
|
8
|
+
stub_request(:get, url).with(headers: { "Authorization" => "Bearer #{token}" }).to_return(response)
|
|
9
|
+
end
|
|
10
|
+
|
|
5
11
|
let(:client) do
|
|
6
|
-
described_class.new(
|
|
12
|
+
described_class.new(options)
|
|
13
|
+
end
|
|
14
|
+
|
|
15
|
+
let(:options) do
|
|
16
|
+
{ url: url }
|
|
7
17
|
end
|
|
8
18
|
|
|
9
19
|
let(:url) do
|
|
@@ -13,6 +23,7 @@ describe Rack::OauthProxy::Client do
|
|
|
13
23
|
let(:env) do
|
|
14
24
|
{
|
|
15
25
|
"HTTP_AUTHORIZATION" => "Bearer #{token}",
|
|
26
|
+
"HTTP_DUMMY" => "dummy",
|
|
16
27
|
"rack.input" => StringIO.new,
|
|
17
28
|
}
|
|
18
29
|
end
|
|
@@ -21,34 +32,48 @@ describe Rack::OauthProxy::Client do
|
|
|
21
32
|
SecureRandom.hex(32)
|
|
22
33
|
end
|
|
23
34
|
|
|
35
|
+
let(:response) do
|
|
36
|
+
{
|
|
37
|
+
status: status,
|
|
38
|
+
body: body,
|
|
39
|
+
}
|
|
40
|
+
end
|
|
41
|
+
|
|
42
|
+
let(:status) do
|
|
43
|
+
200
|
|
44
|
+
end
|
|
45
|
+
|
|
46
|
+
let(:body) do
|
|
47
|
+
{}.to_json
|
|
48
|
+
end
|
|
49
|
+
|
|
24
50
|
context "#fetch" do
|
|
25
51
|
context "when authentication succeeded" do
|
|
26
|
-
before do
|
|
27
|
-
stub_request(:get, url).to_return(status: 200, body: {}.to_json)
|
|
28
|
-
end
|
|
29
|
-
|
|
30
52
|
it "returns valid access token" do
|
|
31
53
|
client.fetch(env).should be_a Rack::OauthProxy::AccessTokens::Valid
|
|
54
|
+
a_request(:get, url).with(headers: { "Authorization" => "Bearer #{token}" }).should have_been_made
|
|
32
55
|
end
|
|
33
56
|
end
|
|
34
57
|
|
|
35
|
-
context "
|
|
58
|
+
context "when authentication failed" do
|
|
36
59
|
before do
|
|
37
60
|
env.delete("HTTP_AUTHORIZATION")
|
|
38
61
|
end
|
|
39
62
|
|
|
40
63
|
it "returns invalid access token" do
|
|
41
64
|
client.fetch(env).should be_a Rack::OauthProxy::AccessTokens::Invalid
|
|
65
|
+
a_request(:get, url).should have_been_made
|
|
42
66
|
end
|
|
43
67
|
end
|
|
44
68
|
|
|
45
|
-
context "
|
|
69
|
+
context "with propagated header fields option" do
|
|
46
70
|
before do
|
|
47
|
-
|
|
71
|
+
options[:propagated_header_fields] = ["Dummy"]
|
|
48
72
|
end
|
|
49
73
|
|
|
50
|
-
it "
|
|
74
|
+
it "propagates specified fields" do
|
|
51
75
|
client.fetch(env).should be_a Rack::OauthProxy::AccessTokens::Invalid
|
|
76
|
+
a_request(:get, url).with(headers: { "DUMMY" => "dummy" }).should have_been_made
|
|
52
77
|
end
|
|
53
78
|
end
|
|
54
79
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: rack-oauth_proxy
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.0
|
|
4
|
+
version: 0.1.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Ryo Nakamura
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2014-04-
|
|
11
|
+
date: 2014-04-24 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: activesupport
|
|
@@ -24,6 +24,20 @@ dependencies:
|
|
|
24
24
|
- - ">="
|
|
25
25
|
- !ruby/object:Gem::Version
|
|
26
26
|
version: '0'
|
|
27
|
+
- !ruby/object:Gem::Dependency
|
|
28
|
+
name: faraday_middleware
|
|
29
|
+
requirement: !ruby/object:Gem::Requirement
|
|
30
|
+
requirements:
|
|
31
|
+
- - ">="
|
|
32
|
+
- !ruby/object:Gem::Version
|
|
33
|
+
version: '0'
|
|
34
|
+
type: :runtime
|
|
35
|
+
prerelease: false
|
|
36
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
37
|
+
requirements:
|
|
38
|
+
- - ">="
|
|
39
|
+
- !ruby/object:Gem::Version
|
|
40
|
+
version: '0'
|
|
27
41
|
- !ruby/object:Gem::Dependency
|
|
28
42
|
name: rack
|
|
29
43
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -52,6 +66,20 @@ dependencies:
|
|
|
52
66
|
- - "~>"
|
|
53
67
|
- !ruby/object:Gem::Version
|
|
54
68
|
version: '1.5'
|
|
69
|
+
- !ruby/object:Gem::Dependency
|
|
70
|
+
name: pry
|
|
71
|
+
requirement: !ruby/object:Gem::Requirement
|
|
72
|
+
requirements:
|
|
73
|
+
- - ">="
|
|
74
|
+
- !ruby/object:Gem::Version
|
|
75
|
+
version: '0'
|
|
76
|
+
type: :development
|
|
77
|
+
prerelease: false
|
|
78
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
79
|
+
requirements:
|
|
80
|
+
- - ">="
|
|
81
|
+
- !ruby/object:Gem::Version
|
|
82
|
+
version: '0'
|
|
55
83
|
- !ruby/object:Gem::Dependency
|
|
56
84
|
name: rake
|
|
57
85
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -114,7 +142,6 @@ files:
|
|
|
114
142
|
- lib/rack/oauth_proxy/access_tokens/valid.rb
|
|
115
143
|
- lib/rack/oauth_proxy/client.rb
|
|
116
144
|
- lib/rack/oauth_proxy/client/request.rb
|
|
117
|
-
- lib/rack/oauth_proxy/client/response.rb
|
|
118
145
|
- lib/rack/oauth_proxy/version.rb
|
|
119
146
|
- rack-oauth_proxy.gemspec
|
|
120
147
|
- spec/rack/oauth_proxy/client_spec.rb
|
|
@@ -1,42 +0,0 @@
|
|
|
1
|
-
require "json"
|
|
2
|
-
|
|
3
|
-
module Rack
|
|
4
|
-
class OauthProxy
|
|
5
|
-
class Client
|
|
6
|
-
class Response
|
|
7
|
-
def initialize(raw)
|
|
8
|
-
@raw = raw
|
|
9
|
-
end
|
|
10
|
-
|
|
11
|
-
def valid_as_access_token?
|
|
12
|
-
ok? && json? && hash?
|
|
13
|
-
end
|
|
14
|
-
|
|
15
|
-
def to_hash
|
|
16
|
-
parsed_body
|
|
17
|
-
end
|
|
18
|
-
|
|
19
|
-
private
|
|
20
|
-
|
|
21
|
-
def ok?
|
|
22
|
-
@raw.code == "200"
|
|
23
|
-
end
|
|
24
|
-
|
|
25
|
-
def json?
|
|
26
|
-
parsed_body
|
|
27
|
-
true
|
|
28
|
-
rescue JSON::ParserError
|
|
29
|
-
false
|
|
30
|
-
end
|
|
31
|
-
|
|
32
|
-
def hash?
|
|
33
|
-
parsed_body.is_a?(Hash)
|
|
34
|
-
end
|
|
35
|
-
|
|
36
|
-
def parsed_body
|
|
37
|
-
@parsed_body ||= JSON.parse(@raw.body)
|
|
38
|
-
end
|
|
39
|
-
end
|
|
40
|
-
end
|
|
41
|
-
end
|
|
42
|
-
end
|