reclaim-oidc 0.0.2 → 0.0.7

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 383f73a7aac6866e6fdc8389278bf87a08bcbde95fe1488ce617d6a766dde063
-  data.tar.gz: 95095ec4eb2861a99e684f9c301a21b325c87e334fee6c369f83ec981e9df56f
+  metadata.gz: cba3f05a249dd9120160ad582c9d5fa257ee11983517159cd2528cf36fc8cc19
+  data.tar.gz: 678239df41432010614a9cbd771212b5e557ebbc6ff1c3e224fc78ee4e5fdd34
 SHA512:
-  metadata.gz: acd015e4869441dcaa014d47b94818e3d2d40ac33d2df04b089ee27fb212bfe059d5c327c590aff7f042a358913fb356c602a4bf9347be5553d54ec85e16f9e2
-  data.tar.gz: 8bd05c267bd59cad42aff243019117d8a7213c88a593bd41ffbb3a8194eb4dadbdfac9f06c7072cf2ff35f5e71f3257be2a10b6542b49702881dcdf3b835ea8e
+  metadata.gz: db2123585c8000c90d859ac29f1f8f5fbbf2f4fdb02fbe4d048d2577ef724fd5ded1ae8ad9d28193ec6ce31d8c059e28076aa3546cf1e420e5f3275ffc3c2f32
+  data.tar.gz: dbabb3e6428a7ece79ced4d392b99d91bad2dc38bf5247424adbaf4fe584105522608ed3beae734b4b795a914ed3085197eb4689764786da4f41bbcdb0d08bf2

data/bin/reclaim-oidc

@@ -5,13 +5,14 @@ require 'reclaim_oidc'
 class OptParser
   class ScriptOptions
     attr_accessor :name, :add, :delete, :list, :description, :redirect_uri,
-                  :verbose
+                  :verbose, :jwt_secret
 
     def initialize
       self.delete = false
       self.add = false
       self.list = false
       self.verbose = false
+      self.jwt_secret = false
     end
 
     def define_options(parser)
@@ -27,6 +28,7 @@ class OptParser
       client_redirect_option(parser)
       client_description_option(parser)
       boolean_verbose_option(parser)
+      jwt_secret_option(parser)
 
       parser.separator ""
       parser.separator "Common options:"
@@ -87,6 +89,12 @@ class OptParser
         self.verbose = v
       end
     end
+    
+    def jwt_secret_option(parser)
+      parser.on("-j", "--jwt-secret [JWT-SECRET]", "Set JWT secret") do |v|
+        self.jwt_secret = v
+      end
+    end
   end
 
   #
@@ -99,7 +107,11 @@ class OptParser
     @options = ScriptOptions.new
     @args = OptionParser.new do |parser|
       @options.define_options(parser)
-      parser.parse!(args)
+      begin
+        parser.parse!(args)
+      rescue OptionParser::InvalidOption => e
+        puts "ERROR: Invalid option"
+      end
     end
     @options
   end
@@ -152,4 +164,7 @@ if (options.delete)
   roidc.delete_client(options.name)
   puts "OK"
 end
-
+if (options.jwt_secret)
+  roidc.set_jwt_secret(options.jwt_secret)
+  puts "JWT secret has been changed"
+end

data/lib/reclaim_oidc.rb

@@ -1,14 +1,18 @@
 require 'net/http'
 require 'json'
 
+$VERSION_MAJOR = 0
+$VERSION_MINOR = 0
+$VERSION_MICRO = 7
+
 class ReclaimOidc
   def initialize(verbose=false, url='http://localhost:7776')
     @verbose = verbose
     @url = url
     @client_secret = get_client_secret()
   end
-  def self.hello
-    puts "Hello World!"
+  def self.version
+    return "#{$VERSION_MAJOR}.#{$VERSION_MINOR}.#{$VERSION_MICRO}"
   end
   def parse_identities_from_http(body)
     arr = JSON.parse(body)
@@ -22,8 +26,13 @@ class ReclaimOidc
 
   def get_client_secret
     uri = URI(@url + '/config/reclaim-rest-plugin')
-    resp = JSON.parse Net::HTTP.get(uri)
-    return resp["OIDC_CLIENT_SECRET"]
+    begin
+      resp = JSON.parse Net::HTTP.get(uri)
+      return resp["OIDC_CLIENT_SECRET"]
+    rescue Errno::ECONNREFUSED => e
+      puts "ERROR: REST service is not running"
+      exit
+    end
   end
 
   def get_clients
@@ -41,21 +50,32 @@ class ReclaimOidc
   def add_client(name,redirect_uri,description)
     raise if redirect_uri.nil? or description.nil? or name.nil?
     uri = URI(@url + '/identity')
-    payload = {'name' => "#{name}"}.to_json
-    resp = Net::HTTP.post(uri, payload)
+    payload = {'name' => "#{name}"}
+    #resp = Net::HTTP.post(uri, payload)
+    #req = Net::HTTP::Post.new(uri, payload.to_json)
+    Net::HTTP.start(uri.host, uri.port) do |http|
+      resp = http.post(uri.path, payload.to_json)
+    end
     uri = URI(@url + "/namestore/#{name}")
-    record = {'record_type' => "RECLAIM_OIDC_CLIENT",
+    records = {'record_name' => "@",
+               'data' => []}
+    records["data"] << {'record_type' => "RECLAIM_OIDC_CLIENT",
               'value' => description,
-              'record_name' => "@",
-              'expiration_time' => "1d",
-              'flag' => 8}
-    resp = Net::HTTP.post(uri,record.to_json)
-    record = {'record_type' => "RECLAIM_OIDC_REDIRECT",
+              'expiration_time' => "1h",
+              'private' => false,
+              'relative_expiration' => true,
+              'supplemental' => false,
+              'shadow' => false}
+    records["data"] << {'record_type' => "RECLAIM_OIDC_REDIRECT",
               'value' => redirect_uri,
-              'record_name' => "@",
-              'expiration_time' => "1d",
-              'flag' => 8}
-    resp = Net::HTTP.post(uri,record.to_json)
+              'expiration_time' => "1h",
+              'private' => false,
+              'relative_expiration' => true,
+              'supplemental' => false,
+              'shadow' => false}
+    Net::HTTP.start(uri.host, uri.port) do |http|
+      resp = http.post(uri.path,records.to_json)
+    end
   end
   def delete_client(name)
     raise if name.nil?
@@ -77,8 +97,13 @@ class ReclaimOidc
     op['userinfo_endpoint'] = host + '/openid/userinfo'
     op
   end
-  def set_jwt_secret
-    raise
+  def set_jwt_secret(jwt_secret)
+    uri = URI(@url + '/config/reclaim-rest-plugin')
+    request = Net::HTTP::Post.new(uri, 'Content-Type' => 'application/json')
+    request.body = {"JWT_SECRET": jwt_secret}.to_json
+    resp = Net::HTTP.start(uri.host, uri.port) do |http|
+      http.request request
+    end
   end
 
   class Client
@@ -93,11 +118,16 @@ class ReclaimOidc
     end
     def parse_client_info(obj)
       obj.each do |record|
-        if (record['record_type'] == 'RECLAIM_OIDC_CLIENT')
-          @description = record['value']
+        if "@" != record["record_name"]
+          next
         end
-        if (record['record_type'] == 'RECLAIM_OIDC_REDIRECT')
-          @redirect_uri = record['value']
+        record["data"].each do |data|
+          if (data['record_type'] == 'RECLAIM_OIDC_CLIENT')
+            @description = data['value']
+          end
+          if (data['record_type'] == 'RECLAIM_OIDC_REDIRECT')
+            @redirect_uri = data['value']
+          end
         end
       end
     end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: reclaim-oidc
 version: !ruby/object:Gem::Version
-  version: 0.0.2
+  version: 0.0.7
 platform: ruby
 authors:
 - Martin Schanzenbach
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2019-04-28 00:00:00.000000000 Z
+date: 2020-07-27 00:00:00.000000000 Z
 dependencies: []
 description: Used to manage re:claimID OpenID Connect clients and OpenID Connect Provider
   configuration(s)
@@ -24,7 +24,7 @@ homepage: https://gitlab.com/reclaimid/reclaim-oidc
 licenses:
 - AGPL-3.0
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -39,8 +39,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
-signing_key: 
+rubygems_version: 3.1.2
+signing_key:
 specification_version: 4
 summary: re:claimID OpenID Connect CLI
 test_files: []