RubyGems - rodauth-oauth - Versions diffs - 0.7.3 → 0.9.0 - Mend

rodauth-oauth 0.7.3 → 0.9.0

Files changed (81) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +1 -418
data/README.md +30 -390
data/doc/release_notes/0_0_1.md +3 -0
data/doc/release_notes/0_0_2.md +15 -0
data/doc/release_notes/0_0_3.md +31 -0
data/doc/release_notes/0_0_4.md +36 -0
data/doc/release_notes/0_0_5.md +36 -0
data/doc/release_notes/0_0_6.md +21 -0
data/doc/release_notes/0_1_0.md +44 -0
data/doc/release_notes/0_2_0.md +43 -0
data/doc/release_notes/0_3_0.md +28 -0
data/doc/release_notes/0_4_0.md +18 -0
data/doc/release_notes/0_4_1.md +9 -0
data/doc/release_notes/0_4_2.md +5 -0
data/doc/release_notes/0_4_3.md +3 -0
data/doc/release_notes/0_5_0.md +11 -0
data/doc/release_notes/0_5_1.md +13 -0
data/doc/release_notes/0_6_0.md +9 -0
data/doc/release_notes/0_6_1.md +6 -0
data/doc/release_notes/0_7_0.md +20 -0
data/doc/release_notes/0_7_1.md +10 -0
data/doc/release_notes/0_7_2.md +21 -0
data/doc/release_notes/0_7_3.md +10 -0
data/doc/release_notes/0_7_4.md +5 -0
data/doc/release_notes/0_8_0.md +37 -0
data/doc/release_notes/0_9_0.md +56 -0
data/lib/generators/rodauth/oauth/templates/app/views/rodauth/authorize.html.erb +50 -0
data/lib/generators/rodauth/oauth/templates/app/views/rodauth/device_search.html.erb +11 -0
data/lib/generators/rodauth/oauth/templates/app/views/rodauth/device_verification.html.erb +20 -0
data/lib/generators/rodauth/oauth/templates/app/views/rodauth/new_oauth_application.html.erb +55 -0
data/lib/generators/rodauth/oauth/templates/app/views/rodauth/oauth_application.html.erb +29 -0
data/lib/generators/rodauth/oauth/templates/app/views/rodauth/oauth_application_oauth_tokens.html.erb +39 -0
data/lib/generators/rodauth/oauth/templates/app/views/rodauth/oauth_applications.html.erb +30 -0
data/lib/generators/rodauth/oauth/templates/app/views/rodauth/oauth_tokens.html.erb +35 -0
data/lib/generators/rodauth/oauth/templates/db/migrate/create_rodauth_oauth.rb +21 -1
data/lib/rodauth/features/oauth.rb +3 -1418
data/lib/rodauth/features/oauth_application_management.rb +225 -0
data/lib/rodauth/features/oauth_assertion_base.rb +96 -0
data/lib/rodauth/features/oauth_authorization_code_grant.rb +252 -0
data/lib/rodauth/features/oauth_authorization_server.rb +0 -0
data/lib/rodauth/features/oauth_base.rb +771 -0
data/lib/rodauth/features/oauth_client_credentials_grant.rb +33 -0
data/lib/rodauth/features/oauth_device_grant.rb +220 -0
data/lib/rodauth/features/oauth_dynamic_client_registration.rb +252 -0
data/lib/rodauth/features/oauth_http_mac.rb +3 -21
data/lib/rodauth/features/oauth_implicit_grant.rb +59 -0
data/lib/rodauth/features/oauth_jwt.rb +276 -100
data/lib/rodauth/features/oauth_jwt_bearer_grant.rb +59 -0
data/lib/rodauth/features/oauth_management_base.rb +68 -0
data/lib/rodauth/features/oauth_pkce.rb +98 -0
data/lib/rodauth/features/oauth_resource_server.rb +21 -0
data/lib/rodauth/features/oauth_saml_bearer_grant.rb +102 -0
data/lib/rodauth/features/oauth_token_introspection.rb +108 -0
data/lib/rodauth/features/oauth_token_management.rb +79 -0
data/lib/rodauth/features/oauth_token_revocation.rb +109 -0
data/lib/rodauth/features/oidc.rb +36 -6
data/lib/rodauth/features/oidc_dynamic_client_registration.rb +147 -0
data/lib/rodauth/oauth/database_extensions.rb +15 -2
data/lib/rodauth/oauth/jwe_extensions.rb +64 -0
data/lib/rodauth/oauth/refinements.rb +48 -0
data/lib/rodauth/oauth/ttl_store.rb +9 -3
data/lib/rodauth/oauth/version.rb +1 -1
data/locales/en.yml +33 -12
data/templates/authorize.str +57 -8
data/templates/client_secret_field.str +2 -2
data/templates/description_field.str +1 -1
data/templates/device_search.str +11 -0
data/templates/device_verification.str +24 -0
data/templates/homepage_url_field.str +2 -2
data/templates/jwks_field.str +4 -0
data/templates/jwt_public_key_field.str +4 -0
data/templates/name_field.str +1 -1
data/templates/new_oauth_application.str +9 -0
data/templates/oauth_application.str +7 -3
data/templates/oauth_application_oauth_tokens.str +52 -0
data/templates/oauth_applications.str +3 -2
data/templates/oauth_tokens.str +10 -11
data/templates/redirect_uri_field.str +2 -2
metadata +84 -4
data/lib/rodauth/features/oauth_saml.rb +0 -104

data/lib/generators/rodauth/oauth/templates/app/views/rodauth/oauth_tokens.html.erb ADDED Viewed

@@ -0,0 +1,35 @@
+<% oauth_tokens = rodauth.scope.instance_variable_get(:@oauth_tokens) %>
+<% tokens_count = oauth_tokens.count %>
+<% if tokens_count.zero? %>
+  <p>No oauth tokens yet!</p>
+<% else %>
+  <table class="table">
+    <thead>
+      <tr>
+        <th scope="col"><=% rodauth.oauth_applications_name_label %></th>
+        <th scope="col"><=% rodauth.oauth_tokens_token_label %></th>
+        <th scope="col"><=% rodauth.oauth_tokens_refresh_token_label %></th>
+        <th scope="col"><=% rodauth.oauth_tokens_expires_in_label %></th>
+        <th scope="col"><=% rodauth.oauth_tokens_scopes_label %></th>
+        <th scope="col"><span class="badge badge-pill badge-dark"><%= tokens_count %></span>
+      </tr>
+    </thead>
+    <tbody>
+      <% oauth_tokens.each do |oauth_token| %>
+        <tr>
+          <td><%= oauth_token[rodauth.oauth_applications_name_column] %></td>
+          <td><code class="token"><%= oauth_token[rodauth.oauth_tokens_token_column] %></code></td>
+          <td><code class="token"><%= oauth_token[rodauth.oauth_tokens_refresh_token_column] %></code></td>
+          <td><%= oauth_token[rodauth.oauth_tokens_expires_in_column] %></td>
+          <td><%= oauth_token[rodauth.oauth_tokens_scopes_column] %></td>
+          <td>
+            <%= form_tag rodauth.oauth_token_path(oauth_token[rodauth.oauth_tokens_id_column]), method: :post do %>
+              <%= submit_tag rodauth.oauth_token_revoke_button, class: "btn btn-danger" %>
+            <% end %>
+          </td>
+        </tr>
+      <% end %>
+    </tbody>
+  </table>
+  <%= rodauth.oauth_management_pagination_links(oauth_tokens) %>
+<% end %>

data/lib/generators/rodauth/oauth/templates/db/migrate/create_rodauth_oauth.rb CHANGED Viewed

@@ -11,6 +11,23 @@ class CreateRodauthOauth < ActiveRecord::Migration<%= migration_version %>
       t.string :client_secret, null: false, index: { unique: true }
       t.string :scopes, null: false
       t.datetime :created_at, null: false, default: -> { "CURRENT_TIMESTAMP" }
+      # extra params
+      # t.string :token_endpoint_auth_method, null: true
+      # t.string :grant_types, null: true
+      # t.string :response_types, null: true
+      # t.string :client_uri, null: true
+      # t.string :logo_uri, null: true
+      # t.string :tos_uri, null: true
+      # t.string :policy_uri, null: true
+      # t.string :jwks_uri, null: true
+      # t.string :jwks, null: true
+      # t.string :contacts, null: true
+      # t.string :software_id, null: true
+      # t.string :software_version, null: true
+      # JWT/OIDC per application signing verification
+      # t.text :jwt_public_key, null: true
+      # RP-initiated logout
+      # t.string :post_logout_redirect_uri, null: false
     end
     create_table :oauth_grants do |t|
@@ -19,6 +36,7 @@ class CreateRodauthOauth < ActiveRecord::Migration<%= migration_version %>
       t.integer :oauth_application_id
       t.foreign_key :oauth_applications, column: :oauth_application_id
       t.string :code, null: false
+      t.index(%i[oauth_application_id code], unique: true)
       t.datetime :expires_in, null: false
       t.string :redirect_uri
       t.datetime :revoked_at
@@ -31,7 +49,9 @@ class CreateRodauthOauth < ActiveRecord::Migration<%= migration_version %>
       # t.string :code_challenge_method
       # uncomment to use OIDC nonce
       # t.string :nonce
-      t.index(%i[oauth_application_id code], unique: true)
+      # device code grant
+      # t.string :user_code, null: true, unique: true
+      # t.datetime :last_polled_at, null: true
     end
     create_table :oauth_tokens do |t|