shopify-sinatra-app 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: ecb9d81878d71aa112a589d76932f041c53e1d9a
+  data.tar.gz: 81d6eb212418d81c89fbad68595d3b6fdcde01b9
+SHA512:
+  metadata.gz: a9738522aa12eec39f3b87267a0a72af1b01788dcdc0acba8280b83b53fabb28ae71dad9ef9a19329fd62f273ebf4abd014f9f07fbb7db3ee9dc61ba5997bad7
+  data.tar.gz: 176f8fc34e159c4f01ea4eb9f5f779a6bc4ff29a85fab83562c8d78c01bb2448a9848cea1484b3960cb3bad5002208705bc622a518b8b152df82418e8fe5e644

data/.gitignore

@@ -0,0 +1 @@
+*.gem

data/Gemfile

@@ -0,0 +1,29 @@
+source 'https://rubygems.org'
+ruby "2.0.0"
+
+gem 'sinatra'
+gem 'sinatra-redis'
+gem 'sinatra-activerecord'
+gem 'sinatra-twitter-bootstrap', require: 'sinatra/twitter-bootstrap'
+gem 'rack-flash3', require: 'rack-flash'
+gem 'activesupport'
+gem 'attr_encrypted'
+gem 'foreman'
+gem 'rake'
+
+gem 'resque', '~> 1.22.0'
+
+gem 'omniauth-shopify-oauth2'
+gem 'shopify_api'
+
+group :production do
+  gem 'pg'
+end
+
+group :development do
+  gem 'sqlite3'
+  gem 'rack-test'
+  gem 'fakeweb'
+  gem 'mocha', require: false
+  gem 'byebug'
+end

data/Gemfile.lock

@@ -0,0 +1,137 @@
+GEM
+  remote: https://rubygems.org/
+  specs:
+    activemodel (4.1.1)
+      activesupport (= 4.1.1)
+      builder (~> 3.1)
+    activerecord (4.1.1)
+      activemodel (= 4.1.1)
+      activesupport (= 4.1.1)
+      arel (~> 5.0.0)
+    activeresource (4.0.0)
+      activemodel (~> 4.0)
+      activesupport (~> 4.0)
+      rails-observers (~> 0.1.1)
+    activesupport (4.1.1)
+      i18n (~> 0.6, >= 0.6.9)
+      json (~> 1.7, >= 1.7.7)
+      minitest (~> 5.1)
+      thread_safe (~> 0.1)
+      tzinfo (~> 1.1)
+    arel (5.0.1.20140414130214)
+    attr_encrypted (1.3.2)
+      encryptor (>= 1.3.0)
+    builder (3.2.2)
+    byebug (3.1.2)
+      columnize (~> 0.8)
+      debugger-linecache (~> 1.2)
+    coderay (1.1.0)
+    columnize (0.8.9)
+    debugger-linecache (1.2.0)
+    dotenv (0.7.0)
+    encryptor (1.3.0)
+    fakeweb (1.3.0)
+    faraday (0.9.0)
+      multipart-post (>= 1.2, < 3)
+    foreman (0.64.0)
+      dotenv (~> 0.7.0)
+      thor (>= 0.13.6)
+    hashie (2.1.1)
+    i18n (0.6.9)
+    json (1.8.1)
+    jwt (1.0.0)
+    metaclass (0.0.4)
+    method_source (0.8.2)
+    minitest (5.3.4)
+    mocha (1.1.0)
+      metaclass (~> 0.0.1)
+    multi_json (1.10.1)
+    multi_xml (0.5.5)
+    multipart-post (2.0.0)
+    oauth2 (0.9.4)
+      faraday (>= 0.8, < 0.10)
+      jwt (~> 1.0)
+      multi_json (~> 1.3)
+      multi_xml (~> 0.5)
+      rack (~> 1.2)
+    omniauth (1.2.1)
+      hashie (>= 1.2, < 3)
+      rack (~> 1.0)
+    omniauth-oauth2 (1.1.2)
+      faraday (>= 0.8, < 0.10)
+      multi_json (~> 1.3)
+      oauth2 (~> 0.9.3)
+      omniauth (~> 1.2)
+    omniauth-shopify-oauth2 (1.1.6)
+      omniauth-oauth2 (~> 1.1.1)
+    pg (0.17.1)
+    pry (0.9.12.6)
+      coderay (~> 1.0)
+      method_source (~> 0.8)
+      slop (~> 3.4)
+    rack (1.5.2)
+    rack-flash3 (1.0.5)
+      rack
+    rack-protection (1.5.3)
+      rack
+    rack-test (0.6.2)
+      rack (>= 1.0)
+    rails-observers (0.1.2)
+      activemodel (~> 4.0)
+    rake (10.3.2)
+    redis (3.0.7)
+    redis-namespace (1.4.1)
+      redis (~> 3.0.4)
+    resque (1.22.0)
+      multi_json (~> 1.0)
+      redis-namespace (~> 1.0)
+      sinatra (>= 0.9.2)
+      vegas (~> 0.1.2)
+    shopify_api (3.2.4)
+      activeresource (>= 3.0.0)
+      pry (>= 0.9.12.6)
+      thor (~> 0.18.1)
+    sinatra (1.4.5)
+      rack (~> 1.4)
+      rack-protection (~> 1.4)
+      tilt (~> 1.3, >= 1.3.4)
+    sinatra-activerecord (2.0.2)
+      activerecord (>= 3.2)
+      sinatra (~> 1.0)
+    sinatra-redis (0.3.0)
+      redis
+      sinatra (>= 0.9.4)
+    sinatra-twitter-bootstrap (2.3.3)
+    slop (3.5.0)
+    sqlite3 (1.3.9)
+    thor (0.18.1)
+    thread_safe (0.3.4)
+    tilt (1.4.1)
+    tzinfo (1.2.1)
+      thread_safe (~> 0.1)
+    vegas (0.1.11)
+      rack (>= 1.0.0)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  activesupport
+  attr_encrypted
+  byebug
+  fakeweb
+  foreman
+  json
+  mocha
+  omniauth-shopify-oauth2
+  pg
+  rack-flash3
+  rack-test
+  rake
+  resque (~> 1.22.0)
+  shopify_api
+  sinatra
+  sinatra-activerecord
+  sinatra-redis
+  sinatra-twitter-bootstrap
+  sqlite3

data/LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2014 Kevin Hughes
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,148 @@
+shopify-sinatra-app
+===================
+
+"A classy shopify app"
+
+
+Getting Started
+---------------
+
+Install the gem:
+
+```
+gem install shopify-sinatra-app
+```
+
+or build from source
+
+```
+gem build shopify-sinatra-app.gemspec
+gem install shopify-sinatra-app-X.X.X.gem
+```
+
+To create a new app use the generator:
+
+```
+shopify-sinatra-app-generator new <your new app name>
+```
+
+This will create a new skeleton shopify-sinatra-app. The generator will create several default files for you rather than having them bundled in the sinatra extension - its worthwhile to read this section to understand what each of these files is for.
+
+`config/app.yml` --> Some important config information is contained in this file.
+  * scope: The scope of your app (what your app can access from the Shopify store once installed, e.g. read_products), this will be read by your app and used when your app is installed.
+
+  * uninstall_webhook: Initially an uninstall webhook is also defined in this file, although without a proper url, this file is a good place to define objects that need to be created on Shopify when your app is installed like webhooks, fulfillment and carrier services.
+
+`config/database.yml` --> The database config for active record. Initially this is setup to use sqlite3 for development and testing which you may want to change to mimic your production database.
+
+`config.ru` --> Rackup file - describes how to run a rack based app
+
+`Gemfile` --> manages the dependencies of the app
+
+`lib/app.rb` --> This file is the skeleton app file. More details on how to use the methods provided by this extension are given in the following section.
+
+`Procfile` --> Specific for deploying to Heroku, this file tells heroku how to run the app
+
+`public/icon.png` --> This icon file is used by the Shopify Embedded App SKD and is shown in the menu bar of your embedded app
+
+`Rakefile` --> includes some helper methods etc for running and managing the app. Standard for ruby based projects
+
+`views/layouts/appliction.erb` --> This is the layout file that all templates will use unless otherwise specified. It sets up some defaults for using the Shopify Embedded App SDK and Twitter Bootstrap for styling
+
+`views/_top_bar.erb` --> This is a partial view that describes the top bar inside a Shopify Embedded App. It also has some code to *forward* flash messages to the Embedded App SKD
+
+`views/*` --> The other views used by the app. You'll probably make a lot of changes to home.erb and install.erb to customize the experience for your app
+
+
+### Setting the app to use your Shopify API credentials
+
+You'll need to create a Shopify Partner Account and a new application. You can make an account [here](http://www.shopify.ca/partners) and see this [tutorial](http://docs.shopify.com/api/the-basics/getting-started) for creating a new application.
+
+After creating your new application you need to create a `.env` file and add the following lines:
+
+```
+SHOPIFY_API_KEY=<your api key>
+SHOPIFY_SHARED_SECRET=<your shared secret>
+SECRET=<generate a random string to encrypt credentials with>
+```
+
+
+Shopify::Methods
+----------------
+
+`shopify_session` - The main method of the framework, most of your routes will use this method to acquire a valid shopify session and then perform api calls to Shopfiy. The method simply takes a block of code and makes the shop_name available to you after activating an api session. Here is an example endpoint that displays products:
+
+```ruby
+get '/products.json' do
+  shopify_session do |shop_name|
+    products = ShopifyAPI::Product.all(limit: 5)
+    products.to_json
+  end
+end
+```
+
+`webhook_session` - This method is for an endpoint that recieves a webhook from Shopify. Webhooks are a great way to keep your app in sync with a shop's data without polling. You can read more about webhooks [here](http://docs.shopify.com/api/tutorials/using-webhooks). This method also takes a block of code and makes the shop and webhook data as a hash available (note only works for json webhooks, don't use xml). Here is an example that listens to a order creation webhook:
+
+```ruby
+post '/order.json' do
+  webhook_session do |shop, params|
+    # do something with the data
+  end
+end
+```
+
+`webhook_job` - Its impossible to control the flow of webhooks to your app from Shopify especially if a larger store installs your app or if a shop has a flash sale. To prevent your app from getting overloaded with webhook requests it is usually a good idea to process webhooks in a background queue and return a 200 to Shopify immediately. This method provides this functionality using redis and resque. This method takes the name of a job class whose perform method expects a `shop_name` and the webhook data as a hash. The session method is useful for prototpying and experimenting but production apps should use `webhook_job`. Here is an example:
+
+```ruby
+post '/order.json' do
+  webhook_job(OrderWebhookJob)
+end
+
+class OrderWebhookJob
+  @queue = :default
+
+  def self.perform(shop_name, params)
+    # do something with the data
+  end
+end
+```
+
+`install` - This is a private method provided with the framework that gets called when the app is authorized for the first time. You should fill this method in with anything you need to initialize on install, for example webhooks and services on shopify or any other database models you have created specific to a shop.
+
+`uninstall` - This method gets called when your app recieves an uninstall webhook from shopify. You should override this method in your class and do any appropriate clean up when the app is removed from a shop.
+
+`logout` - This method clears the current session data in the app
+
+`current_shop` - Returns the name of the current shop
+
+`base_url` - This returns the url of the app
+
+
+Deploying
+---------
+
+This template was created with deploying to Heroku in mind. Heroku is a great cloud based app hosting provider that makes it incredibly easy to get an application into a product environment. To create a new heroku application download the [Heroku Toolbelt](https://devcenter.heroku.com/articles/quickstart) and create a new application:
+
+```
+heroku apps:create <your new app name>
+```
+
+You will also need to add the following (free) add-ons to your new Heroku app:
+
+```
+heroku addons:add heroku-postgresql
+heroku addons:add rediscloud
+```
+
+and make sure you have at least 1 dyno for web and resque:
+
+```
+heroku scale web=1 resque=1
+```
+
+Note - if you are not using any background queue for processing webhooks then you do not need the redis add-on or the resque dyno so you can set it to 0.
+
+Contributing
+------------
+
+PRs welcome!

data/bin/shopify-sinatra-app-generator

@@ -0,0 +1,48 @@
+#!/usr/bin/env ruby
+require 'fileutils'
+
+working_dir = Dir.pwd
+
+spec = Gem::Specification.find_by_name("shopify-sinatra-app")
+gem_root = spec.gem_dir
+gem_lib = gem_root + "/lib"
+
+generator_dir = gem_lib + "/generator"
+
+if ARGV.length < 2
+  puts "Usage:\n./shopify-sinatra-app new <app_name>"
+else
+  app_name = ARGV[1]
+  app_dir = working_dir + "/" + app_name
+
+  begin
+    Dir.mkdir(app_dir)
+
+    FileUtils.cp_r(generator_dir + "/config",    app_dir + "/config")
+    FileUtils.cp_r(generator_dir + "/db",        app_dir + "/db")
+    FileUtils.cp_r(generator_dir + "/lib",       app_dir + "/lib")
+    FileUtils.cp_r(generator_dir + "/public",    app_dir + "/public")
+    FileUtils.cp_r(generator_dir + "/views",     app_dir + "/views")
+
+    FileUtils.cp(generator_dir   + "/config.ru", app_dir + "/config.ru")
+    FileUtils.cp(generator_dir   + "/Procfile",  app_dir + "/Procfile")
+    FileUtils.cp(generator_dir   + "/Rakefile",  app_dir + "/Rakefile")
+    FileUtils.cp(generator_dir   + "/Gemfile",  app_dir + "/Gemfile")
+    FileUtils.cp(generator_dir   + "/README.md",  app_dir + "/README.md")
+
+    Dir.chdir(app_dir)
+
+    pipe = IO.popen("bundle install")
+    while (line = pipe.gets)
+      print line
+    end
+
+    pipe = IO.popen("bundle exec rake db:migrate")
+    while (line = pipe.gets)
+      print line
+    end
+
+  rescue Errno::EEXIST => e
+    puts "App directory alread exists, pick a new app name or delete the existing folder"
+  end
+end

data/lib/generator/Gemfile

@@ -0,0 +1,30 @@
+source 'https://rubygems.org'
+ruby "2.0.0"
+
+gem 'sinatra'
+gem 'sinatra-redis'
+gem 'sinatra-activerecord'
+gem 'sinatra-twitter-bootstrap', require: 'sinatra/twitter-bootstrap'
+gem 'rack-flash3', require: 'rack-flash'
+gem 'activesupport'
+gem 'attr_encrypted'
+gem 'foreman'
+gem 'rake'
+
+gem 'resque', '~> 1.22.0'
+
+gem 'shopify-sinatra-app'
+gem 'omniauth-shopify-oauth2'
+gem 'shopify_api'
+
+group :production do
+  gem 'pg'
+end
+
+group :development do
+  gem 'sqlite3'
+  gem 'rack-test'
+  gem 'fakeweb'
+  gem 'mocha', require: false
+  gem 'byebug'
+end

data/lib/generator/Procfile

@@ -0,0 +1 @@
+web: bundle exec rackup config.ru -p $PORT

data/lib/generator/README.md

@@ -0,0 +1,4 @@
+New Shopify-Sinatra-App
+=======================
+
+Fill me in!

data/lib/generator/Rakefile

@@ -0,0 +1,48 @@
+require 'sinatra/activerecord/rake'
+require 'resque/tasks'
+require 'rake/testtask'
+require './lib/app'
+
+task :server do
+  pipe = IO.popen("bundle exec rackup config.ru -p 4567")
+  while (line = pipe.gets)
+    print line
+  end
+end
+
+task :deploy do
+  pipe = IO.popen("git push heroku master --force")
+  while (line = pipe.gets)
+    print line
+  end
+end
+
+task :clear do
+  Rake::Task["clear_products"].invoke
+  Rake::Task["clear_charities"].invoke
+  Rake::Task["clear_shops"].invoke
+end
+
+task :clear_shops do
+  Shop.delete_all
+end
+
+task :clear_charities do
+  Charity.delete_all
+end
+
+task :clear_products do
+  Product.delete_all
+end
+
+task :creds2heroku do
+  Bundler.with_clean_env {
+    api_key = `sed -n '1p' .env`
+    shared_secret = `sed -n '2p' .env`
+    secret = `sed -n '3p' .env`
+
+    `heroku config:set #{api_key}`
+    `heroku config:set #{shared_secret}`
+    `heroku config:set #{secret}`
+  }
+end

data/lib/generator/config/app.yml

@@ -0,0 +1,6 @@
+scope: 'read_products, read_orders'
+
+uninstall_webhook:
+  topic: "app/uninstalled"
+  address: "your apps url"
+  format: "json"

data/lib/generator/config/database.yml

@@ -0,0 +1,9 @@
+development:
+  adapter: sqlite3
+  database: db/shopify_app.sqlite3
+  pool: 5
+
+test:
+  adapter: sqlite3
+  database: "db/test.sqlite3"
+  pool: 8

data/lib/generator/config.ru

@@ -0,0 +1,2 @@
+require './lib/app'
+SinatraApp.run!

data/lib/generator/db/migrate/20140413221328_create_shops.rb

@@ -0,0 +1,12 @@
+class CreateShops < ActiveRecord::Migration
+  def self.up
+    create_table :shops do |t|
+      t.string :name
+      t.string :token_encrypted
+    end
+  end
+
+  def self.down
+    drop_table :shops
+  end
+end

data/lib/generator/db/migrate/20140414042317_add_index_to_shops.rb

@@ -0,0 +1,9 @@
+class AddIndexToShops < ActiveRecord::Migration
+  def self.up
+    add_index :shops, :name
+  end
+
+  def self.down
+    remove_index :shops, :name
+  end
+end

data/lib/generator/lib/app.rb

@@ -0,0 +1,38 @@
+require 'sinatra/shopify-sinatra-app'
+
+class SinatraApp < Sinatra::Base
+  register Sinatra::Shopify
+
+  get '/' do
+    # your app's Home page
+    shopify_session do |shop_name|
+      @shop = Shop.find_by(:name => shop_name)
+      @products = ShopifyAPI::Product.all(limit: 5)
+      erb :home
+    end
+  end
+
+  private
+
+  def install
+    # setup any webhooks or services you need when your app is installed
+    shopify_session do |shop_name|
+      params = YAML.load(File.read("config/app.yml"))
+
+      # create the uninstall webhook
+      uninstall_webhook = ShopifyAPI::Webhook.new(params["uninstall_webhook"])
+      unless ShopifyAPI::Webhook.find(:all).include?(uninstall_webhook)
+        uninstall_webhook.save
+      end
+    end
+    redirect '/'
+  end
+
+  def uninstall
+    # remove data for a shop when they uninstall your app
+    webhook_session do |shop, params|
+      shop.destroy
+    end
+  end
+
+end

data/lib/generator/views/_top_bar.erb

@@ -0,0 +1,17 @@
+<script type="text/javascript">
+
+  ShopifyApp.ready(function(){
+    ShopifyApp.Bar.initialize({
+      icon: 'icon.png'
+    });
+
+    <% if flash[:notice] %>
+      ShopifyApp.flashNotice("<%= flash[:notice] %>");
+    <% end %>
+
+    <% if flash[:error] %>
+      ShopifyApp.flashError("<%= flash[:error] %>");
+    <% end %>
+
+  });
+</script>

data/lib/generator/views/home.erb

@@ -0,0 +1,17 @@
+<%= erb :"_top_bar", :layout => false, :locals => locals %>
+
+<h3>Shopify Sinatra App</h3>
+<p>Welcome!</p>
+
+<h3>Products</h3>
+<table class="table table-striped table-hover">
+  <tbody>
+    <% @products.each do |product| %>
+      <tr>
+        <td>
+          <a href=<%="https://#{@shop.name}/admin/products/#{product.product_id}"%> target="_blank"> <%= product.product_id %> </a>
+        </td>
+      </tr>
+    <% end %>
+  </tbody>
+</table>

data/lib/generator/views/install.erb

@@ -0,0 +1,9 @@
+<h1>Shopify Sinatra App</h1>
+
+<h2>Install This App</h2>
+<h2><small>This app requires you to login to start using it.</small></h2>
+
+<form action="/login" method="post">
+  <input type="url" name="shop" placeholder="Shop URL">
+  <input type="submit" value="Install App" />
+</form>

data/lib/generator/views/layouts/application.erb

@@ -0,0 +1,21 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <script src="https://cdn.shopify.com/s/assets/external/app.js"></script>
+  <script type="text/javascript">
+    ShopifyApp.init({
+      apiKey: "<%= SinatraApp.settings.api_key %>",
+      shopOrigin: "<%= current_shop_url %>",
+      debug: true
+    });
+  </script>
+
+  <%= bootstrap_assets %>
+</head>
+
+<body>
+  <div class="container">
+    <%= yield %>
+  </div>
+</body>
+</html>

data/lib/sinatra/shopify-sinatra-app.rb

@@ -0,0 +1,248 @@
+require 'sinatra/base'
+require 'sinatra/redis'
+require 'sinatra/activerecord'
+require 'sinatra/twitter-bootstrap'
+
+require 'resque'
+require 'rack-flash'
+require 'attr_encrypted'
+require 'active_support/all'
+
+require 'shopify_api'
+require 'omniauth-shopify-oauth2'
+
+module Sinatra
+  module Shopify
+
+    module Methods
+      def install
+        raise NotImplementedError
+      end
+
+      def uninstall
+        raise NotImplementedError
+      end
+
+      def logout
+        session[:shopify] = nil
+      end
+
+      def base_url
+        @base_url ||= "#{request.env['rack.url_scheme']}://#{request.env['HTTP_HOST']}"
+      end
+
+      def current_shop
+        session[:shopify][:shop] if session.has_key?(:shopify)
+      end
+
+      def current_shop_url
+        "https://#{current_shop}" if current_shop
+      end
+
+      def shopify_session(&blk)
+        if !session.has_key?(:shopify)
+          get_session
+        elsif params[:shop].present? && session[:shopify][:shop] != sanitize_shop_param(params)
+          logout
+          get_session
+        else
+          shop_name = session[:shopify][:shop]
+          token = session[:shopify][:token]
+
+          api_session = ShopifyAPI::Session.new(shop_name, token)
+          ShopifyAPI::Base.activate_session(api_session)
+
+          yield shop_name
+        end
+      end
+
+      def webhook_session(&blk)
+        return unless verify_shopify_webhook
+
+        shop_name = request.env['HTTP_X_SHOPIFY_SHOP_DOMAIN']
+        shop = Shop.find_by(:name => shop_name)
+
+        if shop.present?
+          params = ActiveSupport::JSON.decode(request.body.read.to_s)
+          api_session = ShopifyAPI::Session.new(shop_name, shop.token)
+          ShopifyAPI::Base.activate_session(api_session)
+
+          yield shop, params
+
+          status 200
+        end
+      end
+
+      def webhook_job(jobKlass)
+        return unless verify_shopify_webhook
+
+        shop_name = request.env['HTTP_X_SHOPIFY_SHOP_DOMAIN']
+        params = ActiveSupport::JSON.decode(request.body.read.to_s)
+
+        Resque.enqueue(jobKlass, shop_name, params)
+
+        status 200
+      end
+
+      private
+
+      def get_session
+        shop_name = sanitize_shop_param(params)
+        shop = Shop.find_by(:name => shop_name)
+
+        return_to = request.env["sinatra.route"].split(' ').last
+
+        if shop.present?
+          session[:shopify] ||= {}
+          session[:shopify][:shop] = shop.name
+          session[:shopify][:token] = shop.token
+          redirect return_to
+        else
+          authenticate(return_to)
+        end
+      end
+
+      def authenticate(return_to = '/')
+        if shop_name = sanitize_shop_param(params)
+          redirect_url = "/auth/shopify?shop=#{shop_name}&return_to=#{base_url}#{return_to}"
+          fullpage_redirect_to redirect_url
+        else
+          redirect "/install"
+        end
+      end
+
+      def fullpage_redirect_to(redirect_url)
+        @fullpage_redirect_to = redirect_url
+
+        erb "<script type='text/javascript'>
+              window.top.location.href = '<%= @fullpage_redirect_to %>';
+            </script>", :layout => false
+      end
+
+      def sanitize_shop_param(params)
+        return unless params[:shop].present?
+        name = params[:shop].to_s.strip
+        name += '.myshopify.com' if !name.include?("myshopify.com") && !name.include?(".")
+        name.gsub!('https://', '')
+        name.gsub!('http://', '')
+
+        u = URI("http://#{name}")
+        u.host.ends_with?(".myshopify.com") ? u.host : nil
+      end
+
+      def verify_shopify_webhook
+        data = request.body.read.to_s
+        digest = OpenSSL::Digest::Digest.new('sha256')
+        calculated_hmac = Base64.encode64(OpenSSL::HMAC.digest(digest, app.settings.shared_secret, data)).strip
+        request.body.rewind
+
+        calculated_hmac == request.env['HTTP_X_SHOPIFY_HMAC_SHA256']
+      end
+    end
+
+    def self.registered(app)
+      app.helpers Shopify::Methods
+      app.register Sinatra::ActiveRecordExtension
+      app.register Sinatra::Twitter::Bootstrap::Assets
+
+      app.set :database_file, File.expand_path("config/database.yml")
+      app.set :views, File.expand_path("views")
+      app.set :public_folder, File.expand_path("public")
+      app.set :erb, :layout => :'layouts/application'
+      app.set :protection, :except => :frame_options
+
+      app.enable :sessions
+      app.enable :inline_templates
+
+      app.set :scope, YAML.load(File.read(File.expand_path("config/app.yml")))["scope"]
+
+      app.set :api_key, ENV['SHOPIFY_API_KEY']
+      app.set :shared_secret, ENV['SHOPIFY_SHARED_SECRET']
+      app.set :secret, ENV['SECRET']
+
+      app.use Rack::Flash, :sweep => true
+      app.use Rack::MethodOverride
+      app.use Rack::Session::Cookie, :key => '#{base_url}.session',
+                                     :path => '/',
+                                     :secret => app.settings.secret,
+                                     :expire_after => 2592000
+
+      app.set :redis_url, ENV["REDISCLOUD_URL"] || "redis://localhost:6379/"
+      redis_uri = URI.parse(app.settings.redis_url)
+      Resque.redis = ::Redis.new(:host => redis_uri.host,
+                               :port => redis_uri.port,
+                               :password => redis_uri.password)
+      Resque.redis.namespace = "resque"
+      app.set :redis, app.settings.redis_url
+
+      app.use OmniAuth::Builder do
+        provider :shopify,
+          app.settings.api_key,
+          app.settings.shared_secret,
+
+          :scope => app.settings.scope,
+
+          :setup => lambda { |env|
+            params = Rack::Utils.parse_query(env['QUERY_STRING'])
+            site_url = "https://#{params['shop']}"
+            env['omniauth.strategy'].options[:client_options][:site] = site_url
+          }
+      end
+
+      ShopifyAPI::Session.setup({:api_key => app.settings.api_key,
+                                 :secret => app.settings.shared_secret})
+
+      app.get '/install' do
+        erb :install, :layout => false
+      end
+
+      # endpoint for the app/uninstall webhook
+      app.post '/uninstall.json' do
+        uninstall
+      end
+
+      app.post '/login' do
+        authenticate
+      end
+
+      app.get '/logout' do
+        logout
+        redirect '/install'
+      end
+
+      app.get '/auth/shopify/callback' do
+        shop_name = params["shop"]
+        token = request.env['omniauth.auth']['credentials']['token']
+
+        session[:shopify] ||= {}
+        session[:shopify][:shop] = shop_name
+        session[:shopify][:token] = token
+
+        if Shop.where(:name => shop_name).blank?
+          Shop.create(:name => shop_name, :token => token)
+          install
+        end
+
+        return_to = env['omniauth.params']['return_to']
+        redirect return_to
+      end
+
+      app.get '/auth/failure' do
+        erb "<h1>Authentication Failed:</h1>
+             <h3>message:<h3> <pre>#{params}</pre>", :layout => false
+      end
+    end
+  end
+
+  class Shop < ActiveRecord::Base
+
+    def self.secret
+      @secret ||= ENV['SECRET']
+    end
+
+    attr_encrypted :token, :key => secret, :attribute => 'token_encrypted'
+    validates_presence_of :name, :token
+  end
+
+  register Shopify
+end

data/shopify-sinatra-app.gemspec

@@ -0,0 +1,34 @@
+Gem::Specification.new do |s|
+  s.name = 'shopify-sinatra-app'
+  s.version = '0.0.1'
+
+  s.summary     = "A classy shopify app"
+  s.description = "A Sinatra extension for building Shopify Apps. Akin to the shopify_app gem but for Sinatra"
+
+  s.authors = ["Kevin Hughes"]
+  s.email = "kevin.hughes@shopify.com"
+  s.homepage = "https://github.com/pickle27/shopify-sinatra-app/"
+  s.license = 'MIT'
+
+  s.files = `git ls-files`.split("\n")
+  s.executables << 'shopify-sinatra-app-generator'
+
+  s.add_runtime_dependency 'sinatra'
+  s.add_runtime_dependency 'sinatra-redis'
+  s.add_runtime_dependency 'sinatra-activerecord'
+  s.add_runtime_dependency 'sinatra-twitter-bootstrap'
+  s.add_runtime_dependency 'rack-flash3'
+  s.add_runtime_dependency 'activesupport'
+  s.add_runtime_dependency 'attr_encrypted'
+
+  s.add_runtime_dependency 'resque', '~> 1.22.0'
+
+  s.add_runtime_dependency 'shopify_api'
+  s.add_runtime_dependency 'omniauth-shopify-oauth2'
+
+  s.add_development_dependency 'rake'
+  s.add_development_dependency 'sqlite3'
+  s.add_development_dependency 'rack-test'
+  s.add_development_dependency 'fakeweb'
+  s.add_development_dependency 'mocha'
+end

metadata

@@ -0,0 +1,279 @@
+--- !ruby/object:Gem::Specification
+name: shopify-sinatra-app
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Kevin Hughes
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-06-23 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: sinatra
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra-redis
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra-activerecord
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra-twitter-bootstrap
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rack-flash3
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: activesupport
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: attr_encrypted
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: resque
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.22.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.22.0
+- !ruby/object:Gem::Dependency
+  name: shopify_api
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: omniauth-shopify-oauth2
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sqlite3
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rack-test
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: fakeweb
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: mocha
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: A Sinatra extension for building Shopify Apps. Akin to the shopify_app
+  gem but for Sinatra
+email: kevin.hughes@shopify.com
+executables:
+- shopify-sinatra-app-generator
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- Gemfile
+- Gemfile.lock
+- LICENSE
+- README.md
+- bin/shopify-sinatra-app-generator
+- lib/generator/Gemfile
+- lib/generator/Procfile
+- lib/generator/README.md
+- lib/generator/Rakefile
+- lib/generator/config.ru
+- lib/generator/config/app.yml
+- lib/generator/config/database.yml
+- lib/generator/db/.keep
+- lib/generator/db/migrate/20140413221328_create_shops.rb
+- lib/generator/db/migrate/20140414042317_add_index_to_shops.rb
+- lib/generator/lib/app.rb
+- lib/generator/public/icon.png
+- lib/generator/views/_top_bar.erb
+- lib/generator/views/home.erb
+- lib/generator/views/install.erb
+- lib/generator/views/layouts/application.erb
+- lib/sinatra/shopify-sinatra-app.rb
+- shopify-sinatra-app.gemspec
+homepage: https://github.com/pickle27/shopify-sinatra-app/
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.0.14
+signing_key: 
+specification_version: 4
+summary: A classy shopify app
+test_files: []