sinatra-fx-auth 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 6a6f47b09ab7c03c218d5f31d127b7ded750369b
+  data.tar.gz: 374c52ff11220a5726cd5238b3da53b0368de8f7
+SHA512:
+  metadata.gz: a1428420f5b125f9b93190dfe1f2e1ac04ee21b813f57e2674d072e2f99672c50c0567e6c3ab120fdfd11d7da219ef6c4d69ff9248c76758873ea609f090db1b
+  data.tar.gz: 3cc1af4f9055ff0269e58aa985b56d71b5450a3d82ba96683c90005f3c22aaf78a81a67a252fe312250f9cc9f9a0161c5bb73fcd1fc15238c72e6db136328a14

data/.gitignore

@@ -0,0 +1,18 @@
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+.idea
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp

data/Gemfile

@@ -0,0 +1,3 @@
+source 'https://rubygems.org'
+
+gemspec

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2012 Dave Jackson
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,56 @@
+# Sinatra::Fx::Auth
+
+Sinatra::Fx::Auth is a RESTful Authentication and Role-based Authorization extension for Sinatra.
+No sessions or cookies required.
+
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+    gem 'sinatra-fx-auth'
+
+
+And then execute:
+
+    $ bundle
+
+
+Or install it yourself as:
+
+    $ gem install sinatra-fx-auth
+
+
+## Usage
+``` ruby
+require 'sinatra/base'
+require 'sinatra/fx-auth'
+
+class MyApp < Sinatra::Base
+  register Sinatra::Fx::Auth
+
+  # Accessible by all
+  get '/products' do
+    # ...
+  end
+
+  # Requires an authenticated :admin
+  put '/products/:id', :auth => :admin do
+    # ...
+  end
+
+  # Requires an authenticated :admin or the :user with the given :id
+  get '/customers/:id/cart', :auth => [:admin, :user] do
+    # ...
+  end
+end
+```
+
+
+## Contributing
+
+1. Fork it
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Added some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create new Pull Request

data/Rakefile

@@ -0,0 +1,9 @@
+require 'bundler/gem_tasks'
+require 'rubygems'
+require 'cucumber'
+require 'cucumber/rake/task'
+
+
+Cucumber::Rake::Task.new :test do |task|
+  task.cucumber_opts = "features --format pretty"
+end

data/features/api_sign_off.feature

@@ -0,0 +1,9 @@
+Feature: API Sign Off
+
+  Scenario: API Sign Off
+
+    Given I have a User Profile
+    And   I sign on with valid credentials
+    And   I am online
+    When  the App signs me off
+    Then  I am offline

data/features/api_sign_on.feature

@@ -0,0 +1,76 @@
+Feature: API Sign On
+
+  Scenario: API Valid Credentials
+
+    Given I have a User Profile
+    And   I am offline
+    When  the App signs me on with valid credentials
+    Then  the App receives a 201 response code
+    And   the App receives an Auth Token
+#    And   I am online
+
+
+
+  Scenario: API Invalid Credentials
+
+    Given I have a User Profile
+    And   I am offline
+    When  the App tries to sign me on with invalid credentials
+    Then  the App receives a 401 response code
+    And   the App receives an Invalid User error
+#    And   I am offline
+
+
+
+  Scenario: API Locked Account
+
+    Given I have a User Profile
+    And   I am offline
+    When  the App tries to sign me on with invalid credentials
+    And   the App tries to sign me on with invalid credentials
+    And   the App tries to sign me on with invalid credentials
+    Then  the App receives a 423 response code
+    And   the App receives a Locked User error
+#    And   I am locked out
+
+
+
+  Scenario: API Locked Valid Sign On Attempt
+
+    Given I have a Locked User Profile
+    When  the App signs me on with valid credentials
+    Then  the App receives a 423 response code
+    And   the App receives a Locked User error
+#    And   I am locked out
+
+
+
+  Scenario: API Locked Invalid Sign On Attempt
+
+    Given I have a Locked User Profile
+    When  the App tries to sign me on with invalid credentials
+    Then  the App receives a 423 response code
+    And   the App receives a Locked User error
+#    And   I am locked out
+
+
+
+  Scenario: API Online Valid Sign On Attempt
+
+    Given I have a User Profile
+    When  the App signs me on with valid credentials
+    And   the App signs me on with valid credentials
+    Then  the App receives a 201 response code
+    And   the App receives an Auth Token
+#    And   I am online
+
+
+  # TODO FIX ME - How should this respond?
+  Scenario: API Online Invalid Sign On Attempt
+
+    Given I have a User Profile
+    When  the App signs me on with valid credentials
+    And   the App tries to sign me on with invalid credentials
+    Then  the App receives a 201 response code
+    And   the App receives an Auth Token
+#    And   I am online

data/features/api_sign_up.feature

@@ -0,0 +1,38 @@
+Feature: API Sign Up
+
+  Scenario: API Valid Sign Up
+
+    When the App signs me up with valid credentials
+    Then the App receives a 201 response code
+    And  the App receives an Auth Token
+
+
+  Scenario: API Sign Up with Duplicate Email
+
+    When the App tries to sign me up with a duplicate email
+    Then the App receives a 409 response code
+    And  the App receives a duplicate email error
+
+
+
+  Scenario: API Sign Up with Invalid Email
+
+    When the App tries to sign me up with an invalid email address
+    Then the App receives a 412 response code
+    And  the App receive an invalid email error
+
+
+  # TODO Return 422 for semantic error?
+  Scenario: API Sign Up with Missing Email
+
+    When the App tries to sign me up with a missing email address
+    Then the App receives a 412 response code
+    And  the App receives a missing email error
+
+
+
+  Scenario: API Sign Up with Missing Password
+
+    When the App tries to sign me up with a missing password
+    Then the App receives a 412 response code
+    And  the App receives a missing password error

data/features/step_definitions/api_sign_off/api_sign_off.rb

@@ -0,0 +1,13 @@
+
+When /^the App signs me off$/ do
+  @client = Rack::Test::Session.new Rack::MockSession.new Test::App
+  @client.header 'X-AUTH-TOKEN', @user.pass_key.token
+  @client.delete '/profiles/' + @user.id.to_s + '/key'
+  @user.reload  # Refresh from the database
+end
+
+
+Then /^I am offline$/ do
+  @user.status.should == :offline
+end
+

data/features/step_definitions/api_sign_on/api_invalid_credentials.rb

@@ -0,0 +1,18 @@
+
+When /^the App tries to sign me on with invalid credentials$/ do
+  credentials = {
+      :profile => {
+          :email => "bad@email.com",
+          :pass_phrase => "bad-password"
+      }
+  }
+  @client = Rack::Test::Session.new Rack::MockSession.new Test::App
+  @client.post '/profiles/' + @user.id.to_s + '/key', credentials
+end
+
+
+When /^the App receives an Invalid User error$/ do
+  received = JSON.parse @client.last_response.body
+  expected = JSON.parse({:error => "The email or pass phrase you provided doesn't match our records."}.to_json)
+  received.should == expected
+end

data/features/step_definitions/api_sign_on/api_locked_account.rb

@@ -0,0 +1,13 @@
+
+When /^the App receives a Locked User error$/ do
+  received = JSON.parse @client.last_response.body
+  expected = JSON.parse({:error => "Your account is locked. You can try to sign on again in 30 minutes."}.to_json)
+  received.should == expected
+end
+
+
+Given /^I have a Locked User Profile$/ do
+  @user = FactoryGirl.create :user_profile
+  @user.status = :locked
+  @user.save
+end

data/features/step_definitions/api_sign_on/api_valid_credentials.rb

@@ -0,0 +1,27 @@
+
+Given /^I have a User Profile$/ do
+  @user = FactoryGirl.create :user_profile
+  @user.save # TODO Determine why this is necessary
+end
+
+
+When /^the App signs me on with valid credentials$/ do
+  credentials = {
+      :profile => {
+          :email => @user.email,
+          :pass_phrase => "password"
+      }
+  }
+  @client = Rack::Test::Session.new Rack::MockSession.new Test::App
+  @client.post '/profiles/' + @user.id.to_s + '/key', credentials
+end
+
+
+When /^I sign on with valid credentials$/ do
+  @user.sign_on @user.email, 'password'
+end
+
+
+When /^I am online$/ do
+  @user.status.should == :online
+end

data/features/step_definitions/api_sign_up/api_duplicate_email.rb

@@ -0,0 +1,20 @@
+
+When /^the App tries to sign me up with a duplicate email$/ do
+  email = FactoryGirl.generate :email
+  @user = AuthFx::UserProfile.sign_up email, "password"
+  credentials = {
+      :profile => {
+          :email => email,
+          :pass_phrase => "password"
+      }
+  }
+  @client = Rack::Test::Session.new Rack::MockSession.new Test::App
+  @client.post '/profiles/', credentials
+end
+
+
+Then /^the App receives a duplicate email error$/ do
+  received = JSON.parse @client.last_response.body
+  expected = JSON.parse({:error => "We already have that email."}.to_json)
+  received.should == expected
+end

data/features/step_definitions/api_sign_up/api_invalid_email.rb

@@ -0,0 +1,18 @@
+
+When /^the App tries to sign me up with an invalid email address$/ do
+  credentials = {
+      :profile => {
+          :email => "bad.email.com",
+          :pass_phrase => "password"
+      }
+  }
+  @client = Rack::Test::Session.new Rack::MockSession.new Test::App
+  @client.post '/profiles/', credentials
+end
+
+
+Then /^the App receive an invalid email error$/ do
+  received = JSON.parse @client.last_response.body
+  expected = JSON.parse({:errors => {:email => ["Doesn't look like an email address to me ..."]}}.to_json)
+  received.should == expected
+end

data/features/step_definitions/api_sign_up/api_missing_email.rb

@@ -0,0 +1,18 @@
+
+When /^the App tries to sign me up with a missing email address$/ do
+  credentials = {
+      :profile => {
+          :email => "",
+          :pass_phrase => "password"
+      }
+  }
+  @client = Rack::Test::Session.new Rack::MockSession.new Test::App
+  @client.post '/profiles/', credentials
+end
+
+
+Then /^the App receives a missing email error$/ do
+  received = JSON.parse @client.last_response.body
+  expected = JSON.parse({:errors => {:email => ["We need your email address."]}}.to_json)
+  received.should == expected
+end

data/features/step_definitions/api_sign_up/api_valid_sign_up.rb

@@ -0,0 +1,23 @@
+
+When /^the App signs me up with valid credentials$/ do
+  email = FactoryGirl.generate :email
+  credentials = {
+      :profile => {
+          :email => email,
+          :pass_phrase => "password"
+      }
+  }
+  @client = Rack::Test::Session.new Rack::MockSession.new Test::App
+  @client.post '/profiles/', credentials
+end
+
+
+Then /^the App receives a (\d+) response code$/ do |arg|
+  @client.last_response.status.should == arg.to_i
+end
+
+
+Then /^the App receives an Auth Token$/ do
+  token = @client.last_response.headers['X-AUTH-TOKEN']
+  token.should_not.nil?
+end

data/features/step_definitions/api_sign_up/missing_password.rb

@@ -0,0 +1,19 @@
+
+When /^the App tries to sign me up with a missing password$/ do
+  email = FactoryGirl.generate :email
+  credentials = {
+      :profile => {
+          :email => email,
+          :pass_phrase => ""
+      }
+  }
+  @client = Rack::Test::Session.new Rack::MockSession.new Test::App
+  @client.post '/profiles/', credentials
+end
+
+
+Then /^the App receives a missing password error$/ do
+  received = JSON.parse @client.last_response.body
+  expected = JSON.parse({:errors => {:pass_phrase => ["Pass phrase must be between 5 and 50 characters long"]}}.to_json)
+  received.should == expected
+end

data/features/support/env.rb

@@ -0,0 +1,23 @@
+require 'sinatra/base'
+require 'sinatra/fx-auth'
+require 'rack/test'
+
+require 'fx-auth/models'
+require './test/factories'
+
+
+module Test
+  class App < Sinatra::Base
+    register Sinatra::Fx::Auth
+  end
+end
+
+
+module AppHelper
+  def app
+    Test::App
+  end
+end
+
+
+World(Rack::Test::Methods, AppHelper)

data/lib/sinatra/fx-auth.rb

@@ -0,0 +1,263 @@
+require 'fx-auth/models'
+
+
+module Sinatra
+  module Fx
+    module Auth
+      include AuthFx
+
+      module Helpers
+
+        def authenticated?
+          authenticated  = false
+          profile, token = token_credentials
+          authenticated = profile.authenticate? token if profile         #, request.ip if profile
+          log_authentication_failure profile, token unless authenticated #, request.ip unless authenticated
+          authenticated
+        end
+
+
+        def authorized? *roles
+          authorized     = false
+          profile, token = token_credentials
+          authorized = profile.authorized? roles if profile
+          log_authorization_failure profile, roles unless authorized
+          authorized
+        end
+
+
+        private
+
+
+        def token_credentials
+          profile = nil
+          token   = request.env['HTTP_X_AUTH_TOKEN']
+          unless token.nil?
+            passkey = Auth::PassKey.first :token => token
+            profile = passkey.user_profile if passkey
+          end
+          return profile, token
+        end
+
+
+        def param_credentials
+          return params[:profile][:email], params[:profile][:pass_phrase]
+        end
+
+
+        def valid_params?
+          # TODO Handle JSON body as well as FORM encoding
+          #  request.body.rewind  # in case someone already read it
+          #  profile = JSON.parse request.body.read
+
+          params[:profile] and params[:profile][:email] and params[:profile][:pass_phrase]
+        end
+
+
+        def error_message
+          message = env['sinatra.error'].message
+          logger.error '### Error: ' + message + ' ###'
+          {:error => message}.to_json
+        end
+
+
+        def find_user
+          profile = Auth::UserProfile.get params[:id]
+          raise Auth::MissingUserError unless profile
+          profile
+        end
+
+
+        def profile_exclusions
+          [
+              :created_at,
+              :updated_at,
+              :email_verification_code,
+              :pass_phrase,
+              :pass_phrase_crypt,
+              :pass_phrase_expires_at,
+              :sign_on_attempts,
+              :locked_until
+          ]
+        end
+
+
+        def pass_key_exclusions
+          [
+              :id,
+              :created_at,
+              :updated_at,
+              :user_profile_id
+          ]
+        end
+
+
+        def log_authentication_failure profile, token #, ip_address
+          logger.warn '### BEGIN Authentication FAILURE ###'
+          if profile
+            logger.warn '      Profile: ' + profile.id.to_s
+            logger.warn '      Status: ' + profile.status.to_s if profile.status != :online
+            if profile.pass_key
+              logger.warn '      Token: ' + profile.pass_key.token + ' != Attempted: ' + token if profile.pass_key.token != token
+              logger.warn '      Expired: ' + profile.pass_key.expires.to_s + ' < ' + Time.now.to_s if profile.pass_key.expired?
+              #logger.warn '      IP: ' + profile.pass_key.ip_address.to_s + ' != Attempted: ' + ip_address if profile.pass_key.ip_address != ip_address
+            else
+              logger.warn '      PassKey: Missing'
+            end
+          else
+            logger.warn '      Profile: Not Found'
+          end
+          logger.warn '### END   Authentication FAILURE ###'
+        end
+
+
+        def log_authorization_failure profile, allowed_roles
+          logger.warn '### BEGIN Authorization FAILURE ###'
+          if profile
+            profile_roles = []
+            profile.roles.each { |role| profile_roles.push role.name.to_sym }
+            logger.warn '      Profile: ' + profile.id.to_s
+            logger.warn '      Allowed Roles: ' + allowed_roles.to_s
+            logger.warn '      Profile Roles: ' + profile_roles.to_s
+          else
+            logger.warn '      Profile: Not Found'
+          end
+          logger.warn '### END   Authorization FAILURE ###'
+        end
+
+      end
+
+
+      def self.registered app
+        app.helpers Auth::Helpers
+
+        app.enable :logging
+
+        app.set :raise_errors, Proc.new { false }
+        app.set :show_exceptions, false
+
+
+        app.set :auth do |*roles|
+          condition do
+            unless authenticated? and authorized? *roles
+              halt 401 # TODO Return any additional info? Expired session, etc.?
+            end
+          end
+        end
+
+
+        app.before do
+          content_type 'application/json' # TODO Support other representations, XML, etc.
+        end
+
+
+        # Sign Up
+        app.post '/profiles/?' do
+          halt 422 unless valid_params?
+
+          email, pass_phrase = param_credentials
+          profile            = UserProfile.sign_up email, pass_phrase #, request.ip
+
+          if profile.errors.length == 0
+            headers "location"     => '/profiles/' + profile.id.to_s,
+                    "X-AUTH-TOKEN" => profile.pass_key.token
+            body profile.to_json :exclude => profile_exclusions
+            status 201
+
+          else
+            errs = {:errors => profile.errors.to_h}
+            body errs.to_json
+            status 412
+          end
+        end
+
+
+        # Sign On
+        app.post '/profiles/:id/key/?' do
+          profile = find_user
+
+          raise InvalidUserError unless valid_params?
+          raise LockedUserError.new :locked_until => profile.locked_until if profile.status == :locked
+
+          email, pass_phrase = param_credentials
+          pass_key           = profile.sign_on email, pass_phrase #, request.ip
+
+          if pass_key
+            headers "location"     => '/profiles/' + profile.id.to_s + '/key',
+                    "X-AUTH-TOKEN" => pass_key.token
+            body pass_key.to_json :exclude => pass_key_exclusions
+            status 201
+          end
+        end
+
+
+        # Sign Off
+        app.delete '/profiles/:id/key', :auth => [:admin, :user] do
+          profile = find_user
+          profile.sign_off
+        end
+
+
+        app.get '/profiles/:id', :auth => [:admin, :user] do
+          profile = find_user
+          profile.to_json :exclude => profile_exclusions
+        end
+
+
+        app.put '/profiles/:id', :auth => [:admin, :user] do
+          profile = find_user
+          if profile.update params[:profile]
+            profile.to_json :exclude => profile_exclusions
+          else
+            errs = {:errors => profile.errors.to_h}
+            body errs.to_json
+            status 412
+          end
+        end
+
+
+        app.get '/profiles/?', :auth => :admin do
+          UserProfile.all.to_json :exclude => profile_exclusions
+        end
+
+
+        app.delete '/profiles/:id', :auth => :admin do
+          profile = find_user
+          unless profile.destroy
+            errs = {:errors => profile.errors.to_h}
+            body errs.to_json
+            status 412
+          end
+        end
+
+
+        app.error InvalidUserError do
+          halt 401, error_message
+        end
+
+
+        app.error MissingUserError do
+          halt 404, error_message
+        end
+
+
+        app.error DuplicateUserError do
+          halt 409, error_message
+        end
+
+
+        app.error LockedUserError do
+          halt 423, error_message
+        end
+
+
+        app.error do
+          halt 500, error_message
+        end
+
+      end
+
+      #register Auth
+    end
+  end
+end

data/lib/sinatra/version.rb

@@ -0,0 +1,9 @@
+module Sinatra
+  module Fx
+
+    module Auth
+      VERSION = "0.1.0"
+    end
+
+  end
+end

data/lib/sinatra-fx-auth.rb

@@ -0,0 +1,2 @@
+require "sinatra/version"
+require "sinatra/fx-auth"

data/sinatra-fx-auth.gemspec

@@ -0,0 +1,33 @@
+# -*- encoding: utf-8 -*-
+
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+
+require 'sinatra/version'
+
+
+Gem::Specification.new do |gem|
+  gem.name        = "sinatra-fx-auth"
+  gem.version     = Sinatra::Fx::Auth::VERSION
+
+  gem.authors     = ["Dave Jackson"]
+  gem.email       = %w(dave.jackson@anywarefx.com)
+  gem.description = %q{Sinatra::Fx::Auth - RESTful Authentication with Role-based Authorization for Sinatra}
+  gem.summary     = %q{Sinatra::Fx::Auth - RESTful Authentication with Role-based Authorization for Sinatra}
+  gem.homepage    = ""
+
+  gem.files         = `git ls-files`.split($/)
+  gem.executables   = gem.files.grep(%r{^bin/}).map { |f| File.basename(f) }
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.require_paths = %w(lib)
+
+  gem.add_dependency 'sinatra'
+  gem.add_dependency 'fx-auth'
+
+  gem.add_development_dependency 'rake'
+  gem.add_development_dependency 'cucumber'
+  gem.add_development_dependency 'rspec'
+  gem.add_development_dependency 'factory_girl'
+  gem.add_development_dependency 'rack-test'
+  gem.add_development_dependency 'dm-sqlite-adapter'
+end

data/test/factories.rb

@@ -0,0 +1,17 @@
+require 'factory_girl'
+require 'test/seeds'
+
+
+FactoryGirl.define do
+
+  sequence :email do |n|
+    "profile#{n}@example.com"
+  end
+
+
+  factory :user_profile, :class => AuthFx::UserProfile do
+    email
+    pass_phrase "password"
+  end
+
+end

data/test/seeds.rb

@@ -0,0 +1,23 @@
+require 'fx-auth/models'
+
+
+DataMapper::Logger.new $stdout, :debug
+DataMapper.setup :default, 'sqlite::memory:'
+DataMapper.auto_migrate!
+
+
+AuthFx::UserProfile.create(
+    {
+        :email       => 'admin@authfx.com',
+        :pass_phrase => 'password',
+
+        :roles       => [
+            {
+                :name => 'admin'
+            },
+            {
+                :name => 'user'
+            }
+        ]
+    }
+)

metadata

@@ -0,0 +1,196 @@
+--- !ruby/object:Gem::Specification
+name: sinatra-fx-auth
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Dave Jackson
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2014-11-28 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: sinatra
+  prerelease: false
+  type: :runtime
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: fx-auth
+  prerelease: false
+  type: :runtime
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: rake
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: cucumber
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: rspec
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: factory_girl
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: rack-test
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: dm-sqlite-adapter
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Sinatra::Fx::Auth - RESTful Authentication with Role-based Authorization for Sinatra
+email:
+- dave.jackson@anywarefx.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- features/api_profile_list.feature
+- features/api_sign_off.feature
+- features/api_sign_on.feature
+- features/api_sign_up.feature
+- features/step_definitions/api_sign_off/api_sign_off.rb
+- features/step_definitions/api_sign_on/api_invalid_credentials.rb
+- features/step_definitions/api_sign_on/api_locked_account.rb
+- features/step_definitions/api_sign_on/api_valid_credentials.rb
+- features/step_definitions/api_sign_up/api_duplicate_email.rb
+- features/step_definitions/api_sign_up/api_invalid_email.rb
+- features/step_definitions/api_sign_up/api_missing_email.rb
+- features/step_definitions/api_sign_up/api_valid_sign_up.rb
+- features/step_definitions/api_sign_up/missing_password.rb
+- features/support/env.rb
+- lib/sinatra-fx-auth.rb
+- lib/sinatra/fx-auth.rb
+- lib/sinatra/version.rb
+- sinatra-fx-auth.gemspec
+- test/factories.rb
+- test/seeds.rb
+homepage: ''
+licenses: []
+metadata: {}
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project:
+rubygems_version: 2.1.9
+signing_key:
+specification_version: 4
+summary: Sinatra::Fx::Auth - RESTful Authentication with Role-based Authorization for Sinatra
+test_files:
+- features/api_profile_list.feature
+- features/api_sign_off.feature
+- features/api_sign_on.feature
+- features/api_sign_up.feature
+- features/step_definitions/api_sign_off/api_sign_off.rb
+- features/step_definitions/api_sign_on/api_invalid_credentials.rb
+- features/step_definitions/api_sign_on/api_locked_account.rb
+- features/step_definitions/api_sign_on/api_valid_credentials.rb
+- features/step_definitions/api_sign_up/api_duplicate_email.rb
+- features/step_definitions/api_sign_up/api_invalid_email.rb
+- features/step_definitions/api_sign_up/api_missing_email.rb
+- features/step_definitions/api_sign_up/api_valid_sign_up.rb
+- features/step_definitions/api_sign_up/missing_password.rb
+- features/support/env.rb
+- test/factories.rb
+- test/seeds.rb