spiffy_stores_api 4.11.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 05ec96d33503fbe15376eeec20a213a9caf8022a78db5750a6e9fe19ecb9d71e
+  data.tar.gz: 4cf2334c9c1b0b361069904df1b763cdcef90069ca3dcc35ab18b757228d8ff0
+SHA512:
+  metadata.gz: 4711b5524e2034510d526c01905970243fd8d386ce61be686de37bc214aa10a06fa6e857af592360de3f1856648b12dc11a43d9239ce59ee0f98f3869f045297
+  data.tar.gz: 163757b2e709e1220c134cad7ecec498d10c26da783b71d9535d42310733e1d8b3f1be19407ee55904ab78d119888845ab121b0a69a6ef51810152b2bcdb0b2f

data/.document

@@ -0,0 +1,5 @@
+README.rdoc
+lib/**/*.rb
+bin/*
+features/**/*.feature
+LICENSE

data/.gitignore

@@ -0,0 +1,10 @@
+*.sw?
+.DS_Store
+coverage
+rdoc
+doc
+pkg
+.ruby-version
+*.lock
+.idea
+.dev/

data/.travis.yml

@@ -0,0 +1,14 @@
+language: ruby
+sudo: false
+
+rvm:
+  - 2.2.9
+  - 2.3.6
+  - 2.4.3
+  - 2.5.0
+
+gemfile:
+  - Gemfile_ar40
+  - Gemfile_ar41
+  - Gemfile_ar50
+  - Gemfile_ar_master

data/CHANGELOG

@@ -0,0 +1,3 @@
+== Version 4.11.0
+
+* Initial release

data/Gemfile

@@ -0,0 +1,5 @@
+source "https://rubygems.org"
+
+gemspec
+
+gem "activeresource", "~> 5.0"

data/Gemfile_ar40

@@ -0,0 +1,5 @@
+source "https://rubygems.org"
+
+gemspec
+
+gem "activeresource", "4.0.0"

data/Gemfile_ar41

@@ -0,0 +1,5 @@
+source "https://rubygems.org"
+
+gemspec
+
+gem "activeresource", "4.1.0"

data/Gemfile_ar50

@@ -0,0 +1,5 @@
+source "https://rubygems.org"
+
+gemspec
+
+gem "activeresource", "5.0.0"

data/Gemfile_ar_master

@@ -0,0 +1,5 @@
+source "https://rubygems.org"
+
+gemspec
+
+gem 'activeresource', git: 'git://github.com/rails/activeresource'

data/README.md

@@ -0,0 +1,200 @@
+Spiffy Stores API
+=================
+[![Build Status](https://travis-ci.com/SpiffyStores/spiffy_stores_api.svg?branch=master)](https://travis-ci.com/SpiffyStores/spiffy_stores_api)
+
+
+The SpiffyStores API gem allows Ruby developers to programmatically access the admin section of SpiffyStores stores.
+
+The API is implemented as JSON over HTTP using all four verbs (GET/POST/PUT/DELETE). Each resource, like Order, Product, or Collection, has its own URL and is manipulated in isolation. In other words, we’ve tried to make the API follow the REST principles as much as possible.
+
+## Usage
+
+### Requirements
+
+All API usage happens through SpiffyStores applications.
+
+For more information and detailed documentation about the API visit https://www.spiffystores.com.au/kb/An_Introduction_to_the_Spiffy_Stores_API
+
+#### Ruby version
+
+This gem requires Ruby 2.4.3 as of version 4.11.0.
+
+### Installation
+
+Add `spiffy_stores_api` to your `Gemfile`:
+
+```ruby
+gem 'spiffy_stores_api'
+```
+
+Or install via [gem](http://rubygems.org/)
+
+```bash
+gem install spiffy_stores_api
+```
+
+### Getting Started
+
+SpiffyStoresAPI uses ActiveResource to communicate with the REST web service. ActiveResource has to be configured with a fully authorized URL of a particular store first. To obtain that URL you can follow these steps:
+
+1. First create a new application in either the partners admin or your store admin. For a private App you'll need the API_KEY and the PASSWORD otherwise you'll need the API_KEY and SHARED_SECRET.
+
+   If you're not sure how to create a new application in the partner/store admin and/or if you're not sure how to generate the required credentials, you can [read the related spiffy_stores docs](https://docs.spiffy_stores.com/api/guides/api-credentials) on the same.
+
+2. For a private App you just need to set the base site url as follows:
+
+   ```ruby
+   shop_url = "https://#{API_KEY}:#{PASSWORD}@SHOP_NAME.spiffystores.com/api"
+   SpiffyStoresAPI::Base.site = shop_url
+   ```
+
+   That's it, you're done, skip to step 6 and start using the API!
+
+   For a partner app you will need to supply two parameters to the Session class before you instantiate it:
+
+  ```ruby
+  SpiffyStoresAPI::Session.setup({:api_key => API_KEY, :secret => SHARED_SECRET})
+  ```
+
+   Spiffy Stores maintains [`omniauth-spiffy-oauth2`](https://github.com/SpiffyStores/omniauth-spiffy-oauth2) which securely wraps the OAuth flow and interactions with Spiffy Stores (steps 3 and 4 above). Using this gem is the recommended way to use OAuth authentication in your application.
+
+3. In order to access a shop's data, apps need an access token from that specific shop. This is a two-stage process. Before interacting with a shop for the first time an app should redirect the user to the following URL:
+
+   ```
+   GET https://SHOP_NAME.spiffystores.com/api/oauth/authorize
+   ```
+
+   with the following parameters:
+
+   * ``client_id``– Required – The API key for your app
+   * ``scope`` – Required – The list of required scopes (explained here: http://docs.spiffy_stores.com/api/tutorials/oauth)
+   * ``redirect_uri`` – Required – The URL where you want to redirect the users after they authorize the client. The complete URL specified here must be identical to one of the Application Redirect URLs set in the App's section of the Partners dashboard. Note: in older applications, this parameter was optional, and redirected to the Application Callback URL when no other value was specified.
+   * ``state`` – Optional – A randomly selected value provided by your application, which is unique for each authorization request. During the OAuth callback phase, your application must check that this value matches the one you provided during authorization. [This mechanism is important for the security of your application](https://tools.ietf.org/html/rfc6819#section-3.6).
+
+   We've added the create_permission_url method to make this easier, first instantiate your session object:
+
+   ```ruby
+   session = SpiffyStoresAPI::Session.new("SHOP_NAME.spiffystores.com")
+   ```
+
+   Then call:
+
+   ```ruby
+   scope = ["write_products"]
+   permission_url = session.create_permission_url(scope)
+   ```
+
+   or if you want a custom redirect_uri:
+
+   ```ruby
+   permission_url = session.create_permission_url(scope, "https://my_redirect_uri.com")
+   ```
+
+4. Once authorized, the shop redirects the owner to the return URL of your application with a parameter named 'code'. This is a temporary token that the app can exchange for a permanent access token.
+
+   Before you proceed, make sure your application performs the following security checks. If any of the checks fails, your application must reject the request with an error, and must not proceed further.
+
+   * Ensure the provided ``state`` is the same one that your application provided to SpiffyStores during Step 3.
+   * Ensure the provided hmac is valid. The hmac is signed by SpiffyStores as explained below, in the Verification section.
+   * Ensure the provided hostname parameter is a valid hostname, ends with myspiffy_stores.com, and does not contain characters other than letters (a-z), numbers (0-9), dots, and hyphens.
+
+   If all security checks pass, the authorization code can be exchanged once for a permanent access token. The exchange is made with a request to the shop.
+
+   ```
+   POST https://SHOP_NAME.spiffystores.com/api/oauth/token
+   ```
+
+   with the following parameters:
+
+   * ``client_id`` – Required – The API key for your app
+   * ``client_secret`` – Required – The shared secret for your app
+   * ``code`` – Required – The token you received in step 3
+
+   and you'll get your permanent access token back in the response.
+
+   There is a method to make the request and get the token for you. Pass
+   all the params received from the previous call and the method will verify
+   the params, extract the temp code and then request your token:
+
+   ```ruby
+   token = session.request_token(params)
+   ```
+
+   This method will save the token to the session object and return it. For future sessions simply pass the token in when creating the session object:
+
+   ```ruby
+   session = SpiffyStoresAPI::Session.new("SHOP_NAME.spiffystores.com", token)
+   ```
+
+5. The session must be activated before use:
+
+   ```ruby
+   SpiffyStoresAPI::Base.activate_session(session)
+   ```
+
+6. Now you're ready to make authorized API requests to your shop! Data is returned as ActiveResource instances:
+
+   ```ruby
+   shop = SpiffyStoresAPI::Store.current
+
+   # Get a specific product
+   product = SpiffyStoresAPI::Product.find(123123)
+
+   # Create a new product
+   new_product = SpiffyStoresAPI::Product.new
+   new_product.title = "Spiffy Stores T-Shirt"
+   new_product.product_type = "Shirt"
+   new_product.vendor = "Spiffy Stores"
+   new_product.save
+
+   # Update a product
+   product.handle = "spiffy-stores-t-shirt"
+   product.save
+   ```
+
+   Alternatively, you can use #temp to initialize a Session and execute a command which also handles temporarily setting ActiveResource::Base.site:
+
+   ```ruby
+   products = SpiffyStoresAPI::Session.temp("SHOP_NAME.spiffystores.com", token) { SpiffyStoresAPI::Product.find(:all) }
+   ```
+
+7. If you want to work with another shop, you'll first need to clear the session:
+
+   ```ruby
+   SpiffyStoresAPI::Base.clear_session
+   ```
+
+## Using Development Version
+
+Download the source code and run:
+
+```bash
+rake install
+```
+
+## Additional Resources
+
+API Reference: https://www.spiffystores.com.au/kb/API_Reference
+
+## Copyright
+
+Copyright (c) 2018 Spiffy Stores
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/Rakefile

@@ -0,0 +1,39 @@
+require 'rake'
+require "bundler/gem_tasks"
+
+require 'rake/testtask'
+Rake::TestTask.new(:test) do |test|
+  test.libs << 'lib' << 'test'
+  test.pattern = 'test/**/*_test.rb'
+  test.verbose = true
+end
+
+begin
+  require 'rcov/rcovtask'
+  Rcov::RcovTask.new do |test|
+    test.libs << 'test'
+    test.pattern = 'test/**/*_test.rb'
+    test.verbose = true
+  end
+rescue LoadError
+  task :rcov do
+    abort "RCov is not available. In order to run rcov, you must: sudo gem install spicycode-rcov"
+  end
+end
+
+task :default => :test
+
+require 'rdoc/task'
+Rake::RDocTask.new do |rdoc|
+  if File.exist?('VERSION.yml')
+    config = YAML.load(File.read('VERSION.yml'))
+    version = "#{config[:major]}.#{config[:minor]}.#{config[:patch]}"
+  else
+    version = ""
+  end
+
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title = "spiffy_stores_api #{version}"
+  rdoc.rdoc_files.include('README*')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end

data/lib/active_resource/base_ext.rb

@@ -0,0 +1,21 @@
+module ActiveResource
+  class Base
+    if ActiveResource::VERSION::MAJOR < 4
+      # Backported from ActiveResource master branch
+      def self.headers
+        @headers ||= {}
+
+        if superclass != Object && superclass.headers
+          @headers = superclass.headers.merge(@headers)
+        else
+          @headers
+        end
+      end
+
+      # https://github.com/rails/activeresource/commit/dfef85ce8f653f75673631b2950fcdb0781c313c
+      def self.delete(id, options = {})
+        connection.delete(element_path(id, options), headers)
+      end
+    end
+  end
+end

data/lib/active_resource/connection_ext.rb

@@ -0,0 +1,10 @@
+require 'spiffy_stores_api/connection'
+
+module ActiveResource
+  class Connection
+    attr_reader :response
+
+    prepend SpiffyStoresAPI::Connection::ResponseCapture
+    prepend SpiffyStoresAPI::Connection::RequestNotification
+  end
+end

data/lib/active_resource/detailed_log_subscriber.rb

@@ -0,0 +1,19 @@
+module ActiveResource
+  class DetailedLogSubscriber < ActiveSupport::LogSubscriber
+    def request(event)
+      data = event.payload[:data]
+      headers = data.extract_options!
+      request_body = data.first
+
+      info "Request:\n#{request_body}" if request_body
+      info "Headers: #{headers.inspect}"
+      info "Response:\n#{event.payload[:response].body}"
+    end
+
+    def logger
+      ActiveResource::Base.logger
+    end
+  end
+end
+
+ActiveResource::DetailedLogSubscriber.attach_to :active_resource_detailed

data/lib/active_resource/disable_prefix_check.rb

@@ -0,0 +1,36 @@
+module DisablePrefixCheck
+  extend ActiveSupport::Concern
+
+  module ClassMethods
+    def check_prefix_options(options)
+    end
+
+    # `flexible = true` is hack to allow multiple things through the same AR class
+    def conditional_prefix(resource, flexible = false)
+      resource_id = "#{resource}_id".to_sym
+      resource_type = flexible ? ":#{resource}" : resource.to_s.pluralize
+
+      init_prefix_explicit resource_type, resource_id
+
+      define_singleton_method :prefix do |options = {}|
+        resource_type =  options[resource] if flexible
+
+        options[resource_id].nil? ? "/api/" : "/api/#{resource_type}/#{options[resource_id]}/"
+      end
+
+      define_singleton_method :instantiate_record do |record, prefix_options = {}|
+        new_record(record).tap do |resource|
+          resource.prefix_options = prefix_options unless prefix_options.blank?
+        end
+      end
+    end
+
+    def new_record(record)
+      if ActiveSupport::VERSION::MAJOR == 3 && ActiveSupport::VERSION::MINOR == 0
+        new(record)
+      else
+        new(record, true)
+      end
+    end
+  end
+end

data/lib/active_resource/json_errors.rb

@@ -0,0 +1,31 @@
+require 'active_resource/base'
+
+module ActiveResource
+  class Errors < ActiveModel::Errors
+    def from_json(json, save_cache = false)
+      data = ActiveSupport::JSON.decode(json)['errors'] || {} rescue {}
+      case data
+      when String
+        from_string(data, save_cache)
+      else
+        from_hash(data, save_cache)
+      end
+    end
+
+    def from_hash(messages, save_cache = false)
+      clear unless save_cache
+
+      messages.each do |key,errors|
+        errors.each do |error|
+          add(key, error)
+        end
+      end
+    end
+
+    def from_string(error, save_cache = false)
+      clear unless save_cache
+
+      add(:base, error)
+    end
+  end
+end