sso 0.0.2 → 0.1.0.alpha1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: e62fdc71ebc94bab83b4eb3e1c0e0a81a562b14e
-  data.tar.gz: b50128b9f1eb1c3286dcb36065384b069666add4
+  metadata.gz: 502a677d0dbb1abcd9a531c018bd095e6fa2fe5e
+  data.tar.gz: f7e1c5290d4ea845680b4c82272e391958a36889
 SHA512:
-  metadata.gz: 393abd0d4c1bd8f01138dafcb7173d86b9d0c58ed8359c05c906924e32a53f06a24efb70765928aaecf27497a5f304a63700a6e2e683dee492467f7d11fff184
-  data.tar.gz: 880a50e378a50cd97d4d50e80d93bdafd09ce3fee8a7cf7053d46ae12e9e7562fbcafb32710795121e525f414b7640a1b607848de11aa4dc032588a16d7261ff
+  metadata.gz: 3c9f9227968a527cd8fb844ee69bacfb92041b10fc47f1937b9a578d79b1b286b83ccdc9a57183173a5637d3e093b81e4ce59a0edd5f61cf60d880264973d719
+  data.tar.gz: 8909701cee344d1cfb73d1e2549816a74cd580ddbd108d87ebf4c9495d9aafc93edd7eecfd66ba5e18919c2a66018636fa02543392fc23ac5c3a6e75521095e0

data/lib/sso.rb

@@ -0,0 +1,6 @@
+require 'sso/logging'
+require 'sso/benchmarking'
+require 'sso/client/omniauth/strategies/sso'
+
+module SSO
+end

data/spec/dummy/Rakefile

@@ -0,0 +1,9 @@
+require 'rails'
+require 'doorkeeper'
+require 'sso'
+require 'sso/server'
+require 'sso/client'
+
+require File.expand_path('../config/application', __FILE__)
+
+Rails.application.load_tasks

data/spec/dummy/app/assets/javascripts/application.js

@@ -0,0 +1,13 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or any plugin's vendor/assets/javascripts directory can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// compiled file.
+//
+// Read Sprockets README (https://github.com/sstephenson/sprockets#sprockets-directives) for details
+// about supported directives.
+//
+//= require_tree .

data/spec/dummy/app/assets/stylesheets/application.css

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or any plugin's vendor/assets/stylesheets directory can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any styles
+ * defined in the other CSS/SCSS files in this directory. It is generally better to create a new
+ * file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/spec/dummy/app/controllers/application_controller.rb

@@ -0,0 +1,3 @@
+class ApplicationController < ActionController::Base
+  protect_from_forgery with: :exception
+end

data/spec/dummy/app/controllers/home_controller.rb

@@ -0,0 +1,4 @@
+class HomeController < ApplicationController
+  def index
+  end
+end

data/spec/dummy/app/controllers/sessions_controller.rb

@@ -0,0 +1,39 @@
+class SessionsController < ApplicationController
+  include ::SSO::Logging
+  delegate :logout, to: :warden
+
+  before_action :not_json, only: [:new]
+
+  # POI
+  def new
+    return_path = env['warden.options'][:attempted_path]
+    debug { "Remembering the return path #{return_path.inspect}" }
+    session[:return_path] = return_path
+  end
+
+  # POI
+  def create
+    warden.authenticate! :password
+
+    if session[:return_path]
+      debug { "Sending tou back to #{session[:return_path]}" }
+      redirect_to session[:return_path]
+      session[:return_path] = nil
+    else
+      debug { "I don't know where you came from, sending you to #{root_url}" }
+      redirect_to root_url
+    end
+  end
+
+  private
+
+  def not_json
+    return unless request.format == :json
+    render status: :unauthorized, json: { status: :error, code: :authentication_failed }
+  end
+
+  def warden
+    request.env['warden']
+  end
+
+end

data/spec/dummy/app/models/user.rb

@@ -0,0 +1,9 @@
+class User < ActiveRecord::Base
+
+  # This is a test implementation only, do not try this at home.
+  def self.authenticate(username, password)
+    Rails.logger.debug('User') { "Checking password of user #{username.inspect}..." }
+    where(email: username, password: password).first
+  end
+
+end

data/spec/dummy/app/views/layouts/application.html.erb

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Dummy</title>
+  <%= stylesheet_link_tag    'application', media: 'all', 'data-turbolinks-track' => true %>
+  <%= javascript_include_tag 'application', 'data-turbolinks-track' => true %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+
+<%= yield %>
+
+</body>
+</html>

data/spec/dummy/app/views/sessions/new.html.erb

@@ -0,0 +1,10 @@
+<%= form_for(:session, url: sessions_path) do |f| %>
+
+  <%= f.label :username %>
+  <%= f.text_field :username %>
+
+  <%= f.label :password %>
+  <%= f.password_field :password %>
+
+  <%= f.submit "Login" %>
+<% end %>

data/spec/dummy/bin/bundle

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../Gemfile', __FILE__)
+load Gem.bin_path('bundler', 'bundle')

data/spec/dummy/bin/rails

@@ -0,0 +1,4 @@
+#!/usr/bin/env ruby
+APP_PATH = File.expand_path('../../config/application', __FILE__)
+require_relative '../config/boot'
+require 'rails/commands'

data/spec/dummy/bin/rake

@@ -0,0 +1,4 @@
+#!/usr/bin/env ruby
+require_relative '../config/boot'
+require 'rake'
+Rake.application.run

data/spec/dummy/bin/setup

@@ -0,0 +1,29 @@
+#!/usr/bin/env ruby
+require 'pathname'
+
+# path to your application root.
+APP_ROOT = Pathname.new File.expand_path('../../',  __FILE__)
+
+Dir.chdir APP_ROOT do
+  # This script is a starting point to setup your application.
+  # Add necessary setup steps to this file:
+
+  puts "== Installing dependencies =="
+  system "gem install bundler --conservative"
+  system "bundle check || bundle install"
+
+  # puts "\n== Copying sample files =="
+  # unless File.exist?("config/database.yml")
+  #   system "cp config/database.yml.sample config/database.yml"
+  # end
+
+  puts "\n== Preparing database =="
+  system "bin/rake db:setup"
+
+  puts "\n== Removing old logs and tempfiles =="
+  system "rm -f log/*"
+  system "rm -rf tmp/cache"
+
+  puts "\n== Restarting application server =="
+  system "touch tmp/restart.txt"
+end

data/spec/dummy/config.ru

@@ -0,0 +1,4 @@
+# This file is used by Rack-based servers to start the application.
+
+require ::File.expand_path('../config/environment', __FILE__)
+run Rails.application

data/spec/dummy/config/application.rb

@@ -0,0 +1,36 @@
+require File.expand_path('../boot', __FILE__)
+
+require 'active_record/railtie'
+require 'action_controller/railtie'
+require 'action_view/railtie'
+
+Bundler.require(*Rails.groups)
+
+module Dummy
+  class Application < Rails::Application
+    config.active_record.raise_in_transactional_callbacks = true
+
+    config.log_formatter = proc do |severity, _, progname, message|
+      severity = case severity
+                 when 'FATAL' then "\e[#31mFATAL\e[0m"
+                 when 'ERROR' then "\e[#31mERROR\e[0m"
+                 when 'WARN'  then "\e[#33mWARN \e[0m"
+                 when 'INFO'  then "\e[#32mINFO \e[0m"
+                 when 'DEBUG' then "\e[#35mDEBUG\e[0m"
+                 else              severity
+      end
+
+      "#{severity.ljust 5} \e[34m#{progname || 'Rails'}\e[0m : #{message}\n"
+    end
+
+    # POI
+    config.middleware.insert_after ::ActionDispatch::Flash, '::Warden::Manager' do |manager|
+      manager.failure_app = SessionsController.action :new
+      manager.intercept_401 = false
+
+      manager.serialize_into_session(&:id)
+      manager.serialize_from_session { |id| User.find_by_id(id) }
+    end
+
+  end
+end

data/spec/dummy/config/boot.rb

@@ -0,0 +1,4 @@
+ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../../../Gemfile', __FILE__)
+
+require 'bundler/setup' if File.exist?(ENV['BUNDLE_GEMFILE'])
+$LOAD_PATH.unshift File.expand_path('../../../../lib', __FILE__)

data/spec/dummy/config/database.yml

@@ -0,0 +1,38 @@
+<%
+
+endpoint = ENV['SSO_DB_ENDPOINT']
+database = ENV['SSO_DB_DATABASE']
+username = ENV['SSO_DB_USERNAME']
+password = ENV['SSO_DB_PASSWORD']
+
+if Rails.env.development? && RbConfig::CONFIG['target_vendor'] == 'apple'
+  endpoint ||= '127.0.0.1'
+  database ||= 'sso_development'
+  username ||= ''
+  password ||= ''
+  sslmode  = 'disable'
+
+elsif Rails.env.test?
+  endpoint ||= '127.0.0.1'
+  database ||= 'sso_test'
+  username ||= ''
+  password ||= ''
+  sslmode  = 'disable'
+end
+
+raise 'You must set SSO_DB_ENDPOINT' unless endpoint.present?
+raise 'You must set SSO_DB_DATABASE' unless database.present?
+raise 'You must set SSO_DB_USERNAME' unless username
+raise 'You must set SSO_DB_PASSWORD' unless password
+
+%>
+
+<%= Rails.env %>:
+  adapter: postgresql
+  host:     <%= endpoint %>
+  database: <%= database %>
+  username: <%= username %>
+  password: <%= password %>
+  encoding: unicode
+  port: 5432
+  sslmode:  <%= sslmode %>

data/spec/dummy/config/environment.rb

@@ -0,0 +1,5 @@
+# Load the Rails application.
+require File.expand_path('../application', __FILE__)
+
+# Initialize the Rails application.
+Rails.application.initialize!

data/spec/dummy/config/environments/development.rb

@@ -0,0 +1,37 @@
+Rails.application.configure do
+  # Settings specified here will take precedence over those in config/application.rb.
+
+  # In the development environment your application's code is reloaded on
+  # every request. This slows down response time but is perfect for development
+  # since you don't have to restart the web server when you make code changes.
+  config.cache_classes = false
+
+  # Do not eager load code on boot.
+  config.eager_load = false
+
+  # Show full error reports and disable caching.
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Don't care if the mailer can't send.
+  # config.action_mailer.raise_delivery_errors = false
+
+  # Print deprecation notices to the Rails logger.
+  config.active_support.deprecation = :log
+
+  # Raise an error on page load if there are pending migrations.
+  config.active_record.migration_error = :page_load
+
+  # Debug mode disables concatenation and preprocessing of assets.
+  # This option may cause significant delays in view rendering with a large
+  # number of complex assets.
+  config.assets.debug = true
+
+  # Adds additional error checking when serving assets at runtime.
+  # Checks for improperly declared sprockets dependencies.
+  # Raises helpful error messages.
+  config.assets.raise_runtime_errors = true
+
+  # Raises error for missing translations
+  # config.action_view.raise_on_missing_translations = true
+end

data/spec/dummy/config/environments/test.rb

@@ -0,0 +1,42 @@
+Rails.application.configure do
+  # Settings specified here will take precedence over those in config/application.rb.
+
+  # The test environment is used exclusively to run your application's
+  # test suite. You never need to work with it otherwise. Remember that
+  # your test database is "scratch space" for the test suite and is wiped
+  # and recreated between test runs. Don't rely on the data there!
+  config.cache_classes = true
+
+  # Do not eager load code on boot. This avoids loading your whole application
+  # just for the purpose of running a single test. If you are using a tool that
+  # preloads Rails for running tests, you may have to set it to true.
+  config.eager_load = false
+
+  # Configure static file server for tests with Cache-Control for performance.
+  config.serve_static_files   = true
+  config.static_cache_control = 'public, max-age=3600'
+
+  # Show full error reports and disable caching.
+  config.consider_all_requests_local       = true
+  config.action_controller.perform_caching = false
+
+  # Raise exceptions instead of rendering exception templates.
+  config.action_dispatch.show_exceptions = false
+
+  # Disable request forgery protection in test environment.
+  config.action_controller.allow_forgery_protection = false
+
+  # Tell Action Mailer not to deliver emails to the real world.
+  # The :test delivery method accumulates sent emails in the
+  # ActionMailer::Base.deliveries array.
+  # config.action_mailer.delivery_method = :test
+
+  # Randomize the order test cases are executed.
+  config.active_support.test_order = :random
+
+  # Print deprecation notices to the stderr.
+  config.active_support.deprecation = :stderr
+
+  # Raises error for missing translations
+  # config.action_view.raise_on_missing_translations = true
+end

data/spec/dummy/config/initializers/assets.rb

@@ -0,0 +1,11 @@
+# Be sure to restart your server when you modify this file.
+
+# Version of your assets, change this if you want to expire all your assets.
+Rails.application.config.assets.version = '1.0'
+
+# Add additional assets to the asset load path
+# Rails.application.config.assets.paths << Emoji.images_path
+
+# Precompile additional assets.
+# application.js, application.css, and all non-JS/CSS in app/assets folder are already added.
+# Rails.application.config.assets.precompile += %w( search.js )

data/spec/dummy/config/initializers/cookies_serializer.rb

@@ -0,0 +1,3 @@
+# Be sure to restart your server when you modify this file.
+
+Rails.application.config.action_dispatch.cookies_serializer = :json

data/spec/dummy/config/initializers/doorkeeper.rb

@@ -0,0 +1,23 @@
+# POI
+
+::Doorkeeper.configure do
+
+  orm :active_record
+
+  grant_flows %w(authorization_code password)
+
+  resource_owner_authenticator ::SSO::Server::Doorkeeper::ResourceOwnerAuthenticator.to_proc
+  resource_owner_from_credentials ::SSO::Server::Doorkeeper::ResourceOwnerAuthenticator.to_proc
+
+  default_scopes :outsider
+  optional_scopes :insider
+
+  skip_authorization do
+    true
+  end
+
+  admin_authenticator do
+    nil
+  end
+
+end

data/spec/dummy/config/initializers/filter_parameter_logging.rb

@@ -0,0 +1,4 @@
+# Be sure to restart your server when you modify this file.
+
+# Configure sensitive parameters which will be filtered from the log file.
+Rails.application.config.filter_parameters += [:password]

data/spec/dummy/config/initializers/secret_token.rb

@@ -0,0 +1,10 @@
+secret_key_base = ENV['SSO_CONFIG_SECRET_TOKEN'].presence
+
+if Rails.env.development? || Rails.env.test?
+  dummy_token = '1986c60cc8b4843e5a6426d6ef5e1c031be4f73a10b3c56aa9c0b8d2dc8e1eba385975689ca072f5e884c98d178b3e4fde47aa91a9a16173bfaad766905fb7f5'
+  secret_key_base ||= dummy_token
+end
+
+fail 'You must set SSO_CONFIG_SECRET_TOKEN' if secret_key_base.blank?
+
+Rails.application.config.secret_key_base = secret_key_base