sso 0.1.0.alpha3 → 0.1.0.alpha4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: c4a6a80459c2744400e199338c38ffbf615e1eb3
-  data.tar.gz: 704b504eeb29a8533990c91ad3dc94690449fba8
+  metadata.gz: eea3614bff8d83e9025dc3950f5bab00a5e06983
+  data.tar.gz: b1f053b3fbc6b6d008a5a3792853a887df1ff870
 SHA512:
-  metadata.gz: b6ecb0b90995bfb8752ae003e76686d25686f70814529ce3aa9ddbf81e6c68e3b421173626a6cff9dddd208b40b22a9bd63fc4714361bea749effab9dc9c7ea2
-  data.tar.gz: 291961838cee93dbb188b90b2286decacb9290b39bd10a4bf85db80e2c615dfc4f1b98583e8a6a6b8b9c96091c191d7f1176627ebedca21e47929b284b391956
+  metadata.gz: 30fa00693afe5f1fcdb1a64520ec237134996c6a651b1c95f7c5491e3a3645cfae0e00574451ad17b962cda8c0558fff26ea1561fae8cf6ba08ebcdf433f266a
+  data.tar.gz: 869a69603c6eceea3ea47aad819a15b19ac015b451d969db97ce86b97f6eeabefa69282af9b419468fdc1fcc99fbfed933af0f58736c3a40f7e9e0fdda7bba0f

data/lib/sso/server.rb

@@ -17,6 +17,7 @@ require 'sso/server/engine'
 
 require 'sso/server/authentications/passport'
 require 'sso/server/middleware/passport_verification'
+require 'sso/server/middleware/passport_creation'
 
 require 'sso/server/warden/hooks/after_authentication'
 require 'sso/server/warden/hooks/before_logout'

data/lib/sso/server/README.md

@@ -10,4 +10,37 @@
 
 ### Setup
 
-For now, see [these point of interests](https://github.com/halo/sso/search?q=POI) to see how exactly a rails app can be setup.
+For now, see [these point of interests](https://github.com/halo/sso/search?q=POI) to see how exactly a rails app can be setup. Other than that, I'll try to give you an overview here.
+
+First, you'll need to make sure you're using the Warden Rack middleware.
+It's entirely up to you to configure that, but it will probably look something like this if you're using Rails:
+
+```ruby
+# config/application.rb
+config.middleware.insert_after ::ActionDispatch::Flash, '::Warden::Manager' do |manager|
+  manager.failure_app = SessionsController.action :new
+  manager.intercept_401 = false
+
+  manager.serialize_into_session(&:id)
+  manager.serialize_from_session { |id| User.find_by_id(id) }
+end
+```
+
+Next, you might want to use the middleware provided by this gem.
+They won't be loaded automatically, so you have to pick the ones you choose to use.
+
+```ruby
+# config/application.rb
+
+# These two augment passports with the related outgoing access tokens
+config.middleware.insert_after ::Warden::Manager, ::SSO::Server::Doorkeeper::AccessTokenMarker
+config.middleware.insert_after ::Warden::Manager, ::SSO::Server::Doorkeeper::GrantMarker
+
+# This one responds to incoming passport verification requests.
+config.middleware.insert_after ::Warden::Manager, ::SSO::Server::Middleware::PassportVerification
+
+# This is a little more experimental at the moment,
+# Provided an Access Token, you can create Passports.
+# This is most likely needed if you use the iPhone client.
+config.middleware.insert_after ::Warden::Manager, ::SSO::Server::Middleware::PassportCreation
+```

data/lib/sso/server/engine.rb

@@ -1,16 +1,5 @@
 module SSO
   class Engine < ::Rails::Engine
     isolate_namespace SSO
-
-    initializer 'sso.add_middleware' do |app|
-      app.middleware.insert_after ::Warden::Manager, ::SSO::Server::Middleware::PassportVerification
-      app.middleware.insert_after ::Warden::Manager, ::SSO::Server::Doorkeeper::GrantMarker
-      app.middleware.insert_after ::Warden::Manager, ::SSO::Server::Doorkeeper::AccessTokenMarker
-    end
-
-    config.generators do |g|
-      g.test_framework :rspec
-      g.fixture_replacement :factory_girl, dir: 'spec/factories'
-    end
   end
 end

data/lib/sso/server/middleware/passport_creation.rb

@@ -0,0 +1,61 @@
+module SSO
+  module Server
+    module Middleware
+      class PassportCreation
+        include ::SSO::Logging
+
+        def initialize(app)
+          @app = app
+        end
+
+        def call(env)
+          request = Rack::Request.new(env)
+          remote_ip = request.env['action_dispatch.remote_ip'].to_s
+
+          if !(request.post? && request.path == passports_path)
+            debug { "I'm not interested in this request to #{request.path}" }
+            return @app.call(env)
+          end
+
+          token = request.params['access_token']
+          debug { "Detected incoming Passport creation request for access token #{token.inspect}" }
+          access_token = ::Doorkeeper::AccessToken.find_by_token token
+
+          unless access_token
+            return json_code :access_token_not_found
+          end
+
+          unless access_token.valid?
+            return json_code :access_token_invalid
+          end
+
+          creation = ::SSO::Server::Passports.generate owner_id: access_token.resource_owner_id, ip: remote_ip, agent: request.user_agent
+          passport_id = creation.object
+          finding = ::SSO::Server::Passports.find(passport_id)
+
+          if finding.failure?
+            error { "Could not find newly generated Passport #{finding.code.inspect} - #{finding.object.inspect}"}
+            return json_code :access_token_not_attached_to_valid_passport
+          end
+
+          passport = finding.object
+          debug { "Attaching user to passport #{passport.inspect}" }
+          passport.user = SSO.config.find_user_for_passport.call(passport: passport, ip: remote_ip)
+          payload = { success: true, code: :here_is_your_passport, passport: passport.export }
+          debug { "Created Passport #{passport.id}, sending it including user #{passport.user.inspect}}"}
+
+          return [200, { 'Content-Type' => 'application/json' }, [payload.to_json]]
+        end
+
+        def json_code(code)
+          [200, { 'Content-Type' => 'application/json' }, [{ success: true, code: code }.to_json]]
+        end
+
+        def passports_path
+          OmniAuth::Strategies::SSO.passports_path
+        end
+
+      end
+    end
+  end
+end

data/lib/sso/server/passport.rb

@@ -28,6 +28,7 @@ module SSO
         {
           id: id,
           secret: secret,
+          state: state,
           user: user,
         }
       end

data/lib/sso/server/passports.rb

@@ -8,7 +8,7 @@ module SSO
         record = backend.find_by_id(id)
 
         if record
-          Operation.success(:record_found, object: record)
+          Operations.success(:record_found, object: record)
         else
           Operations.failure :record_not_found
         end

data/lib/sso/server/warden/hooks/after_authentication.rb

@@ -13,7 +13,7 @@ module SSO
                 new(user: user, warden: warden, options: options).call
               rescue => exception
                 ::SSO.config.exception_handler.call exception
-                # The show must co on
+                # The show must go on
               end
             end
           end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: sso
 version: !ruby/object:Gem::Version
-  version: 0.1.0.alpha3
+  version: 0.1.0.alpha4
 platform: ruby
 authors:
 - halo
@@ -273,6 +273,7 @@ files:
 - lib/sso/server/engine.rb
 - lib/sso/server/errors.rb
 - lib/sso/server/geolocations.rb
+- lib/sso/server/middleware/passport_creation.rb
 - lib/sso/server/middleware/passport_verification.rb
 - lib/sso/server/passport.rb
 - lib/sso/server/passports.rb