svenfuchs-devise_oauth2_authenticatable 0.1.0

data/.document

@@ -0,0 +1,5 @@
+README.rdoc
+lib/**/*.rb
+bin/*
+features/**/*.feature
+LICENSE

data/.gitignore

@@ -0,0 +1,21 @@
+## MAC OS
+.DS_Store
+
+## TEXTMATE
+*.tmproj
+tmtags
+
+## EMACS
+*~
+\#*
+.\#*
+
+## VIM
+*.swp
+
+## PROJECT::GENERAL
+coverage
+rdoc
+pkg
+
+## PROJECT::SPECIFIC

data/LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2009 bhbryant
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,145 @@
+= devise_oauth2_authenticatable
+
+== This fork works with Devise 1.1 + Rails 3
+
+
+==Quick tutorial for Devise 1.1 + Rails 3 + devise_oauth2_authenticatable
+
+Set up your Facebook app at http://developers.facebook.com/setup/
+
+Create the Rails app:
+  rails new YOUR_APP
+  cd YOUR_APP
+
+Add the following lines to your Gemfile:
+  gem "oauth2"
+  gem "devise", :git => "git://github.com/plataformatec/devise.git"
+  gem "devise_oauth2_authenticatable", :git => "git://github.com/jerryluk/devise_oauth2_authenticatable.git"
+  
+Run the following commands:
+  bundle install
+  rails g devise:install
+  rails g devise User
+  rails g devise:oauth2_authenticatable APP_ID SECRET
+  
+Your DeviseCreateUsers migration should look like this:
+  class DeviseCreateUsers < ActiveRecord::Migration
+    def self.up
+      create_table(:users) do |t|
+        t.database_authenticatable 
+        t.rememberable
+        t.trackable
+        t.oauth2_authenticatable
+        t.string :email
+
+        t.timestamps
+      end
+
+      add_index :users, :oauth2_uid, :unique => true
+    end
+
+    def self.down
+      drop_table :users
+    end
+  end
+
+Make sure user.rb has the following line:
+  devise :oauth2_authenticatable, ...
+  
+Add this to your application_controller.rb:
+  before_filter :authenticate_user!
+  
+Add the sign in/sign out links to your applications.html.erb:
+  <% if user_signed_in? %>
+    <%= link_to "Sign out", destroy_user_session_path %>
+  <% else %>
+    <%= link_to_oauth2 "Sign In with Facebook" %>
+  <% end %>
+
+The usual stuffs:
+  rm public/index.html
+  rake db:create
+  rake db:migrate
+  rails s
+  
+Navigate your browser to http://localhost:3000, there are many things to fix but you are mostly there!
+
+==
+This is the basic framework for an OAuth2 gem for Devise. 
+
+It currently works with FacebookGraph, to get started begin by registering a new application at
+
+  http://developers.facebook.com/setup/
+  
+  
+A generator is provided for creating your oauth yml file
+
+rails g devise:oauth2_authenticatable
+
+Ex: 
+
+rails g devise:oauth2_authenticatable APP_ID SECRET 'email,offline_access,publish_stream'
+
+
+for more details
+  
+http://developers.facebook.com/docs/authentication/
+
+
+
+It's based on the devise facebook gem provided by grimen
+
+  http://github.com/grimen/devise_facebook_connectable
+
+
+
+And uses the example provided in OAuth2 library provided by mbleigh
+
+  http://github.com/intridea/oauth2
+
+
+DB Migration : 
+
+    add_column :users, :oauth2_uid, :integer, :limit => 8  # BIGINT unsigned / 64-bit int
+    add_column :users, :oauth2_token, :string, :limit => 149  # [128][1][20] chars
+    add_index :users, :oauth2_uid, :unique => true
+
+
+
+Note:
+
+A little souce of confusion when working with Facebook Graph
+
+The api key and secret key are no the same a Facebook Connect/the old API. 
+
+The client id should be your application id and the client_key, should be your API key (not secret key)
+
+
+== TODO
+
+Write tests : 
+  Currently no tests have been written. My bad. 
+
+Add Javascript / token based auth :
+  Facebook graph offes a complete authorization solution using javascript and a returned authentication token. Adding optional support for this would complete the Facebook Graph authentication interface. 
+  
+Generalize for OAuth2:
+  Add support for other OAuth2 services. Wrote this specifically for facebook graph, althought configuration arugments should be generalized to support other interfaces. 
+
+
+
+Description goes here.
+
+== Note on Patches/Pull Requests
+ 
+* Fork the project.
+* Make your feature addition or bug fix.
+* Add tests for it. This is important so I don't break it in a
+  future version unintentionally.
+* Commit, do not mess with rakefile, version, or history.
+  (if you want to have your own version, that is fine but bump version in a commit by itself I can ignore when I pull)
+* Send me a pull request. Bonus points for topic branches.
+
+== Copyright
+
+Copyright (c) 2010 bhbryant. See LICENSE for details.

data/Rakefile

@@ -0,0 +1,50 @@
+require 'rubygems'
+require 'rake'
+
+begin
+  require 'jeweler'
+  Jeweler::Tasks.new do |gem|
+    gem.name = "devise_oauth2_authenticatable"
+    gem.summary = %Q{Implements OAuth2 for Devise }
+    gem.description = %Q{Implements OAuth2 for Devise, specifically integrating with facebook Graph}
+    gem.email = "benjamin@bryantmarkowsky.com"
+    gem.homepage = "http://github.com/bhbryant/devise_oauth2_authenticatable"
+    gem.authors = ["bhbryant"]
+    gem.add_development_dependency "rspec", ">= 1.2.9"
+    
+        gem.add_dependency'devise', '>= 1.0.0'
+    gem.add_dependency "oauth2" 
+    gem.add_dependency "json"
+
+    # gem is a Gem::Specification... see http://www.rubygems.org/read/chapter/20 for additional settings
+  end
+  Jeweler::GemcutterTasks.new
+rescue LoadError
+  puts "Jeweler (or a dependency) not available. Install it with: gem install jeweler"
+end
+
+require 'spec/rake/spectask'
+Spec::Rake::SpecTask.new(:spec) do |spec|
+  spec.libs << 'lib' << 'spec'
+  spec.spec_files = FileList['spec/**/*_spec.rb']
+end
+
+Spec::Rake::SpecTask.new(:rcov) do |spec|
+  spec.libs << 'lib' << 'spec'
+  spec.pattern = 'spec/**/*_spec.rb'
+  spec.rcov = true
+end
+
+task :spec => :check_dependencies
+
+task :default => :spec
+
+require 'rake/rdoctask'
+Rake::RDocTask.new do |rdoc|
+  version = File.exist?('VERSION') ? File.read('VERSION') : ""
+
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title = "devise_oauth2_authenticatable #{version}"
+  rdoc.rdoc_files.include('README*')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end

data/VERSION

@@ -0,0 +1 @@
+0.1.0

data/devise_oauth2_authenticatable.gemspec

@@ -0,0 +1,74 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run the gemspec command
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{svenfuchs-devise_oauth2_authenticatable}
+  s.version = "0.1.0"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["bhbryant"]
+  s.date = %q{2010-06-13}
+  s.description = %q{Implements OAuth2 for Devise}
+  s.email = %q{benjamin@bryantmarkowsky.com}
+  s.extra_rdoc_files = [
+    "LICENSE",
+     "README.rdoc"
+  ]
+  s.files = [
+    ".document",
+     ".gitignore",
+     "LICENSE",
+     "README.rdoc",
+     "Rakefile",
+     "VERSION",
+     "devise_oauth2_authenticatable.gemspec",
+     "lib/devise_oauth2_authenticatable.rb",
+     "lib/devise_oauth2_authenticatable/locales/en.yml",
+     "lib/devise_oauth2_authenticatable/rails.rb",
+     "lib/devise_oauth2_authenticatable/model.rb",
+     "lib/devise_oauth2_authenticatable/routes.rb",
+     "lib/devise_oauth2_authenticatable/schema.rb",
+     "lib/devise_oauth2_authenticatable/strategy.rb",
+     "lib/devise_oauth2_authenticatable/view_helpers.rb",
+     "lib/generators/devise/oauth2_authenticatable/oauth2_authenticatable_generator.rb",
+     "lib/generators/devise/oauth2_authenticatable/templates/oauth2.yml",
+     "lib/generators/devise/oauth2_authenticatable/USAGE",
+     "spec/devise_oauth2_authenticatable_spec.rb",
+     "spec/spec.opts",
+     "spec/spec_helper.rb"
+  ]
+  s.homepage = %q{http://github.com/bhbryant/devise_oauth2_authenticatable}
+  s.rdoc_options = ["--charset=UTF-8"]
+  s.require_paths = ["lib"]
+  s.rubygems_version = %q{1.3.6}
+  s.summary = %q{Implements OAuth2 for Devise}
+  s.test_files = [
+    "spec/devise_oauth2_authenticatable_spec.rb",
+     "spec/spec_helper.rb"
+  ]
+
+  if s.respond_to? :specification_version then
+    current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::RubyGemsVersion) >= Gem::Version.new('1.2.0') then
+      s.add_development_dependency(%q<rspec>, [">= 1.2.9"])
+      s.add_runtime_dependency(%q<devise>, [">= 1.0.0"])
+      s.add_runtime_dependency(%q<oauth2>, [">= 0"])
+      s.add_runtime_dependency(%q<json>, [">= 0"])
+    else
+      s.add_dependency(%q<rspec>, [">= 1.2.9"])
+      s.add_dependency(%q<devise>, [">= 1.0.0"])
+      s.add_dependency(%q<oauth2>, [">= 0"])
+      s.add_dependency(%q<json>, [">= 0"])
+    end
+  else
+    s.add_dependency(%q<rspec>, [">= 1.2.9"])
+    s.add_dependency(%q<devise>, [">= 1.0.0"])
+    s.add_dependency(%q<oauth2>, [">= 0"])
+    s.add_dependency(%q<json>, [">= 0"])
+  end
+end
+

data/lib/devise_oauth2_authenticatable.rb

@@ -0,0 +1,65 @@
+# encoding: utf-8
+require 'devise'
+require 'oauth2'
+
+require 'devise_oauth2_authenticatable/model' 
+require 'devise_oauth2_authenticatable/strategy'
+require 'devise_oauth2_authenticatable/schema'
+require 'devise_oauth2_authenticatable/routes'
+#require 'devise_oauth2_authenticatable/controller_filters'
+require 'devise_oauth2_authenticatable/view_helpers'
+require 'devise_oauth2_authenticatable/rails'
+
+module Devise
+  # Specifies the name of the database column name used for storing
+  # the oauth UID. Useful if this info should be saved in a
+  # generic column if different authentication solutions are used.
+  mattr_accessor :oauth2_uid_field
+  @@oauth2_uid_field = :oauth2_uid
+
+  # Specifies the name of the database column name used for storing
+  # the user Facebook session key. Useful if this info should be saved in a
+  # generic column if different authentication solutions are used.
+  mattr_accessor :oauth2_token_field
+  @@oauth2_token_field = :oauth2_token
+
+  # Specifies if account should be created if no account exists for
+  # a specified Facebook UID or not.
+  mattr_accessor :oauth2_auto_create_account
+  @@oauth2_auto_create_account = true
+  
+  def self.oauth2_client
+    @@oauth2_client ||= OAuth2::Client.new(
+            OAUTH2_CONFIG['client_id'],
+            OAUTH2_CONFIG['client_secret'],
+            :site => OAUTH2_CONFIG['authorization_server'],
+            :authorize_path => OAUTH2_CONFIG['authorize_path'],
+            :access_token_path => OAUTH2_CONFIG['access_token_path'])
+  end
+  
+  
+  def self.session_sign_in_url(request, mapping)
+    url = URI.parse(request.url)
+    # url.path = "#{mapping.parsed_path}/#{mapping.path_names[:sign_in]}"
+    url.path = "/#{mapping.path}/#{mapping.path_names[:oauth2]}"
+    url.query = nil
+    url.to_s
+  end
+  
+  def self.requested_scope
+    @@requested_scope ||= OAUTH2_CONFIG['requested_scope']
+  end
+  
+end
+
+# Load core I18n locales: en
+#
+I18n.load_path.unshift File.join(File.dirname(__FILE__), *%w[devise_oauth2_authenticatable locales en.yml])
+
+# Add +:facebook_connectable+ strategies to defaults.
+#
+Devise.add_module(:oauth2_authenticatable,
+  :strategy => true,
+  :controller => :sessions,
+  :route => :oauth2,
+  :model => 'devise_oauth2_authenticatable/model')

data/lib/devise_oauth2_authenticatable/locales/en.yml

@@ -0,0 +1,9 @@
+en:
+  devise:
+    sessions:
+      oauth2_invalid: "Could not login. Invalid account."
+      oauth2_timeout: "OAuth2 session expired., please sign in again to continue."
+      oauth2_authenticity_token: "Something went wrong. For security reasons, please sign in again." # Revise this message =)
+      oauth2_actions:
+        sign_in: "Sign in" # NOTE: Not used for the default Facebook Connect button.
+        sign_out: "Sign out"

data/lib/devise_oauth2_authenticatable/model.rb

@@ -0,0 +1,196 @@
+# encoding: utf-8
+require 'devise/models'
+
+
+module Devise #:nodoc:
+  # module OAuth2Authenticatable #:nodoc:
+    module Models #:nodoc:
+
+      # OAuth2 Connectable Module, responsible for validating authenticity of a
+      # user and storing credentials while signing in using their OAuth2 account.
+      #
+      # == Configuration:
+      #
+      # You can overwrite configuration values by setting in globally in Devise (+Devise.setup+),
+      # using devise method, or overwriting the respective instance method.
+      #
+      # +oauth2_uid_field+ - Defines the name of the OAuth2 user UID database attribute/column.
+      #
+      # +oauth2_token_field+ - Defines the name of the OAuth2 session key database attribute/column.
+      #
+      # +oauth2_auto_create_account+ - Speifies if account should automatically be created upon connect
+      #                                 if not already exists.
+      #
+      # == Examples:
+      #
+      #    User.oauth2_connect(:uid => '123456789')     # returns authenticated user or nil
+      #    User.find(1).oauth2_connected?               # returns true/false
+      #
+      module Oauth2Authenticatable
+
+        def self.included(base) #:nodoc:
+          base.class_eval do
+            extend ClassMethods
+          end
+        end
+
+        # Store OAuth2 Connect account/session credentials.
+        #
+        def store_oauth2_credentials!(attributes = {})
+          self.send(:"#{self.class.oauth2_uid_field}=", attributes[:uid])
+          self.send(:"#{self.class.oauth2_token_field}=", attributes[:token])
+
+          # Confirm without e-mail - if confirmable module is loaded.
+          self.skip_confirmation! if self.respond_to?(:skip_confirmation!)
+
+          # Only populate +email+ field if it's available (e.g. if +authenticable+ module is used).
+          self.email = attributes[:email] || '' if self.respond_to?(:email)
+
+          # Lazy hack: These database fields are required if +authenticable+/+confirmable+
+          # module(s) is used. Could be avoided with :null => true for authenticatable
+          # migration, but keeping this to avoid unnecessary problems.
+          self.password_salt = '' if self.respond_to?(:password_salt)
+          self.encrypted_password = '' if self.respond_to?(:encrypted_password)
+        end
+
+        # Checks if OAuth2 Connected.
+        #
+        def oauth2_connected?
+          self.send(:"#{self.class.oauth2_uid_field}").present?
+        end
+        alias :is_oauth2_connected? :oauth2_connected?
+
+        # Hook that gets called *before* connect (only at creation). Useful for
+        # specifiying additional user info (etc.) from OAuth2.
+        #
+        # Default: Do nothing.
+        #
+        # == Examples:
+        #
+        #   # Overridden in OAuth2 Connect:able model, e.g. "User".
+        #   #
+        #   def before_oauth2_auto_create(oauth2_user_attributes)
+
+        #     self.profile.first_name = oauth2_user_attributes.first_name
+
+        #
+        #   end
+        #
+        # == For more info:
+        #
+        #   * http://oauth2er.pjkh.com/user/populate
+        #
+        def on_before_oauth2_auto_create(oauth2_user_attributes)
+          
+          if self.respond_to?(:before_oauth2_auto_create)
+            self.send(:before_oauth2_auto_create, oauth2_user_attributes) rescue nil
+          end
+        end
+
+        # Hook that gets called *after* a connection (each time). Useful for
+        # fetching additional user info (etc.) from OAuth2.
+        #
+        # Default: Do nothing.
+        #
+        # == Example:
+        #
+        #   # Overridden in OAuth2 Connect:able model, e.g. "User".
+        #   #
+        #   def after_oauth2_connect(oauth2_user_attributes)
+        #     # See "on_before_oauth2_connect" example.
+        #   end
+        #
+        def on_after_oauth2_connect(oauth2_user_attributes)
+          
+          if self.respond_to?(:after_oauth2_connect)
+            self.send(:after_oauth2_connect, oauth2_user_attributes) rescue nil
+          end
+        end
+
+        # Optional: Store session key.
+        #
+        def store_session(using_token)
+          if self.token != using_token
+            self.update_attribute(self.send(:"#{self.class.oauth2_token_field}"), using_token)
+          end
+        end
+      
+      protected
+
+      # Passwords are always required if it's a new rechord and no oauth_id exists, or if the password
+      # or confirmation are being set somewhere.
+      def password_required?
+        
+        ( new_record? && self.send(:"#{self.class.oauth2_uid_field}").nil? ) || !password.nil? || !password_confirmation.nil?
+      end
+
+        module ClassMethods
+
+          # Configuration params accessible within +Devise.setup+ procedure (in initalizer).
+          #
+          # == Example:
+          #
+          #   Devise.setup do |config|
+          #     config.oauth2_uid_field = :oauth2_uid
+          #     config.oauth2_token_field = :oauth2_token
+          #     config.oauth2_auto_create_account = true
+          #   end
+          #
+          ::Devise::Models.config(self,
+              :oauth2_uid_field,
+              :oauth2_token_field,
+              :oauth2_auto_create_account
+            )
+
+          # Alias don't work for some reason, so...a more Ruby-ish alias
+          # for +oauth2_auto_create_account+.
+          #
+          def oauth2_auto_create_account?
+            self.oauth2_auto_create_account
+          end
+
+          # Authenticate a user based on OAuth2 UID.
+          #
+          def authenticate_with_oauth2(oauth2_id, oauth2_token)
+            
+              # find user and update access token 
+              returning(self.find_for_oauth2(oauth2_id)) do |user|
+                user.update_attributes(:"#{self.oauth2_token_field}" => oauth2_token) unless user.nil?
+              end
+
+          end
+
+          protected
+
+          
+
+            # Find first record based on conditions given (OAuth2 UID).
+            # Overwrite to add customized conditions, create a join, or maybe use a
+            # namedscope to filter records while authenticating.
+            #
+            # == Example:
+            #
+            #   def self.find_for_oauth2(uid, conditions = {})
+            #     conditions[:active] = true
+            #     self.find_by_oauth2_uid(uid, :conditions => conditions)
+            #   end
+            #
+            def find_for_oauth2(uid, conditions = {})
+              self.send(:"find_by_#{self.oauth2_uid_field}",uid, :conditions => conditions)
+            end
+            
+            
+
+            # Contains the logic used in authentication. Overwritten by other devise modules.
+            # In the OAuth2 Connect case; nothing fancy required.
+            #
+            def valid_for_oauth2(resource, attributes)
+              true
+            end
+
+        end
+
+      end
+    end
+  # end
+end

data/lib/devise_oauth2_authenticatable/rails.rb

@@ -0,0 +1,24 @@
+module Devise
+  class Engine
+    config.after_initialize do
+      begin
+        config_file = Rails.root.join('config', 'oauth2.yml')
+        unless File.exists?(config_file)
+          config_file = Rails.root.join('config', 'oauth2_config.yml')
+          if File.exists?(config_file)
+            puts "Deprecated OAuth2 config file config/oauth2_config.yml. Please use config/oauth.yml instead."
+          end
+        end
+
+        Devise::OAUTH2_CONFIG = YAML.load_file(config_file)[Rails.env]
+
+        unless Devise::OAUTH2_CONFIG['user_attributes_path']
+          puts "Your config/oauth2.yml does not seem to contain a user_attributes_path setting. Assuming '/me' for FacebookConnect."
+          Devise::OAUTH2_CONFIG['user_attributes_path'] = '/me'
+        end
+      rescue
+        puts "Can't load oauth2.yml. You can generate with rails g devise:oauth2_authenticatable"
+      end
+    end
+  end
+end

data/lib/devise_oauth2_authenticatable/routes.rb

@@ -0,0 +1,7 @@
+ActionDispatch::Routing::Mapper.class_eval do
+  protected
+  
+  def devise_oauth2(mapping, controllers)
+    get mapping.path_names[:oauth2],  :to => "#{controllers[:sessions]}#create", :as => :"oauth2_#{mapping.name}_session"
+  end
+end

data/lib/devise_oauth2_authenticatable/schema.rb

@@ -0,0 +1,22 @@
+# encoding: utf-8
+require 'devise/schema'
+
+module Devise #:nodoc:
+  module Oauth2Authenticatable #:nodoc:
+
+    module Schema
+
+      # Database migration schema for Facebook Connect.
+      #
+      def oauth2_authenticatable
+        apply_devise_schema ::Devise.oauth2_uid_field, Integer, :limit => 8  # BIGINT unsigned / 64-bit int
+        apply_devise_schema ::Devise.oauth2_token_field, String, :limit => 149  # [128][1][20] chars
+      end
+
+    end
+  end
+end
+
+Devise::Schema.module_eval do
+  include ::Devise::Oauth2Authenticatable::Schema
+end

data/lib/devise_oauth2_authenticatable/strategy.rb

@@ -0,0 +1,100 @@
+# encoding: utf-8
+require 'devise/strategies/base'
+
+
+module Devise #:nodoc:
+  module Oauth2Authenticatable #:nodoc:
+    module Strategies #:nodoc:
+
+      # Default strategy for signing in a user using Facebook Connect (a Facebook account).
+      # Redirects to sign_in page if it's not authenticated
+      #
+      class Oauth2Authenticatable < ::Devise::Strategies::Base
+
+
+
+        # Without a oauth session authentication cannot proceed.
+        #
+        def valid?
+
+         valid_controller? && valid_params? && mapping.to.respond_to?('authenticate_with_oauth2')
+
+        end
+
+        # Authenticate user with OAuth2
+        #
+        def authenticate!
+          klass = mapping.to
+          begin
+
+
+            # Verify User Auth code and get access token from auth server: will error on failue
+            access_token = Devise::oauth2_client.web_server.get_access_token(
+                    params[:code], :redirect_uri => Devise::session_sign_in_url(request,mapping)
+                  )
+
+            # retrieve user attributes
+
+            # Get user details from OAuth2 Service
+            oauth2_user_attributes = JSON.parse(access_token.get(OAUTH2_CONFIG['user_attributes_path']))
+
+            user = klass.authenticate_with_oauth2(oauth2_user_attributes['id'], access_token.token)
+
+
+
+            if user.present?
+              user.on_after_oauth2_connect(oauth2_user_attributes)
+              success!(user)
+            else
+              if klass.oauth2_auto_create_account?
+
+
+
+                user = returning(klass.new) do |u|
+                  u.store_oauth2_credentials!(
+                      :token => access_token.token,
+                      :uid => oauth2_user_attributes['id']
+                    )
+                  u.on_before_oauth2_auto_create(oauth2_user_attributes)
+                end
+
+                begin
+
+
+                  user.save(true)
+                  user.on_after_oauth2_connect(oauth2_user_attributes)
+
+
+                  success!(user)
+                rescue
+                  fail!(:oauth2_invalid)
+                end
+              else
+                fail!(:oauth2_invalid)
+              end
+            end
+
+          rescue => e
+            fail!(e.message)
+          end
+        end
+
+
+
+
+        protected
+          def valid_controller?
+            # params[:controller] == 'sessions'
+            mapping.controllers[:sessions] == params[:controller]
+          end
+
+          def valid_params?
+            params[:code].present?
+          end
+
+      end
+    end
+  end
+end
+
+Warden::Strategies.add(:oauth2_authenticatable, Devise::Oauth2Authenticatable::Strategies::Oauth2Authenticatable)

data/lib/devise_oauth2_authenticatable/view_helpers.rb

@@ -0,0 +1,29 @@
+# encoding: utf-8
+require 'devise/mapping'
+
+module Devise #:nodoc:
+  module Oauth2Authenticatable #:nodoc:
+
+    # OAuth2 view helpers to easily add the link to the OAuth2 connection popup and also the necessary JS code.
+    #
+    module Helpers
+      
+      # Creates the link to 
+      def link_to_oauth2(link_text, options={})
+        
+        
+        session_sign_in_url = Devise::session_sign_in_url(request,::Devise.mappings[:user])
+      
+        link_to link_text, Devise::oauth2_client.web_server.authorize_url(
+            :redirect_uri => session_sign_in_url,  
+            :scope => Devise::requested_scope
+          ), options
+      end
+
+
+      
+    end
+  end
+end
+
+::ActionView::Base.send :include, Devise::Oauth2Authenticatable::Helpers

data/lib/generators/devise/oauth2_authenticatable/USAGE

@@ -0,0 +1,8 @@
+Description:
+    Generates a OAuth2 config file for your application. All the parameters are optional.
+
+Example:
+    rails g devise:oauth2_authenticatable APP_ID SECRET 'email,offline_access,publish_stream'
+
+    This will create:
+        config/oauth2_config.yml

data/lib/generators/devise/oauth2_authenticatable/oauth2_authenticatable_generator.rb

@@ -0,0 +1,17 @@
+module Devise
+  class Oauth2AuthenticatableGenerator < Rails::Generators::Base
+    source_root File.expand_path('../templates', __FILE__)
+    argument :client_id, :type => :string, :default => "YOUR_APP_API_ID"
+    argument :client_key, :type => :string, :default => "YOUR_APP_SECRET_KEY"
+    argument :requested_scope, :type => :string, :default => "email,offline_access,publish_stream"
+    argument :auth_server, :type => :string, :default => "https://graph.facebook.com"
+    argument :authorize_path, :type => :string, :default => "/oauth/authorize"
+    argument :access_token_path, :type => :string, :default => "/oauth/access_token"
+    argument :user_attributes_path, :type => :string, :default => "/me"
+    desc "Generates a OAuth2 config file for your application. All the parameters are optional."
+
+    def generate_oauth2_config
+      template 'oauth2_config.yml', File.join(*%w[config oauth2.yml])
+    end
+  end
+end

data/lib/generators/devise/oauth2_authenticatable/templates/oauth2.yml

@@ -0,0 +1,24 @@
+defaults: &defaults
+    # Required.
+    client_id: <%= client_id %>
+    client_secret: <%= client_key %>
+    authorization_server: <%= auth_server %>
+    requested_scope: <%= requested_scope %>
+    authorize_path: <%= authorize_path %>
+    access_token_path: <%= access_token_path %>
+    user_attributes_path: <%= user_attributes_path %>
+
+development:
+  <<: *defaults
+
+test: &test
+  <<: *defaults
+
+production: &production
+  <<: *defaults
+
+# staging:
+#   <<: *production
+#
+# cucumber:
+#   <<: *test

data/spec/devise_oauth2_authenticatable_spec.rb

@@ -0,0 +1,7 @@
+require File.expand_path(File.dirname(__FILE__) + '/spec_helper')
+
+describe "DeviseOauth2Authenticatable" do
+  it "fails" do
+    fail "hey buddy, you should probably rename this file and start specing for real"
+  end
+end

data/spec/spec.opts

@@ -0,0 +1 @@
+--color

data/spec/spec_helper.rb

@@ -0,0 +1,9 @@
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
+require 'devise_oauth2_authenticatable'
+require 'spec'
+require 'spec/autorun'
+
+Spec::Runner.configure do |config|
+  
+end

metadata

@@ -0,0 +1,148 @@
+--- !ruby/object:Gem::Specification 
+name: svenfuchs-devise_oauth2_authenticatable
+version: !ruby/object:Gem::Version 
+  hash: 27
+  prerelease: false
+  segments: 
+  - 0
+  - 1
+  - 0
+  version: 0.1.0
+platform: ruby
+authors: 
+- bhbryant
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-06-13 00:00:00 +02:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: rspec
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 13
+        segments: 
+        - 1
+        - 2
+        - 9
+        version: 1.2.9
+  type: :development
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: devise
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 23
+        segments: 
+        - 1
+        - 0
+        - 0
+        version: 1.0.0
+  type: :runtime
+  version_requirements: *id002
+- !ruby/object:Gem::Dependency 
+  name: oauth2
+  prerelease: false
+  requirement: &id003 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id003
+- !ruby/object:Gem::Dependency 
+  name: json
+  prerelease: false
+  requirement: &id004 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id004
+description: Implements OAuth2 for Devise
+email: benjamin@bryantmarkowsky.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- LICENSE
+- README.rdoc
+files: 
+- .document
+- .gitignore
+- LICENSE
+- README.rdoc
+- Rakefile
+- VERSION
+- devise_oauth2_authenticatable.gemspec
+- lib/devise_oauth2_authenticatable.rb
+- lib/devise_oauth2_authenticatable/locales/en.yml
+- lib/devise_oauth2_authenticatable/rails.rb
+- lib/devise_oauth2_authenticatable/model.rb
+- lib/devise_oauth2_authenticatable/routes.rb
+- lib/devise_oauth2_authenticatable/schema.rb
+- lib/devise_oauth2_authenticatable/strategy.rb
+- lib/devise_oauth2_authenticatable/view_helpers.rb
+- lib/generators/devise/oauth2_authenticatable/oauth2_authenticatable_generator.rb
+- lib/generators/devise/oauth2_authenticatable/templates/oauth2.yml
+- lib/generators/devise/oauth2_authenticatable/USAGE
+- spec/devise_oauth2_authenticatable_spec.rb
+- spec/spec.opts
+- spec/spec_helper.rb
+has_rdoc: true
+homepage: http://github.com/bhbryant/devise_oauth2_authenticatable
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: Implements OAuth2 for Devise
+test_files: 
+- spec/devise_oauth2_authenticatable_spec.rb
+- spec/spec_helper.rb