RubyGems - test_openid_connect - Versions diffs - 0.1.5 → 0.1.9 - Mend

test_openid_connect 0.1.5 → 0.1.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml +4 -4
data/Gemfile.lock +1 -1
data/lib/omniauth/strategies/test_openid_connect.rb +50 -46
data/test_openid_connect.gemspec +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 803e3b58bb96ce31dda914c5e0a2c222064aca3066fafa3350d79995c33a8e49
-  data.tar.gz: 14f43a4f33a3e0fb1ae546baae6e637adacc7388a42f3fe79766ad8ac973ec54
+  metadata.gz: d4b398f43e088c3757e8ce589e355b58ab932c723273014ade850c93217d9973
+  data.tar.gz: ce72e257826144230f21f8bcec635d21e228eabd615fc96682875d7705e0f51e
 SHA512:
-  metadata.gz: 4a3de9a01cad7fcfc5bc9f71477d4eeca44f9f41ee4b9bb4d9b6f462c1d8989d96c78aa0e9064a994b87f3d3779a44b971a8e1d8aacc1b4436e61d3435aec2e6
-  data.tar.gz: 573c05062ae2795f33fd7a98d4a20d11b3af2cd7dae726888b3912e3ff75fc74410fbec4ca974d49cb100d6b62bde1067837befa3d82ac653b5fe3981b0e7b44
+  metadata.gz: e66652f2b0092cdbfba5b0b50657dfdce1fa69391b6df003ce2eabe6f962e1156efd89aaac87f0a641db787137c87fcef3a408441221f13a3c8c6b07def3540d
+  data.tar.gz: 31a7d846190a604040c789b6d8fb82555bda989f7e51ce0dae6f1017ecb6356964fe2a011a9e3035360ecbb14710f7543ca93c98b50cbdce416bd1c2b57f9b16

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    test_openid_connect (0.1.0)
+    test_openid_connect (0.1.6)
 GEM
   remote: https://rubygems.org/

data/lib/omniauth/strategies/test_openid_connect.rb CHANGED Viewed

@@ -2,7 +2,7 @@
 require 'omniauth-oauth2'
-module OmniAuth
+module ::OmniAuth
   module OpenIDConnect
     class DiscoveryError < Error; end
   end
@@ -13,9 +13,9 @@ module OmniAuth
       option :scope, "openid"
       option :discovery, true
       option :use_userinfo, true
-      option :cache, lambda { |key, &blk| blk.call } # Default no-op cache
-      option :error_handler, lambda { |error, message| nil } # Default no-op handler
-      option :verbose_logger, lambda { |message| nil } # Default no-op handler
+      # option :cache, lambda { |key, &blk| blk.call } # Default no-op cache
+      # option :error_handler, lambda { |error, message| nil } # Default no-op handler
+      # option :verbose_logger, lambda { |message| nil } # Default no-op handler
       option :passthrough_authorize_options, [:p]
       option :passthrough_token_options, [:p]
@@ -27,17 +27,17 @@ module OmniAuth
         userinfo_endpoint: nil,
         auth_scheme: :basic_auth
-      def verbose_log(message)
-        options.verbose_logger.call(message)
-      end
+      # def verbose_log(message)
+      #   options.verbose_logger.call(message)
+      # end
       def discover!
-        verbose_log("Fetching discovery document from #{options[:client_options][:discovery_document]}")
-        discovery_document = options.cache.call("openid_discovery_#{options[:client_options][:discovery_document]}") do
-          client.request(:get, options[:client_options][:discovery_document], parse: :json).parsed
-        end
-        verbose_log("Discovery document loaded\n\n#{discovery_document.to_yaml}")
+        # verbose_log("Fetching discovery document from #{options[:client_options][:discovery_document]}")
+        discovery_document = client.request(:get, options[:client_options][:discovery_document], parse: :json).parsed
+        # verbose_log("Discovery document loaded\n\n#{discovery_document.to_yaml}")
+        puts "****************"
+        puts discovery_document
+        puts "****************"
         discovery_params = {
           authorize_url: "authorization_endpoint",
           token_url: "token_endpoint",
@@ -54,14 +54,18 @@ module OmniAuth
         options.use_userinfo = false if userinfo_endpoint.nil? || userinfo_endpoint.empty?
       end
-      def request_phase
-        begin
-          discover! if options[:discovery]
-        rescue ::OmniAuth::OpenIDConnect::DiscoveryError => e
-          fail!(:openid_connect_discovery_error, e)
-        end
+      # def request_phase
+      #   begin
+      #     discover! if options[:discovery]
+      #   rescue ::OmniAuth::OpenIDConnect::DiscoveryError => e
+      #     fail!(:openid_connect_discovery_error, e)
+      #   end
+      #   super
+      # end
-        super
+      def request_phase
+        redirect client.auth_code.authorize_url({:redirect_uri => callback_url}.merge(options.authorize_params))
       end
       def authorize_params
@@ -88,28 +92,28 @@ module OmniAuth
         super.merge(params)
       end
-      def callback_phase
-        if request.params["error"] && request.params["error_description"] && response = options.error_handler.call(request.params["error"], request.params["error_description"])
-          verbose_log("Error handled, redirecting\n\n#{response.to_yaml}")
-          return redirect(response)
-        end
-        begin
-          discover! if options[:discovery]
-          oauth2_callback_phase = super
-          return oauth2_callback_phase if env['omniauth.error']
-          if id_token_info["nonce"].nil? || id_token_info["nonce"].empty? || id_token_info["nonce"] != session.delete("omniauth.nonce")
-            return fail!(:csrf_detected, CallbackError.new(:csrf_detected, "CSRF detected"))
-          end
-          oauth2_callback_phase
-        rescue ::OmniAuth::OpenIDConnect::DiscoveryError => e
-          fail!(:openid_connect_discovery_error, e)
-        rescue JWT::DecodeError => e
-          fail!(:jwt_decode_failed, e)
-        end
-      end
+      # def callback_phase
+      #   if request.params["error"] && request.params["error_description"]
+      #     # verbose_log("Error handled, redirecting\n\n#{response.to_yaml}")
+      #     return redirect(response)
+      #   end
+      #   begin
+      #     discover! if options[:discovery]
+      #     oauth2_callback_phase = super
+      #     return oauth2_callback_phase if env['omniauth.error']
+      #     if id_token_info["nonce"].nil? || id_token_info["nonce"].empty? || id_token_info["nonce"] != session.delete("omniauth.nonce")
+      #       return fail!(:csrf_detected, CallbackError.new(:csrf_detected, "CSRF detected"))
+      #     end
+      #     oauth2_callback_phase
+      #   rescue ::OmniAuth::OpenIDConnect::DiscoveryError => e
+      #     fail!(:openid_connect_discovery_error, e)
+      #   rescue JWT::DecodeError => e
+      #     fail!(:jwt_decode_failed, e)
+      #   end
+      # end
       def id_token_info
         # Verify the claims in the JWT
@@ -117,7 +121,7 @@ module OmniAuth
         # token was acquired via a direct server-server connection to the issuer
         @id_token_info ||= begin
           decoded = JWT.decode(access_token['id_token'], nil, false).first
-          verbose_log("Loaded JWT\n\n#{decoded.to_yaml}")
+          # verbose_log("Loaded JWT\n\n#{decoded.to_yaml}")
           JWT::Verify.verify_claims(decoded,
             verify_iss: true,
             iss: options[:client_options][:site],
@@ -129,7 +133,7 @@ module OmniAuth
             verify_iat: false,
             verify_jti: false
           )
-          verbose_log("Verified JWT\n\n#{decoded.to_yaml}")
+          # verbose_log("Verified JWT\n\n#{decoded.to_yaml}")
           decoded
         end
@@ -138,7 +142,7 @@ module OmniAuth
       def userinfo_response
         @raw_info ||= begin
           info = access_token.get(options[:client_options][:userinfo_endpoint]).parsed
-          verbose_log("Fetched userinfo response\n\n#{info.to_yaml}")
+          # verbose_log("Fetched userinfo response\n\n#{info.to_yaml}")
           info
         end
@@ -202,7 +206,7 @@ end
 OmniAuth.config.add_camelization 'oauth2', 'OpenIDConnect'
-module OmniAuth
+module ::OmniAuth
   module Strategies
     autoload :OpenIDConnect, "lib/omniauth/test_openid_connect.rb"
   end

data/test_openid_connect.gemspec CHANGED Viewed

@@ -2,7 +2,7 @@
 Gem::Specification.new do |spec|
   spec.name          = "test_openid_connect"
-  spec.version       = "0.1.5"
+  spec.version       = "0.1.9"
   spec.required_ruby_version = ">= 2.4.0"
   spec.authors       = ["Burak Akça"]
   spec.email         = ["burak.akca834@gmail.com"]

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: test_openid_connect
 version: !ruby/object:Gem::Version
-  version: 0.1.5
+  version: 0.1.9
 platform: ruby
 authors:
 - Burak Akça
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2021-08-31 00:00:00.000000000 Z
+date: 2021-09-01 00:00:00.000000000 Z
 dependencies: []
 description: 'desc desc desc desc '
 email: