touchpass 0.0.8.1

data/.gitignore

@@ -0,0 +1,3 @@
+.DS_Store
+log/*
+pkg/*

data/.rspec

@@ -0,0 +1,2 @@
+--color
+--format progress

data/Gemfile

@@ -0,0 +1,16 @@
+source 'http://rubygems.org'
+
+gem 'httparty',      '~> 0.8.0'
+gem 'thor',          '~> 0.14.6'
+gem 'geocoder',      '~> 1.1.0'
+gem 'json',            '~> 1.6.5'
+gem 'xml-simple', '~> 1.1.1'
+
+group :development, :test do
+  gem 'guard'
+  gem 'growl'
+  gem 'guard-rspec'
+  gem 'rspec-core'
+  gem 'rspec-mocks'
+  gem 'rspec-expectations'
+end

data/Gemfile.lock

@@ -0,0 +1,38 @@
+GEM
+  remote: http://rubygems.org/
+  specs:
+    diff-lcs (1.1.3)
+    ffi (1.0.11)
+    geocoder (1.1.1)
+    growl (1.0.3)
+    guard (1.0.0)
+      ffi (>= 0.5.0)
+      thor (~> 0.14.6)
+    guard-rspec (0.6.0)
+      guard (>= 0.10.0)
+    httparty (0.8.1)
+      multi_json
+      multi_xml
+    json (1.6.5)
+    multi_json (1.1.0)
+    multi_xml (0.4.1)
+    rspec-core (2.8.0)
+    rspec-expectations (2.8.0)
+      diff-lcs (~> 1.1.2)
+    rspec-mocks (2.8.0)
+    thor (0.14.6)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  geocoder (~> 1.1.0)
+  growl
+  guard
+  guard-rspec
+  httparty (~> 0.8.0)
+  json
+  rspec-core
+  rspec-expectations
+  rspec-mocks
+  thor (~> 0.14.6)

data/Guardfile

@@ -0,0 +1,9 @@
+# A sample Guardfile
+# More info at https://github.com/guard/guard#readme
+
+guard 'rspec', :version => 2 do
+  watch(%r{^spec/.+_spec\.rb$})
+  watch(%r{^lib/(.+)\.rb$})     { |m| "spec/lib/#{m[1]}_spec.rb" }
+  watch('spec/spec_helper.rb')  { "spec" }
+end
+

data/Rakefile

@@ -0,0 +1 @@
+require 'bundler/gem_tasks'

data/app/controllers/touchpass/verifications_controller.rb

@@ -0,0 +1,30 @@
+module Touchpass
+  class VerificationsController < ApplicationController
+
+    unloadable
+
+    def create
+      verification = Touchpass::Rp::Verification.new
+      response = verification.create params[:to_user], {:address => params[:address], :message => params[:message]}
+      respond_to do |format|
+        format.js { render :json => response.to_json }
+      end
+    end
+
+    def show
+      verification = Touchpass::Rp::Verification.new
+      response = verification.show params[:id]
+      respond_to do |format|
+        format.js { render :json => response.to_json }
+      end
+    end
+
+    def cancel
+      verification = Touchpass::Rp::Verification.new
+      response = verification.cancel params[:id]
+      respond_to do |format|
+        format.js { render :json => response.to_json }
+      end
+    end
+  end
+end

data/bin/tpcli.rb

@@ -0,0 +1,248 @@
+#!/usr/bin/env ruby
+
+# Geodica Touchpass
+# (C) Copyright 2009-2012 Geodica, a Carpadium Pty Ltd Venture
+# All rights reserved
+
+require 'rubygems'
+require 'thor'
+require 'httparty'
+require 'openssl'
+require 'fileutils'
+require 'base64'
+require 'xmlsimple'
+
+$:.unshift(File.join(File.dirname(__FILE__), "/../lib"))
+require "touchpass"
+
+class TpCLI < Thor
+
+  DFT_API_KEY = ENV["TPC_API_KEY"]
+  DFT_HOST = ENV["TPC_HOST"]
+  DFT_DEBUG = ENV["TPC_DEBUG"]
+  DFT_OUTPUT = "json"
+
+  attr_accessor :touchpass_client 
+  
+  desc "register_party", "Register new Verifying Party"
+  method_option :email,    :aliases => "-e", :required => true
+  method_option :username, :aliases => "-u", :required => true
+  method_option :password, :aliases => "-p", :required => true
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def register_party
+    setup(options)
+    output @touchpass_client.register_party(options)
+  end
+
+  desc "authenticate_party", "Authenticate Party"
+  method_option :login,    :aliases => "-l", :required => true
+  method_option :password, :aliases => "-p", :required => true
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def authenticate_party
+    setup(options)
+    output @touchpass_client.authenticate_party(options)
+  end
+
+  desc "show_party", "Show Party details"
+  method_option :username, :aliases => "-u"
+  method_option :id
+  method_option :api_key,  :required => true, :default => DFT_API_KEY
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def show_party
+    setup(options)
+    output @touchpass_client.get_party(options)
+  end
+
+  desc "update_party", "Update Party details"
+  method_option :username,  :aliases => "-u"
+  method_option :id
+  method_option :email,     :aliases => "-e"
+  method_option :first_name
+  method_option :last_name
+  method_option :api_key,   :required => true
+  method_option :hostname,  :aliases => "-h"
+  method_option :output,    :aliases => "-o"
+  method_option :debug,     :aliases => "-d"
+  def update_party
+    setup(options)
+    output @touchpass_client.update_party(options)
+  end
+
+  desc "register_device", "Register new Device"
+  method_option :username,        :aliases  => "-u", :required => true
+  method_option :udid,            :required => true
+  method_option :name,            :aliases  => "-n", :required => true
+  method_option :messaging_type,  :aliases  => "-mt"
+  method_option :messaging_value, :aliases  => "-mv"
+  method_option :api_key,         :required => true
+  method_option :hostname,        :aliases => "-h"
+  method_option :output,          :aliases => "-o"
+  method_option :debug,           :aliases => "-d"
+  def register_device
+    setup(options)
+    output @touchpass_client.register_device(options)
+  end
+
+  desc "show_devices", "Show Party Devices"
+  method_option :username, :aliases => "-u", :required => true
+  method_option :api_key,  :required => true, :default => DFT_API_KEY
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def show_devices
+    setup(options)
+    output @touchpass_client.get_devices(options)        
+  end
+
+  desc "show_device", "Show Device details"
+  method_option :username, :aliases => "-u", :required => true
+  method_option :id,       :required => true
+  method_option :api_key,  :required => true, :default => DFT_API_KEY
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def show_device
+    setup(options)
+    output @touchpass_client.get_device(options)        
+  end
+
+  desc "update_device", "Update Device details"
+  method_option :username, :aliases => "-u", :required => true
+  method_option :id, :required => true
+  method_option :name, :aliases => "-n"
+  method_option :messaging_type, :aliases => "-mt"
+  method_option :messaging_value, :aliases => "-mv"
+  method_option :update_pub_key
+  method_option :api_key, :required => true
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def update_device
+    setup(options)
+    output @touchpass_client.update_device(options)
+  end
+
+  desc "remove_device", "Remove Device"
+  method_option :username, :aliases => "-u", :required => true
+  method_option :id, :required => true
+  method_option :api_key, :required => true
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def remove_device
+    setup(options)
+    output @touchpass_client.remove_device(options)
+  end
+
+  desc "create_verification", "Create new Verification"
+  method_option :to_party, :aliases => "-t", :required => true
+  method_option :to_device_id, :aliases => "-D"
+  method_option :message, :aliases => "-m"
+  method_option :address, :aliases => "-a" # Required for location verfication
+  method_option :resolution, :aliases => "-r"
+  method_option :api_key, :required => true
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def create_verification
+    setup(options)
+    output @touchpass_client.create_verification(options)
+  end
+
+  desc "show_verifications", "Show Verifications"
+  method_option :username, :aliases => "-u"
+  method_option :party_id
+  method_option :api_key, :required => true
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def show_verifications
+    setup(options)
+    output @touchpass_client.get_verifications(options)        
+  end
+
+  desc "show_verification", "Show Verification details"
+  method_option :id, :aliases => "-i", :required => true
+  method_option :device_id # For decrypting message (optional)
+  method_option :api_key, :required => true
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def show_verification
+    setup(options)
+    output @touchpass_client.get_verification(options)        
+  end
+
+  desc "update_verification", "Update Verification"
+  method_option :id,        :required => true
+  method_option :device_id, :required => true, :aliases => "-d"
+  method_option :address,   :aliases => "-a"
+  method_option :api_key,   :required => true
+  method_option :hostname,  :aliases => "-h"
+  method_option :output,    :aliases => "-o"
+  method_option :debug,     :aliases => "-d"
+  def update_verification
+    setup(options)
+    output @touchpass_client.update_verification(options)        
+  end
+
+  desc "cancel_verification", "Cancel Verification"
+  method_option :id,       :required => true
+  method_option :api_key,  :required => true, :default => DFT_API_KEY
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def cancel_verification
+    setup(options)
+    output @touchpass_client.cancel_verification(options)        
+  end
+
+  desc "reject_verification", "Reject Verification"
+  method_option :id,       :required => true
+  method_option :api_key,  :required => true, :default => DFT_API_KEY
+  method_option :hostname, :aliases => "-h"
+  method_option :output,   :aliases => "-o"
+  method_option :debug,    :aliases => "-d"
+  def reject_verification
+    setup(options)
+    output @touchpass_client.reject_verification(options)        
+  end
+
+  private
+
+  # Construct a Touchpass:Client instance
+  def setup(options)
+    @output = (options[:output] || DFT_OUTPUT).to_sym
+    unless [:xml, :json].include?(@output)
+      puts "error: output format '#{@output}' is not supported, use xml or json"
+      exit 1
+    end
+
+    hostname = options[:hostname] || DFT_HOST
+    debug = options[:debug] || DFT_DEBUG
+    api_key = options[:api_key] || DFT_API_KEY
+
+    @touchpass_client = Touchpass::Client.new(hostname, debug)
+    @touchpass_client.api_key = api_key
+    @touchpass_client
+  end
+
+  def output(response)
+    case @output
+    when :xml
+      puts XmlSimple.xml_out(response, 'NoAttr' => true, 'RootName' => 'response')
+    when :json
+      puts JSON.pretty_generate(response)
+    end
+  end
+
+end
+
+# Kick off the Touchpass CLI
+TpCLI.start

data/config/routes.rb

@@ -0,0 +1,8 @@
+#config/routes.rb
+Rails.application.routes.draw do |map|
+  scope :module => 'touchpass' do
+    get  "touchpass/verifications/:id"        => 'verifications#show'
+    post "touchpass/verifications"            => 'verifications#create'
+    put  "touchpass/verifications/:id/cancel" => 'verifications#cancel'
+  end
+end

data/lib/engine.rb

@@ -0,0 +1,4 @@
+module Touchpass
+  class Engine < Rails::Engine
+  end
+end

data/lib/generators/templates/config/initializers/devise.rb

@@ -0,0 +1,204 @@
+# Use this hook to configure devise mailer, warden hooks and so forth. The first
+# four configuration values can also be set straight in your models.
+Devise.setup do |config|
+  # ==> Mailer Configuration
+  # Configure the e-mail address which will be shown in DeviseMailer.
+  config.mailer_sender = "please-change-me-at-config-initializers-devise@example.com"
+
+  # Configure the class responsible to send e-mails.
+  # config.mailer = "Devise::Mailer"
+
+  # ==> ORM configuration
+  # Load and configure the ORM. Supports :active_record (default) and
+  # :mongoid (bson_ext recommended) by default. Other ORMs may be
+  # available as additional gems.
+  require 'devise/orm/active_record'
+
+  # ==> Configuration for any authentication mechanism
+  # Configure which keys are used when authenticating a user. The default is
+  # just :email. You can configure it to use [:username, :subdomain], so for
+  # authenticating a user, both parameters are required. Remember that those
+  # parameters are used only when authenticating and not when retrieving from
+  # session. If you need permissions, you should implement that in a before filter.
+  # You can also supply a hash where the value is a boolean determining whether
+  # or not authentication should be aborted when the value is not present.
+  config.authentication_keys = [ :login ]
+
+  # Configure parameters from the request object used for authentication. Each entry
+  # given should be a request method and it will automatically be passed to the
+  # find_for_authentication method and considered in your model lookup. For instance,
+  # if you set :request_keys to [:subdomain], :subdomain will be used on authentication.
+  # The same considerations mentioned for authentication_keys also apply to request_keys.
+  # config.request_keys = []
+
+  # Configure which authentication keys should be case-insensitive.
+  # These keys will be downcased upon creating or modifying a user and when used
+  # to authenticate or find a user. Default is :email.
+  config.case_insensitive_keys = [ :email ]
+  
+  # Configure which authentication keys should have whitespace stripped.
+  # These keys will have whitespace before and after removed upon creating or
+  # modifying a user and when used to authenticate or find a user. Default is :email.
+  config.strip_whitespace_keys = [ :email ]
+
+  # Tell if authentication through request.params is enabled. True by default.
+  # config.params_authenticatable = true
+
+  # Tell if authentication through HTTP Basic Auth is enabled. False by default.
+  # config.http_authenticatable = false
+
+  # If http headers should be returned for AJAX requests. True by default.
+  # config.http_authenticatable_on_xhr = true
+
+  # The realm used in Http Basic Authentication. "Application" by default.
+  # config.http_authentication_realm = "Application"
+
+  # It will change confirmation, password recovery and other workflows
+  # to behave the same regardless if the e-mail provided was right or wrong.
+  # Does not affect registerable.
+  # config.paranoid = true
+
+  # ==> Configuration for :database_authenticatable
+  # For bcrypt, this is the cost for hashing the password and defaults to 10. If
+  # using other encryptors, it sets how many times you want the password re-encrypted.
+  config.stretches = 10
+
+  # Setup a pepper to generate the encrypted password.
+  # config.pepper = "c4d6f4a2a9f3f649d369ccf29bfd125a8b897383bf858c3069f3e9b248f3295ff79fa43241e7caa07db43e004d5f078af7e4853539e02cb104b3a0965b95923a"
+
+  # ==> Configuration for :confirmable
+  # The time you want to give your user to confirm his account. During this time
+  # he will be able to access your application without confirming. Default is 0.days
+  # When confirm_within is zero, the user won't be able to sign in without confirming.
+  # You can use this to let your user access some features of your application
+  # without confirming the account, but blocking it after a certain period
+  # (ie 2 days).
+  # config.confirm_within = 2.days
+
+  # Defines which key will be used when confirming an account
+  # config.confirmation_keys = [ :email ]
+
+  # ==> Configuration for :rememberable
+  # The time the user will be remembered without asking for credentials again.
+  # config.remember_for = 2.weeks
+
+  # If true, a valid remember token can be re-used between multiple browsers.
+  # config.remember_across_browsers = true
+
+  # If true, extends the user's remember period when remembered via cookie.
+  # config.extend_remember_period = false
+
+  # If true, uses the password salt as remember token. This should be turned
+  # to false if you are not using database authenticatable.
+  config.use_salt_as_remember_token = true
+
+  # Options to be passed to the created cookie. For instance, you can set
+  # :secure => true in order to force SSL only cookies.
+  # config.cookie_options = {}
+
+  # ==> Configuration for :validatable
+  # Range for password length. Default is 6..128.
+  # config.password_length = 6..128
+
+  # Regex to use to validate the email address
+  # config.email_regexp = /\A([\w\.%\+\-]+)@([\w\-]+\.)+([\w]{2,})\z/i
+
+  # ==> Configuration for :timeoutable
+  # The time you want to timeout the user session without activity. After this
+  # time the user will be asked for credentials again. Default is 30 minutes.
+  # config.timeout_in = 30.minutes
+
+  # ==> Configuration for :lockable
+  # Defines which strategy will be used to lock an account.
+  # :failed_attempts = Locks an account after a number of failed attempts to sign in.
+  # :none            = No lock strategy. You should handle locking by yourself.
+  # config.lock_strategy = :failed_attempts
+
+  # Defines which key will be used when locking and unlocking an account
+  # config.unlock_keys = [ :email ]
+
+  # Defines which strategy will be used to unlock an account.
+  # :email = Sends an unlock link to the user email
+  # :time  = Re-enables login after a certain amount of time (see :unlock_in below)
+  # :both  = Enables both strategies
+  # :none  = No unlock strategy. You should handle unlocking by yourself.
+  # config.unlock_strategy = :both
+
+  # Number of authentication tries before locking an account if lock_strategy
+  # is failed attempts.
+  # config.maximum_attempts = 20
+
+  # Time interval to unlock the account if :time is enabled as unlock_strategy.
+  # config.unlock_in = 1.hour
+
+  # ==> Configuration for :recoverable
+  #
+  # Defines which key will be used when recovering the password for an account
+  # config.reset_password_keys = [ :email ]
+
+  # Time interval you can reset your password with a reset password key.
+  # Don't put a too small interval or your users won't have the time to
+  # change their passwords.
+  config.reset_password_within = 2.hours
+
+  # ==> Configuration for :encryptable
+  # Allow you to use another encryption algorithm besides bcrypt (default). You can use
+  # :sha1, :sha512 or encryptors from others authentication tools as :clearance_sha1,
+  # :authlogic_sha512 (then you should set stretches above to 20 for default behavior)
+  # and :restful_authentication_sha1 (then you should set stretches to 10, and copy
+  # REST_AUTH_SITE_KEY to pepper)
+  # config.encryptor = :sha512
+
+  # ==> Configuration for :token_authenticatable
+  # Defines name of the authentication token params key
+  config.token_authentication_key = :api_key
+
+  # If true, authentication through token does not store user in session and needs
+  # to be supplied on each request. Useful if you are using the token as API token.
+  # config.stateless_token = false
+
+  # ==> Scopes configuration
+  # Turn scoped views on. Before rendering "sessions/new", it will first check for
+  # "users/sessions/new". It's turned off by default because it's slower if you
+  # are using only default views.
+  # config.scoped_views = false
+
+  # Configure the default scope given to Warden. By default it's the first
+  # devise role declared in your routes (usually :user).
+  # config.default_scope = :user
+
+  # Configure sign_out behavior.
+  # Sign_out action can be scoped (i.e. /users/sign_out affects only :user scope).
+  # The default is true, which means any logout action will sign out all active scopes.
+  # config.sign_out_all_scopes = true
+
+  # ==> Navigation configuration
+  # Lists the formats that should be treated as navigational. Formats like
+  # :html, should redirect to the sign in page when the user does not have
+  # access, but formats like :xml or :json, should return 401.
+  #
+  # If you have any extra navigational formats, like :iphone or :mobile, you
+  # should add them to the navigational formats lists.
+  #
+  # The :"*/*" and "*/*" formats below is required to match Internet
+  # Explorer requests.
+  # config.navigational_formats = [:"*/*", "*/*", :html]
+
+  # The default HTTP method used to sign out a resource. Default is :delete.
+  config.sign_out_via = :delete
+
+  # ==> OmniAuth
+  # Add a new OmniAuth provider. Check the wiki for more information on setting
+  # up on your models and hooks.
+  # config.omniauth :github, 'APP_ID', 'APP_SECRET', :scope => 'user,public_repo'
+
+  # ==> Warden configuration
+  # If you want to use other strategies, that are not supported by Devise, or
+  # change the failure app, you can configure them inside the config.warden block.
+  #
+  # config.warden do |manager|
+  #   manager.failure_app   = AnotherApp
+  #   manager.intercept_401 = false
+  #   manager.default_strategies(:scope => :user).unshift :some_external_strategy
+  # end
+end

data/lib/generators/templates/config/initializers/touchpass.rb

@@ -0,0 +1,24 @@
+# Use this hook to configure Touchpass.
+Touchpass.setup do |config|
+  # Touchpass Username.
+  config.username = "YOUR_TOUCHPASS_USERNAME"
+
+  # Touchpass API Key.
+  config.api_key = "YOUR_TOUCHPASS_API_KEY"
+
+  # Touchpass Host.
+  config.host = Rails.env == 'production' ? "touchpass.geodica.com" : "localhost"
+
+  # Touchpass Port.
+  config.port = Rails.env == 'production' ? "443" : "3000"
+
+  # Turn https on.
+  config.use_https = true
+
+  # Turn Location Verification on.
+  #config.location_verification = true
+
+  # Defines which resolution will be used when creating Location Verification.
+  # STREET, LOCAL, METRO or REGIONAL
+  #config.resolution = "LOCAL"
+end

data/lib/generators/templates/config/locales/devise.en.yml

@@ -0,0 +1,53 @@
+# Additional translations at http://github.com/plataformatec/devise/wiki/I18n
+
+en:
+  errors:
+    messages:
+      expired: "has expired, please request a new one"
+      not_found: "not found"
+      already_confirmed: "was already confirmed, please try signing in"
+      not_locked: "was not locked"
+      not_saved:
+        one: "1 error prohibited this %{resource} from being saved:"
+        other: "%{count} errors prohibited this %{resource} from being saved:"
+
+  devise:
+    failure:
+      already_authenticated: 'You are already signed in.'
+      unauthenticated: 'You need to sign in or sign up before continuing.'
+      unconfirmed: 'You have to confirm your account before continuing.'
+      locked: 'Your account is locked.'
+      invalid: 'Invalid email or password.'
+      invalid_token: 'Invalid authentication token.'
+      timeout: 'Your session expired, please sign in again to continue.'
+      inactive: 'Your account was not activated yet.'
+    sessions:
+      signed_in: 'Signed in successfully.'
+      signed_out: 'Signed out successfully.'
+    passwords:
+      send_instructions: 'You will receive an email with instructions about how to reset your password in a few minutes.'
+      updated: 'Your password was changed successfully. You are now signed in.'
+      send_paranoid_instructions: "If your e-mail exists on our database, you will receive a password recovery link on your e-mail"
+    confirmations:
+      send_instructions: 'You will receive an email with instructions about how to confirm your account in a few minutes.'
+      send_paranoid_instructions: 'If your e-mail exists on our database, you will receive an email with instructions about how to confirm your account in a few minutes.'
+      confirmed: 'Your account was successfully confirmed. You are now signed in.'
+    registrations:
+      signed_up: 'Welcome! You have signed up successfully.'
+      inactive_signed_up: 'You have signed up successfully. However, we could not sign you in because your account is %{reason}.'
+      updated: 'You updated your account successfully.'
+      destroyed: 'Bye! Your account was successfully cancelled. We hope to see you again soon.'
+    unlocks:
+      send_instructions: 'You will receive an email with instructions about how to unlock your account in a few minutes.'
+      unlocked: 'Your account was successfully unlocked. You are now signed in.'
+      send_paranoid_instructions: 'If your account exists, you will receive an email with instructions about how to unlock it in a few minutes.'
+    omniauth_callbacks:
+      success: 'Successfully authorized from %{kind} account.'
+      failure: 'Could not authorize you from %{kind} because "%{reason}".'
+    mailer:
+      confirmation_instructions:
+        subject: 'Confirmation instructions'
+      reset_password_instructions:
+        subject: 'Reset password instructions'
+      unlock_instructions:
+        subject: 'Unlock Instructions'