vidibus-user 0.0.0

data/.document

@@ -0,0 +1,5 @@
+README.rdoc
+lib/**/*.rb
+bin/*
+features/**/*.feature
+LICENSE

data/.gitignore

@@ -0,0 +1,22 @@
+## MAC OS
+.DS_Store
+
+## TEXTMATE
+*.tmproj
+tmtags
+
+## EMACS
+*~
+\#*
+.\#*
+
+## VIM
+*.swp
+
+## PROJECT::GENERAL
+coverage
+rdoc
+pkg
+
+## PROJECT::SPECIFIC
+.bundle

data/.rspec

@@ -0,0 +1,2 @@
+--colour
+--format nested

data/Gemfile

@@ -0,0 +1,16 @@
+source :rubygems
+gem "rails", "~> 3.0.0"
+gem "mongoid", "~> 2.0.0.beta.20"
+gem "warden"
+gem "oauth2"
+gem "json"
+gem "vidibus-uuid"
+gem "vidibus-secure"
+
+# Development dependecies
+gem "jeweler"
+gem "rake"
+gem "rspec", "~> 2.0.0.beta.20"
+gem "rr"
+gem "relevance-rcov"
+gem "webmock"

data/Gemfile.lock

@@ -0,0 +1,128 @@
+GEM
+  remote: http://rubygems.org/
+  specs:
+    abstract (1.0.0)
+    actionmailer (3.0.0)
+      actionpack (= 3.0.0)
+      mail (~> 2.2.5)
+    actionpack (3.0.0)
+      activemodel (= 3.0.0)
+      activesupport (= 3.0.0)
+      builder (~> 2.1.2)
+      erubis (~> 2.6.6)
+      i18n (~> 0.4.1)
+      rack (~> 1.2.1)
+      rack-mount (~> 0.6.12)
+      rack-test (~> 0.5.4)
+      tzinfo (~> 0.3.23)
+    activemodel (3.0.0)
+      activesupport (= 3.0.0)
+      builder (~> 2.1.2)
+      i18n (~> 0.4.1)
+    activerecord (3.0.0)
+      activemodel (= 3.0.0)
+      activesupport (= 3.0.0)
+      arel (~> 1.0.0)
+      tzinfo (~> 0.3.23)
+    activeresource (3.0.0)
+      activemodel (= 3.0.0)
+      activesupport (= 3.0.0)
+    activesupport (3.0.0)
+    addressable (2.2.1)
+    arel (1.0.1)
+      activesupport (~> 3.0.0)
+    bson (1.0.9)
+    builder (2.1.2)
+    crack (0.1.8)
+    diff-lcs (1.1.2)
+    erubis (2.6.6)
+      abstract (>= 1.0.0)
+    faraday (0.4.6)
+      addressable (>= 2.1.1)
+      rack (>= 1.0.1)
+    gemcutter (0.6.1)
+    git (1.2.5)
+    httparty (0.6.1)
+      crack (= 0.1.8)
+    i18n (0.4.1)
+    jeweler (1.4.0)
+      gemcutter (>= 0.1.0)
+      git (>= 1.2.5)
+      rubyforge (>= 2.0.0)
+    json_pure (1.4.6)
+    mail (2.2.6.1)
+      activesupport (>= 2.3.6)
+      mime-types
+      treetop (>= 1.4.5)
+    mime-types (1.16)
+    mongo (1.0.9)
+      bson (>= 1.0.5)
+    mongoid (2.0.0.beta.19)
+      activemodel (~> 3.0)
+      mongo (= 1.0.9)
+      tzinfo (~> 0.3.22)
+      will_paginate (~> 3.0.pre)
+    multi_json (0.0.4)
+    oauth2 (0.0.13)
+      faraday (~> 0.4.1)
+      multi_json (>= 0.0.4)
+    polyglot (0.3.1)
+    rack (1.2.1)
+    rack-mount (0.6.13)
+      rack (>= 1.0.0)
+    rack-test (0.5.6)
+      rack (>= 1.0)
+    rails (3.0.0)
+      actionmailer (= 3.0.0)
+      actionpack (= 3.0.0)
+      activerecord (= 3.0.0)
+      activeresource (= 3.0.0)
+      activesupport (= 3.0.0)
+      bundler (~> 1.0.0)
+      railties (= 3.0.0)
+    railties (3.0.0)
+      actionpack (= 3.0.0)
+      activesupport (= 3.0.0)
+      rake (>= 0.8.4)
+      thor (~> 0.14.0)
+    rake (0.8.7)
+    relevance-rcov (0.9.2.1)
+    rr (1.0.0)
+    rspec (2.0.0.beta.22)
+      rspec-core (= 2.0.0.beta.22)
+      rspec-expectations (= 2.0.0.beta.22)
+      rspec-mocks (= 2.0.0.beta.22)
+    rspec-core (2.0.0.beta.22)
+    rspec-expectations (2.0.0.beta.22)
+      diff-lcs (>= 1.1.2)
+    rspec-mocks (2.0.0.beta.22)
+      rspec-core (= 2.0.0.beta.22)
+      rspec-expectations (= 2.0.0.beta.22)
+    rubyforge (2.0.4)
+      json_pure (>= 1.1.7)
+    thor (0.14.2)
+    treetop (1.4.8)
+      polyglot (>= 0.3.1)
+    tzinfo (0.3.23)
+    warden (0.10.7)
+      rack (>= 1.0.0)
+    webmock (1.3.5)
+      addressable (>= 2.1.1)
+      crack (>= 0.1.7)
+    will_paginate (3.0.pre2)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  httparty
+  jeweler
+  mongoid (~> 2.0.0.beta.20)
+  oauth2
+  rails (~> 3.0.0)
+  rake
+  relevance-rcov
+  rr
+  rspec (~> 2.0.0.beta.20)
+  warden
+  webmock

data/LICENSE

@@ -0,0 +1,20 @@
+Copyright (c) 2010 Andre Pankratz
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,31 @@
+= vidibus-user
+
+Provides single sign-on through OAuth2 authentication. It adds a simple user model to your application which can be extended easily.
+
+This gem is part of the open source SOA framework Vidibus: vidibus.org.
+
+It is far from being complete, but this will change soon.
+
+== Installation
+
+Add the dependency to the Gemfile of your application:
+
+  gem "vidibus-user"
+
+Then call bundle install on your console.
+
+
+== Dependencies
+
+In order to perform authentication, this gem depends on services provided by the vidibus-service gem.
+
+
+== TODO
+
+* Write specs
+* Explain usage and integration
+
+
+== Copyright
+
+Copyright (c) 2010 Andre Pankratz. See LICENSE for details.

data/Rakefile

@@ -0,0 +1,41 @@
+require "rubygems"
+require "rake"
+require "rake/rdoctask"
+require "rspec"
+require "rspec/core/rake_task"
+
+begin
+  require "jeweler"
+  Jeweler::Tasks.new do |gem|
+    gem.name = "vidibus-user"
+    gem.summary = %Q{Single sign-on for Vidibus applications.}
+    gem.description = %Q{Provides single sign-on and a local user model.}
+    gem.email = "andre@vidibus.com"
+    gem.homepage = "http://github.com/vidibus/vidibus-user"
+    gem.authors = ["Andre Pankratz"]
+    gem.add_dependency "rails", "~> 3.0.0"
+    gem.add_dependency "mongoid", "~> 2.0.0.beta.20"
+    gem.add_dependency "warden"
+    gem.add_dependency "oauth2"
+    gem.add_dependency "vidibus-secure"
+    gem.add_dependency "vidibus-uuid"
+  end
+  Jeweler::GemcutterTasks.new
+rescue LoadError
+  puts "Jeweler (or a dependency) not available. Install it with: gem install jeweler"
+end
+
+Rspec::Core::RakeTask.new(:rcov) do |t|
+  t.pattern = "spec/**/*_spec.rb"
+  t.rcov = true
+  t.rcov_opts = ["--exclude", "^spec,/gems/"]
+end
+
+Rake::RDocTask.new do |rdoc|
+  version = File.exist?("VERSION") ? File.read("VERSION") : ""
+  rdoc.rdoc_dir = "rdoc"
+  rdoc.title = "vidibus-user #{version}"
+  rdoc.rdoc_files.include("README*")
+  rdoc.rdoc_files.include("lib/**/*.rb")
+  rdoc.options << "--charset=utf-8"
+end

data/VERSION

@@ -0,0 +1 @@
+0.0.0

data/app/models/user.rb

@@ -0,0 +1,4 @@
+class User
+  include Mongoid::Document
+  include Vidibus::User::Mongoid
+end

data/config/routes.rb

@@ -0,0 +1,5 @@
+require "user/callback_app"
+
+Rails.application.routes.draw do
+  match "/authenticate_user" => Vidibus::User::CallbackApp
+end

data/lib/vidibus-user.rb

@@ -0,0 +1,17 @@
+require "rails"
+
+$:.unshift(File.join(File.dirname(__FILE__), "vidibus"))
+require "user"
+
+module Vidibus
+  module User
+    class Engine < ::Rails::Engine
+      
+      # Add warden to rack stack and use connector strategy.
+      config.app_middleware.use Warden::Manager do |manager|
+        manager.default_strategies :connector
+        manager.default_scope = :user
+      end
+    end
+  end
+end

data/lib/vidibus/user.rb

@@ -0,0 +1,3 @@
+require "user/extensions"
+require "user/warden_strategy"
+require "user/mongoid"

data/lib/vidibus/user/callback_app.rb

@@ -0,0 +1,19 @@
+module Vidibus
+  module User
+    class CallbackApp
+      def self.call(env)
+        self.new.call(env)
+      end
+
+      # This is just a rack endpoint for Connector authentication. It will be called
+      # by the Connector after requesting an authentication code.
+      def call(env)
+        env["warden"].authenticate!(:scope => :user)
+
+        # Redirect to return path after signin
+        return_to = env["rack.session"][:user_return_to] || "/"
+        [302, {"Content-Type" => "text/html", "Location" => return_to}, ["Login successful."]]
+      end
+    end
+  end
+end

data/lib/vidibus/user/extensions.rb

@@ -0,0 +1,5 @@
+require "user/extensions/controller"
+
+ActiveSupport.on_load(:action_controller) do
+  include Vidibus::User::Extensions::Controller
+end

data/lib/vidibus/user/extensions/controller.rb

@@ -0,0 +1,53 @@
+module Vidibus
+  module User
+    module Extensions
+
+      # Contains extensions of ApplicationController.
+      module Controller
+        extend ActiveSupport::Concern
+
+        included do
+          helper_method :warden, :signed_in?, :user_signed_in?, :current_user, :user_session
+        end
+
+        protected
+
+        # Accessor for the warden proxy instance.
+        def warden
+          request.env["warden"]
+        end
+
+        # Performs login on Connector service.
+        def authenticate_user!
+          return if user_signed_in?
+          store_location
+          warden.authenticate!(:scope => :user)
+        end
+
+        # Returns session of currently signed in user.
+        def user_session
+          current_user and warden.session(:user)
+        end
+
+        # Returns user currently logged in.
+        def current_user
+          warden.user(:user)
+        end
+
+        # Returns true if user is logged in.
+        def user_signed_in?
+          warden.authenticated?(:user)
+        end
+        alias_method :signed_in?, :user_signed_in?
+
+        private
+
+        # Stores current location in session to perform redirect after signin in session
+        def store_location
+          Rails.logger.error 'store_location: '+request.fullpath
+          session[:user_return_to] = request.fullpath
+        end
+      end
+    end
+  end
+end

data/lib/vidibus/user/mongoid.rb

@@ -0,0 +1,14 @@
+module Vidibus
+  module User
+    module Mongoid
+      extend ActiveSupport::Concern
+      included do
+        field :uuid
+        field :email
+        field :name
+        validates :email, :name, :presence => true
+        validates :uuid, :uuid => true
+      end
+    end
+  end
+end

data/lib/vidibus/user/warden_strategy.rb

@@ -0,0 +1,64 @@
+require "rubygems"
+require "warden"
+require "oauth2"
+require "json"
+
+Warden::Strategies.add(:connector) do
+  def valid?
+    true
+  end
+
+  # Sets credentials for Connector login in session.
+  # The client_secret will be validated through Vidibus' OauthServer when issuing an OAuth token.
+  # To protect the service's secret, a custom signature will be sent instead.
+  def credentials
+    @credentials ||= begin
+      connector = Service.connector
+      raise "Failed to set Connector credentials! Service has not been set up, Connector data is missing." unless this and connector
+      {
+        :client_id => this.uuid,
+        :client_secret => Vidibus::Secure.sign("#{connector.url}#{this.uuid}", this.secret),
+        :connector_url => connector.url
+      }
+    end
+  end
+
+  # Returns this service
+  def this
+    @this ||= Service.this
+  end
+
+  # Returns OAuth client
+  def client
+    @client ||= OAuth2::Client.new(credentials[:client_id], credentials[:client_secret], :site => credentials[:connector_url])
+  end
+
+  def authenticate!
+    code = params["code"]
+    redirect_url = "#{host}/authenticate_user"
+
+    # Fetch code first
+    return redirect!(client.web_server.authorize_url(:redirect_url => redirect_url)) unless code
+
+    # Exchange code for token and fetch user data
+    access_token = client.web_server.get_access_token(code, :redirect_url => redirect_url)
+    user_data = JSON.parse(access_token.get("/me"))
+
+    unless user = User.where(:email => user_data["email"]).first
+      user = User.create!(user_data)
+    end
+    success!(user)
+  rescue OAuth2::HTTPError => e
+    raise e.response.body
+  end
+
+  # Returns current host.
+  def host
+    "#{protocol}#{env["HTTP_HOST"]}"
+  end
+
+  # Returns protocol depending on SERVER_PORT.
+  def protocol
+    env["SERVER_PORT"] == 443 ? "https://" : "http://"
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,26 @@
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), "..", "lib"))
+
+require "rubygems"
+require "active_support/core_ext"
+require "rspec"
+require "rr"
+require "mongoid"
+require "webmock/rspec"
+
+require "vidibus-user"
+
+Mongoid.configure do |config|
+  name = "vidibus-user_test"
+  host = "localhost"
+  config.master = Mongo::Connection.new.db(name)
+  config.logger = nil
+end
+
+RSpec.configure do |config|
+  config.include WebMock
+  config.mock_with :rr
+  config.before(:each) do
+    Mongoid.master.collections.select {|c| c.name !~ /system/}.each(&:drop)
+  end
+end

data/vidibus-user.gemspec

@@ -0,0 +1,78 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run the gemspec command
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{vidibus-user}
+  s.version = "0.0.0"
+
+  s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Andre Pankratz"]
+  s.date = %q{2010-10-02}
+  s.description = %q{Provides single sign-on and a local user model.}
+  s.email = %q{andre@vidibus.com}
+  s.extra_rdoc_files = [
+    "LICENSE",
+     "README.rdoc"
+  ]
+  s.files = [
+    ".document",
+     ".gitignore",
+     ".rspec",
+     "Gemfile",
+     "Gemfile.lock",
+     "LICENSE",
+     "README.rdoc",
+     "Rakefile",
+     "VERSION",
+     "app/models/user.rb",
+     "config/routes.rb",
+     "lib/vidibus-user.rb",
+     "lib/vidibus/user.rb",
+     "lib/vidibus/user/callback_app.rb",
+     "lib/vidibus/user/extensions.rb",
+     "lib/vidibus/user/extensions/controller.rb",
+     "lib/vidibus/user/mongoid.rb",
+     "lib/vidibus/user/warden_strategy.rb",
+     "spec/spec_helper.rb",
+     "vidibus-user.gemspec"
+  ]
+  s.homepage = %q{http://github.com/vidibus/vidibus-user}
+  s.rdoc_options = ["--charset=UTF-8"]
+  s.require_paths = ["lib"]
+  s.rubygems_version = %q{1.3.7}
+  s.summary = %q{Single sign-on for Vidibus applications.}
+  s.test_files = [
+    "spec/spec_helper.rb"
+  ]
+
+  if s.respond_to? :specification_version then
+    current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
+      s.add_runtime_dependency(%q<rails>, ["~> 3.0.0"])
+      s.add_runtime_dependency(%q<mongoid>, ["~> 2.0.0.beta.20"])
+      s.add_runtime_dependency(%q<warden>, [">= 0"])
+      s.add_runtime_dependency(%q<oauth2>, [">= 0"])
+      s.add_runtime_dependency(%q<vidibus-secure>, [">= 0"])
+      s.add_runtime_dependency(%q<vidibus-uuid>, [">= 0"])
+    else
+      s.add_dependency(%q<rails>, ["~> 3.0.0"])
+      s.add_dependency(%q<mongoid>, ["~> 2.0.0.beta.20"])
+      s.add_dependency(%q<warden>, [">= 0"])
+      s.add_dependency(%q<oauth2>, [">= 0"])
+      s.add_dependency(%q<vidibus-secure>, [">= 0"])
+      s.add_dependency(%q<vidibus-uuid>, [">= 0"])
+    end
+  else
+    s.add_dependency(%q<rails>, ["~> 3.0.0"])
+    s.add_dependency(%q<mongoid>, ["~> 2.0.0.beta.20"])
+    s.add_dependency(%q<warden>, [">= 0"])
+    s.add_dependency(%q<oauth2>, [">= 0"])
+    s.add_dependency(%q<vidibus-secure>, [">= 0"])
+    s.add_dependency(%q<vidibus-uuid>, [">= 0"])
+  end
+end
+

metadata

@@ -0,0 +1,176 @@
+--- !ruby/object:Gem::Specification 
+name: vidibus-user
+version: !ruby/object:Gem::Version 
+  hash: 31
+  prerelease: false
+  segments: 
+  - 0
+  - 0
+  - 0
+  version: 0.0.0
+platform: ruby
+authors: 
+- Andre Pankratz
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-10-02 00:00:00 +02:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: rails
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 7
+        segments: 
+        - 3
+        - 0
+        - 0
+        version: 3.0.0
+  type: :runtime
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: mongoid
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        hash: 62196427
+        segments: 
+        - 2
+        - 0
+        - 0
+        - beta
+        - 20
+        version: 2.0.0.beta.20
+  type: :runtime
+  version_requirements: *id002
+- !ruby/object:Gem::Dependency 
+  name: warden
+  prerelease: false
+  requirement: &id003 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id003
+- !ruby/object:Gem::Dependency 
+  name: oauth2
+  prerelease: false
+  requirement: &id004 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id004
+- !ruby/object:Gem::Dependency 
+  name: vidibus-secure
+  prerelease: false
+  requirement: &id005 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id005
+- !ruby/object:Gem::Dependency 
+  name: vidibus-uuid
+  prerelease: false
+  requirement: &id006 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id006
+description: Provides single sign-on and a local user model.
+email: andre@vidibus.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- LICENSE
+- README.rdoc
+files: 
+- .document
+- .gitignore
+- .rspec
+- Gemfile
+- Gemfile.lock
+- LICENSE
+- README.rdoc
+- Rakefile
+- VERSION
+- app/models/user.rb
+- config/routes.rb
+- lib/vidibus-user.rb
+- lib/vidibus/user.rb
+- lib/vidibus/user/callback_app.rb
+- lib/vidibus/user/extensions.rb
+- lib/vidibus/user/extensions/controller.rb
+- lib/vidibus/user/mongoid.rb
+- lib/vidibus/user/warden_strategy.rb
+- spec/spec_helper.rb
+- vidibus-user.gemspec
+has_rdoc: true
+homepage: http://github.com/vidibus/vidibus-user
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: Single sign-on for Vidibus applications.
+test_files: 
+- spec/spec_helper.rb