vouch 0.0.3.pre1

data/Gemfile

@@ -0,0 +1,11 @@
+source "http://rubygems.org"
+
+# Will automatically pull in this gem and all its
+# dependencies specified in the gemspec
+gem "vouch", :path => File.expand_path("..", __FILE__)
+
+# These are development dependencies
+gem "jeweler"
+gem "rake"
+gem "oauth2"
+

data/LICENSE

@@ -0,0 +1,21 @@
+Copyright (c) 2010 Daniel McNevin
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+

data/README.md

@@ -0,0 +1,32 @@
+Vouch
+=====
+
+*Please Note*
+
+This is very alpha code at the moment, I just extracted it from a project I am working on. Once it's at a more usable stage, I will be releasing it as a gem.
+
+About
+-----
+
+Rails 3 engines to use OAuth2 for authentication
+
+Client
+------
+
+To use, include in your `Gemfile`
+
+    gem "vouch", :git => "git://github.com/dpmcnevin/vouch.git"
+    
+Run the generator
+
+    rails generate vouch:client
+
+
+Provider
+--------
+
+Coming in future releases.
+
+Maintainer
+----------
+Dan McNevin - dpmcnevin@gmail.com

data/Rakefile

@@ -0,0 +1,16 @@
+require "bundler"
+require 'jeweler'
+Bundler.setup
+
+begin
+  Jeweler::Tasks.new do |gemspec|
+    gemspec.name = "vouch"
+    gemspec.summary = "OAuth2 Server and Client Engines"
+    gemspec.description = "OAuth2 Server and Client Engines"
+    gemspec.email = "dpmcnevin@gmail.com"
+    gemspec.homepage = "http://github.com/dpmcnevin/vouch"
+    gemspec.authors = ["Daniel McNevin"]
+  end
+rescue LoadError
+  puts "Jeweler not available. Install it with: gem install jeweler"
+end

data/VERSION

@@ -0,0 +1 @@
+0.0.3.pre1

data/app/controllers/vouch/auth_controller.rb

@@ -0,0 +1,73 @@
+module Vouch
+  class AuthController < ApplicationController
+
+    unloadable
+
+    skip_before_filter :require_user
+    skip_before_filter :set_user
+    skip_before_filter :cache_tags
+    
+    before_filter :read_config
+        
+    def show
+      redirect_to client.web_server.authorize_url(
+        :redirect_uri => redirect_uri
+      )
+    end
+
+    def callback
+      access_token = client.web_server.get_access_token(params[:code], :redirect_uri => redirect_uri)
+      user = JSON.parse(access_token.get(@oauth_config["user_path"]))
+
+      if user
+        if user.is_a?(Hash) && has_roles?(user)
+          @user = User.find_or_create_by_email(user)
+          session[:user_id] = @user.id
+          session[:expires_at] = access_token.expires_at
+          redirect_to session[:return_to] || root_path
+        else
+          render :text => "Unauthorized", :status => 401
+        end
+      else
+        render :text => "Can't authenticate", :status => 401
+      end
+    end
+
+    def destroy
+      session[:user_id] = nil
+      redirect_to @oauth_config["logout_url"]
+    end
+
+    private
+   
+    def read_config
+      @oauth_config = YAML.load_file("#{Rails.root}/config/oauth.yml")[Rails.env]
+      
+      @oauth_config["authorize_path"] ||= '/oauth/authorize'
+      @oauth_config["access_token_path"] ||= '/oauth/access_token'
+      @oauth_config["user_path"] ||= '/oauth/user'
+      @oauth_config["callback_path"] ||= '/auth/callback'
+    end
+    
+    def has_roles?(user)
+      return true unless @oauth_config["required_roles"].present?
+      user["roles"].is_a?(Array) && (user["roles"].to_a & @oauth_config["required_roles"].to_a).present?
+    end
+
+    def client
+      OAuth2::Client.new(@oauth_config["client_id"], @oauth_config["client_secret"], 
+        :site              => @oauth_config["site"],
+        :authorize_path    => @oauth_config["authorize_path"],
+        :access_token_path => @oauth_config["access_token_path"]
+      )
+    end
+
+    def redirect_uri
+      uri = URI.parse(request.url)
+      uri.path = @oauth_config["callback_path"]
+      uri.query = nil
+      uri.to_s
+    end
+    
+  end
+end

data/config/routes.rb

@@ -0,0 +1,7 @@
+Rails.application.routes.draw do
+  resource :auth, :controller => "vouch/auth", :only => [:show, :destroy] do
+    member do
+      get :callback
+    end
+  end
+end

data/lib/generators/vouch/client_generator.rb

@@ -0,0 +1,16 @@
+module Vouch
+  class ClientGenerator < Rails::Generators::Base
+    source_root File.expand_path("../templates", __FILE__)
+
+    # all public methods in here will be run in order
+    def add_oauth_file
+      copy_file "oauth.yml", "config/oauth.yml"
+    end
+
+    def inject_application_controller
+      inject_into_file "app/controllers/application_controller.rb", "  include Vouch::Client\n", :after => "class ApplicationController < ActionController::Base\n"
+    end
+    
+  end
+end
+

data/lib/generators/vouch/templates/oauth.yml

@@ -0,0 +1,26 @@
+development: &DEV
+  client_id: CLIENT_ID
+  client_secret: CLIENT_SECRET
+  site: http://localhost:3000
+  logout_url: http://localhost:3000/logout
+  # authorize_path: /oauth/authorize
+  # access_token_path: /oauth/access_token
+  # user_path: /oauth/user
+  # callback_path: /auth/callback
+  required_roles: 
+    # - "blogUser"
+  
+production:
+  client_id: CLIENT_ID
+  client_secret: CLIENT_SECRET
+  site: https://somewhere.com
+  logout_url: https://somewhere.com/logout
+  # authorize_path: /oauth/authorize
+  # access_token_path: /oauth/access_token
+  # user_path: /oauth/user
+  # callback_path: /auth/callback
+  required_roles: 
+    # - "blogUser"
+  
+test:
+  <<: *DEV

data/lib/vouch/client.rb

@@ -0,0 +1,38 @@
+module Vouch
+  module Client
+    
+    def login_url
+      auth_path
+    end
+
+    def current_user
+      if session[:user_id]
+        if session[:expires_at] < lambda{Time.now}.call
+          session[:user_id] = nil
+        else  
+          User.find(session[:user_id])
+        end
+      end
+    end
+
+    def require_user
+      unless current_user
+        store_location
+        if request.xhr?
+          render :update do |page|
+            page.redirect_to(auth_path)
+          end
+        else
+          flash[:notice] = "You must be logged in to access this page"
+          redirect_to auth_path
+        end
+        return false
+      end
+    end
+
+    def store_location
+      session[:return_to] = request.url
+    end
+    
+  end
+end

data/lib/vouch/engine.rb

@@ -0,0 +1,7 @@
+require "vouch"
+require "rails"
+
+module Vouch
+ class Engine < Rails::Engine
+ end
+end

data/lib/vouch/version.rb

@@ -0,0 +1,4 @@
+module Vouch
+  VERSION = "0.0.3"
+end
+

data/lib/vouch.rb

@@ -0,0 +1,4 @@
+module Vouch
+  require 'vouch/engine' if defined?(Rails)
+  require 'vouch/client'
+end

data/vouch.gemspec

@@ -0,0 +1,51 @@
+# Generated by jeweler
+# DO NOT EDIT THIS FILE DIRECTLY
+# Instead, edit Jeweler::Tasks in Rakefile, and run the gemspec command
+# -*- encoding: utf-8 -*-
+
+Gem::Specification.new do |s|
+  s.name = %q{vouch}
+  s.version = "0.0.3.pre1"
+
+  s.required_rubygems_version = Gem::Requirement.new("> 1.3.1") if s.respond_to? :required_rubygems_version=
+  s.authors = ["Daniel McNevin"]
+  s.date = %q{2010-08-21}
+  s.description = %q{OAuth2 Server and Client Engines}
+  s.email = %q{dpmcnevin@gmail.com}
+  s.extra_rdoc_files = [
+    "LICENSE",
+     "README.md"
+  ]
+  s.files = [
+    "Gemfile",
+     "LICENSE",
+     "README.md",
+     "Rakefile",
+     "VERSION",
+     "app/controllers/vouch/auth_controller.rb",
+     "config/routes.rb",
+     "lib/generators/vouch/client_generator.rb",
+     "lib/generators/vouch/templates/oauth.yml",
+     "lib/vouch.rb",
+     "lib/vouch/client.rb",
+     "lib/vouch/engine.rb",
+     "lib/vouch/version.rb",
+     "vouch.gemspec"
+  ]
+  s.homepage = %q{http://github.com/dpmcnevin/vouch}
+  s.rdoc_options = ["--charset=UTF-8"]
+  s.require_paths = ["lib"]
+  s.rubygems_version = %q{1.3.7}
+  s.summary = %q{OAuth2 Server and Client Engines}
+
+  if s.respond_to? :specification_version then
+    current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION
+    s.specification_version = 3
+
+    if Gem::Version.new(Gem::VERSION) >= Gem::Version.new('1.2.0') then
+    else
+    end
+  else
+  end
+end
+

metadata

@@ -0,0 +1,84 @@
+--- !ruby/object:Gem::Specification 
+name: vouch
+version: !ruby/object:Gem::Version 
+  hash: -1876988180
+  prerelease: true
+  segments: 
+  - 0
+  - 0
+  - 3
+  - pre1
+  version: 0.0.3.pre1
+platform: ruby
+authors: 
+- Daniel McNevin
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2010-08-21 00:00:00 -04:00
+default_executable: 
+dependencies: []
+
+description: OAuth2 Server and Client Engines
+email: dpmcnevin@gmail.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- LICENSE
+- README.md
+files: 
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- VERSION
+- app/controllers/vouch/auth_controller.rb
+- config/routes.rb
+- lib/generators/vouch/client_generator.rb
+- lib/generators/vouch/templates/oauth.yml
+- lib/vouch.rb
+- lib/vouch/client.rb
+- lib/vouch/engine.rb
+- lib/vouch/version.rb
+- vouch.gemspec
+has_rdoc: true
+homepage: http://github.com/dpmcnevin/vouch
+licenses: []
+
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">"
+    - !ruby/object:Gem::Version 
+      hash: 25
+      segments: 
+      - 1
+      - 3
+      - 1
+      version: 1.3.1
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: OAuth2 Server and Client Engines
+test_files: []
+