wacky_canvas 0.0.1

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2012 YOURNAME
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,3 @@
+= WackyCanvas
+
+This project rocks and uses MIT-LICENSE.

data/Rakefile

@@ -0,0 +1,40 @@
+#!/usr/bin/env rake
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+begin
+  require 'rdoc/task'
+rescue LoadError
+  require 'rdoc/rdoc'
+  require 'rake/rdoctask'
+  RDoc::Task = Rake::RDocTask
+end
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'WackyCanvas'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+APP_RAKEFILE = File.expand_path("../test/dummy/Rakefile", __FILE__)
+load 'rails/tasks/engine.rake'
+
+
+
+Bundler::GemHelper.install_tasks
+
+require 'rake/testtask'
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << 'lib'
+  t.libs << 'test'
+  t.pattern = 'test/**/*_test.rb'
+  t.verbose = false
+end
+
+
+task :default => :test

data/app/assets/javascripts/wacky_canvas/application.js

@@ -0,0 +1,15 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or vendor/assets/javascripts of plugins, if any, can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// the compiled file.
+//
+// WARNING: THE FIRST BLANK LINE MARKS THE END OF WHAT'S TO BE PROCESSED, ANY BLANK LINE SHOULD
+// GO AFTER THE REQUIRES BELOW.
+//
+//= require jquery
+//= require jquery_ujs
+//= require_tree .

data/app/assets/javascripts/wacky_canvas/sessions.js

@@ -0,0 +1,2 @@
+// Place all the behaviors and hooks related to the matching controller here.
+// All this logic will automatically be available in application.js.

data/app/assets/stylesheets/wacky_canvas/application.css

@@ -0,0 +1,13 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or vendor/assets/stylesheets of plugins, if any, can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the top of the
+ * compiled file, but it's generally better to create a new file per style scope.
+ *
+ *= require_self
+ *= require_tree .
+ */

data/app/assets/stylesheets/wacky_canvas/sessions.css

@@ -0,0 +1,4 @@
+/*
+  Place all the styles related to the matching controller here.
+  They will automatically be included in application.css.
+*/

data/app/controllers/wacky_canvas/application_controller.rb

@@ -0,0 +1,4 @@
+module WackyCanvas
+  class ApplicationController < ActionController::Base
+  end
+end

data/app/controllers/wacky_canvas/sessions_controller.rb

@@ -0,0 +1,13 @@
+require_dependency "wacky_canvas/application_controller"
+
+module WackyCanvas
+  class SessionsController < ApplicationController
+    def new 
+      @app_id = WackyCanvas.configuration.app_id
+      @app_namespace = WackyCanvas.configuration.app_namespace
+      @app_scope = WackyCanvas.configuration.app_scope
+      @redirect_path = WackyCanvas.configuration.redirect_path
+      render :layout => false 
+    end
+  end
+end

data/app/helpers/wacky_canvas/application_helper.rb

@@ -0,0 +1,4 @@
+module WackyCanvas
+  module ApplicationHelper
+  end
+end

data/app/helpers/wacky_canvas/sessions_helper.rb

@@ -0,0 +1,4 @@
+module WackyCanvas
+  module SessionsHelper
+  end
+end

data/app/views/layouts/wacky_canvas/application.html.erb

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>WackyCanvas</title>
+  <%= stylesheet_link_tag    "wacky_canvas/application", :media => "all" %>
+  <%= javascript_include_tag "wacky_canvas/application" %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+
+<%= yield %>
+
+</body>
+</html>

data/app/views/wacky_canvas/sessions/new.html.erb

@@ -0,0 +1,10 @@
+<script>
+  var oauth_url = 'https://www.facebook.com/dialog/oauth';
+  oauth_url += '?client_id=<%= @app_id -%>';
+  oauth_url += '&redirect_uri=' + encodeURIComponent('http://apps.facebook.com/<%= @app_namespace + @redirect_path -%>');
+<%- if !@app_scope.nil? -%>
+  oauth_url += '&scope=<%= @app_scope -%>'
+<%- end -%>
+
+  window.top.location = oauth_url;
+</script>

data/config/boot.rb

@@ -0,0 +1 @@
+puts "FARTMAN"

data/config/routes.rb

@@ -0,0 +1,3 @@
+WackyCanvas::Engine.routes.draw do
+  match 'session/new', :to => 'sessions#new', :via => [:get, :post], :as => 'new_session'
+end

data/lib/tasks/wacky_canvas_tasks.rake

@@ -0,0 +1,4 @@
+# desc "Explaining what the task does"
+# task :wacky_canvas do
+#   # Task goes here
+# end

data/lib/wacky_canvas.rb

@@ -0,0 +1,9 @@
+require "wacky_canvas/authorization"
+require "wacky_canvas/rack_authorize"
+require "wacky_canvas/configuration"
+require "wacky_canvas/session"
+require "wacky_canvas/engine"
+require "wacky_canvas/user"
+
+module WackyCanvas
+end

data/lib/wacky_canvas/authorization.rb

@@ -0,0 +1,54 @@
+module WackyCanvas
+  module Authorization
+    extend ActiveSupport::Concern
+
+    included do
+      helper_method :current_user, :signed_in?, :signed_out?
+      hide_action :current_user, :signed_in?, :signed_out?, :authorize, :deny_access
+    end
+
+    # Finds the user from the Rack Wacky Canvas session
+    def current_user
+      wacky_canvas_session.current_user
+    end
+    
+    def signed_in?
+      wacky_canvas_session.signed_in?
+    end
+    
+    def signed_out?
+      !signed_in?
+    end
+
+    def authorize
+      deny_access if signed_out?
+    end
+
+    def deny_access(flash_message = nil)
+      flash[:notice] = flash_message if flash_message
+      if signed_in?
+        redirect_to(url_after_denied_access_when_signed_in)
+      else
+        redirect_to(url_after_denied_access_when_signed_out)
+      end
+    end
+
+    private
+
+    def wacky_canvas_session
+      request.env[:wacky_canvas]
+    end
+
+    def url_after_denied_access_when_signed_in
+      '/'
+    end
+
+    def url_after_denied_access_when_signed_out
+      wacky_canvas.new_session_path 
+    end
+  end
+end
+
+class ActionController::Base
+  include WackyCanvas::Authorization
+end

data/lib/wacky_canvas/configuration.rb

@@ -0,0 +1,18 @@
+module WackyCanvas 
+  class Configuration
+    attr_accessor :app_id, :app_secret, :app_namespace, :app_scope, :redirect_path, :user_model
+
+    def user_model
+      @user_model || ::User
+    end
+  end
+
+  class << self
+    attr_accessor :configuration
+  end
+
+  def self.configure
+    self.configuration ||= Configuration.new
+    yield(configuration)
+  end
+end

data/lib/wacky_canvas/engine.rb

@@ -0,0 +1,7 @@
+module WackyCanvas
+  class Engine < ::Rails::Engine
+    isolate_namespace WackyCanvas
+
+    config.app_middleware.insert_after ActionDispatch::Cookies, WackyCanvas::RackAuthorize
+  end
+end

data/lib/wacky_canvas/rack_authorize.rb

@@ -0,0 +1,15 @@
+module WackyCanvas
+  class RackAuthorize
+    def initialize(app)
+      @app = app
+    end
+
+    def call(env)
+      session = WackyCanvas::Session.new(env)
+      env[:wacky_canvas] = session
+      response = @app.call(env)
+      session.add_remember_cookie(response[1])
+      response
+    end
+  end 
+end

data/lib/wacky_canvas/session.rb

@@ -0,0 +1,90 @@
+module WackyCanvas
+  class Session
+    REMEMBER_TOKEN_COOKIE = "remember_token".freeze
+
+    def initialize(env)
+      @env = env
+    end
+
+    def current_user
+      @current_user ||= get_current_user 
+    end
+
+    def current_signed_request
+      @current_signed_request ||= parse_signed_request(request.params['signed_request']) 
+    end
+
+    def signed_in?
+      current_user.present?
+    end
+
+    def signed_request?
+      current_signed_request.present?
+    end
+
+    def request
+      @request ||= Rack::Request.new(@env)
+    end
+
+    def add_remember_cookie(headers)
+      # Make sure the user has been saved
+      if signed_in? && !current_user.new_record?
+        # The cookie expiration is only a day since we always get a signed request
+        Rack::Utils.set_cookie_header!(headers, REMEMBER_TOKEN_COOKIE, :value => current_user.remember_token, :expires => 1.day.from_now, :path => "/")
+      end
+    end
+
+    private
+
+    def parse_signed_request(signed_request)
+puts "parse signed request 1"
+      return if signed_request.nil?
+puts "parse signed request 1"
+      encoded_sig, encoded_payload = signed_request.split('.')
+      # Decode the data
+      begin
+        sig = Base64.urlsafe_decode64(add_padding(encoded_sig))
+        payload = Base64.urlsafe_decode64(add_padding(encoded_payload))
+      rescue ArgumentError
+        return
+      end
+      data = ActiveSupport::JSON.decode(payload)
+      # Verify signature
+      if data["algorithm"] != 'HMAC-SHA256'
+        return
+      end
+      digest = OpenSSL::Digest::Digest.new('sha256')
+      expected_sig = OpenSSL::HMAC.digest(digest, WackyCanvas.configuration.app_secret, encoded_payload)
+      return if expected_sig != sig
+      data
+    end
+
+    def get_current_user
+      # Use the signed request if present otherwise find the user
+      if signed_request? 
+        # Do nothing if not authorized
+        return if current_signed_request["user_id"].nil?
+        # Find and update the user or create a new one  
+        if !(user = WackyCanvas.configuration.user_model.find_by_user_id(current_signed_request["user_id"]))
+          user = WackyCanvas.configuration.user_model.new
+        end
+        user.user_id = current_signed_request["user_id"];
+        user.oauth_token = current_signed_request["oauth_token"];
+        user.expires = current_signed_request["expires"];
+        user
+      elsif token = cookies[REMEMBER_TOKEN_COOKIE] 
+        WackyCanvas.configuration.user_model.find_by_remember_token(token)
+      end
+    end
+
+    def cookies
+      @cookies ||= @env['action_dispatch.cookies'] || request.cookies
+    end
+
+    def add_padding(str)
+      # Add = padding 
+      str += '=' while !(str.size % 4).zero?
+      str
+    end
+  end
+end

data/lib/wacky_canvas/user.rb

@@ -0,0 +1,31 @@
+module WackyCanvas 
+  module User
+    extend ActiveSupport::Concern
+
+    included do
+      include Callbacks
+    end
+
+    module Callbacks
+      extend ActiveSupport::Concern
+
+      included do
+        before_create :generate_remember_token
+      end
+    end
+
+    protected
+
+    def generate_random_code(length = 20)
+      if RUBY_VERSION >= '1.9'
+        SecureRandom.hex(length).encode('UTF-8')
+      else
+        SecureRandom.hex(length)
+      end
+    end
+
+    def generate_remember_token
+      self.remember_token = generate_random_code
+    end
+  end
+end

data/lib/wacky_canvas/version.rb

@@ -0,0 +1,3 @@
+module WackyCanvas
+  VERSION = "0.0.1" 
+end

data/test/dummy/README.rdoc

@@ -0,0 +1,261 @@
+== Welcome to Rails
+
+Rails is a web-application framework that includes everything needed to create
+database-backed web applications according to the Model-View-Control pattern.
+
+This pattern splits the view (also called the presentation) into "dumb"
+templates that are primarily responsible for inserting pre-built data in between
+HTML tags. The model contains the "smart" domain objects (such as Account,
+Product, Person, Post) that holds all the business logic and knows how to
+persist themselves to a database. The controller handles the incoming requests
+(such as Save New Account, Update Product, Show Post) by manipulating the model
+and directing data to the view.
+
+In Rails, the model is handled by what's called an object-relational mapping
+layer entitled Active Record. This layer allows you to present the data from
+database rows as objects and embellish these data objects with business logic
+methods. You can read more about Active Record in
+link:files/vendor/rails/activerecord/README.html.
+
+The controller and view are handled by the Action Pack, which handles both
+layers by its two parts: Action View and Action Controller. These two layers
+are bundled in a single package due to their heavy interdependence. This is
+unlike the relationship between the Active Record and Action Pack that is much
+more separate. Each of these packages can be used independently outside of
+Rails. You can read more about Action Pack in
+link:files/vendor/rails/actionpack/README.html.
+
+
+== Getting Started
+
+1. At the command prompt, create a new Rails application:
+       <tt>rails new myapp</tt> (where <tt>myapp</tt> is the application name)
+
+2. Change directory to <tt>myapp</tt> and start the web server:
+       <tt>cd myapp; rails server</tt> (run with --help for options)
+
+3. Go to http://localhost:3000/ and you'll see:
+       "Welcome aboard: You're riding Ruby on Rails!"
+
+4. Follow the guidelines to start developing your application. You can find
+the following resources handy:
+
+* The Getting Started Guide: http://guides.rubyonrails.org/getting_started.html
+* Ruby on Rails Tutorial Book: http://www.railstutorial.org/
+
+
+== Debugging Rails
+
+Sometimes your application goes wrong. Fortunately there are a lot of tools that
+will help you debug it and get it back on the rails.
+
+First area to check is the application log files. Have "tail -f" commands
+running on the server.log and development.log. Rails will automatically display
+debugging and runtime information to these files. Debugging info will also be
+shown in the browser on requests from 127.0.0.1.
+
+You can also log your own messages directly into the log file from your code
+using the Ruby logger class from inside your controllers. Example:
+
+  class WeblogController < ActionController::Base
+    def destroy
+      @weblog = Weblog.find(params[:id])
+      @weblog.destroy
+      logger.info("#{Time.now} Destroyed Weblog ID ##{@weblog.id}!")
+    end
+  end
+
+The result will be a message in your log file along the lines of:
+
+  Mon Oct 08 14:22:29 +1000 2007 Destroyed Weblog ID #1!
+
+More information on how to use the logger is at http://www.ruby-doc.org/core/
+
+Also, Ruby documentation can be found at http://www.ruby-lang.org/. There are
+several books available online as well:
+
+* Programming Ruby: http://www.ruby-doc.org/docs/ProgrammingRuby/ (Pickaxe)
+* Learn to Program: http://pine.fm/LearnToProgram/ (a beginners guide)
+
+These two books will bring you up to speed on the Ruby language and also on
+programming in general.
+
+
+== Debugger
+
+Debugger support is available through the debugger command when you start your
+Mongrel or WEBrick server with --debugger. This means that you can break out of
+execution at any point in the code, investigate and change the model, and then,
+resume execution! You need to install ruby-debug to run the server in debugging
+mode. With gems, use <tt>sudo gem install ruby-debug</tt>. Example:
+
+  class WeblogController < ActionController::Base
+    def index
+      @posts = Post.all
+      debugger
+    end
+  end
+
+So the controller will accept the action, run the first line, then present you
+with a IRB prompt in the server window. Here you can do things like:
+
+  >> @posts.inspect
+  => "[#<Post:0x14a6be8
+          @attributes={"title"=>nil, "body"=>nil, "id"=>"1"}>,
+       #<Post:0x14a6620
+          @attributes={"title"=>"Rails", "body"=>"Only ten..", "id"=>"2"}>]"
+  >> @posts.first.title = "hello from a debugger"
+  => "hello from a debugger"
+
+...and even better, you can examine how your runtime objects actually work:
+
+  >> f = @posts.first
+  => #<Post:0x13630c4 @attributes={"title"=>nil, "body"=>nil, "id"=>"1"}>
+  >> f.
+  Display all 152 possibilities? (y or n)
+
+Finally, when you're ready to resume execution, you can enter "cont".
+
+
+== Console
+
+The console is a Ruby shell, which allows you to interact with your
+application's domain model. Here you'll have all parts of the application
+configured, just like it is when the application is running. You can inspect
+domain models, change values, and save to the database. Starting the script
+without arguments will launch it in the development environment.
+
+To start the console, run <tt>rails console</tt> from the application
+directory.
+
+Options:
+
+* Passing the <tt>-s, --sandbox</tt> argument will rollback any modifications
+  made to the database.
+* Passing an environment name as an argument will load the corresponding
+  environment. Example: <tt>rails console production</tt>.
+
+To reload your controllers and models after launching the console run
+<tt>reload!</tt>
+
+More information about irb can be found at:
+link:http://www.rubycentral.org/pickaxe/irb.html
+
+
+== dbconsole
+
+You can go to the command line of your database directly through <tt>rails
+dbconsole</tt>. You would be connected to the database with the credentials
+defined in database.yml. Starting the script without arguments will connect you
+to the development database. Passing an argument will connect you to a different
+database, like <tt>rails dbconsole production</tt>. Currently works for MySQL,
+PostgreSQL and SQLite 3.
+
+== Description of Contents
+
+The default directory structure of a generated Ruby on Rails application:
+
+  |-- app
+  |   |-- assets
+  |       |-- images
+  |       |-- javascripts
+  |       `-- stylesheets
+  |   |-- controllers
+  |   |-- helpers
+  |   |-- mailers
+  |   |-- models
+  |   `-- views
+  |       `-- layouts
+  |-- config
+  |   |-- environments
+  |   |-- initializers
+  |   `-- locales
+  |-- db
+  |-- doc
+  |-- lib
+  |   `-- tasks
+  |-- log
+  |-- public
+  |-- script
+  |-- test
+  |   |-- fixtures
+  |   |-- functional
+  |   |-- integration
+  |   |-- performance
+  |   `-- unit
+  |-- tmp
+  |   |-- cache
+  |   |-- pids
+  |   |-- sessions
+  |   `-- sockets
+  `-- vendor
+      |-- assets
+          `-- stylesheets
+      `-- plugins
+
+app
+  Holds all the code that's specific to this particular application.
+
+app/assets
+  Contains subdirectories for images, stylesheets, and JavaScript files.
+
+app/controllers
+  Holds controllers that should be named like weblogs_controller.rb for
+  automated URL mapping. All controllers should descend from
+  ApplicationController which itself descends from ActionController::Base.
+
+app/models
+  Holds models that should be named like post.rb. Models descend from
+  ActiveRecord::Base by default.
+
+app/views
+  Holds the template files for the view that should be named like
+  weblogs/index.html.erb for the WeblogsController#index action. All views use
+  eRuby syntax by default.
+
+app/views/layouts
+  Holds the template files for layouts to be used with views. This models the
+  common header/footer method of wrapping views. In your views, define a layout
+  using the <tt>layout :default</tt> and create a file named default.html.erb.
+  Inside default.html.erb, call <% yield %> to render the view using this
+  layout.
+
+app/helpers
+  Holds view helpers that should be named like weblogs_helper.rb. These are
+  generated for you automatically when using generators for controllers.
+  Helpers can be used to wrap functionality for your views into methods.
+
+config
+  Configuration files for the Rails environment, the routing map, the database,
+  and other dependencies.
+
+db
+  Contains the database schema in schema.rb. db/migrate contains all the
+  sequence of Migrations for your schema.
+
+doc
+  This directory is where your application documentation will be stored when
+  generated using <tt>rake doc:app</tt>
+
+lib
+  Application specific libraries. Basically, any kind of custom code that
+  doesn't belong under controllers, models, or helpers. This directory is in
+  the load path.
+
+public
+  The directory available for the web server. Also contains the dispatchers and the
+  default HTML files. This should be set as the DOCUMENT_ROOT of your web
+  server.
+
+script
+  Helper scripts for automation and generation.
+
+test
+  Unit and functional tests along with fixtures. When using the rails generate
+  command, template test files will be generated for you and placed in this
+  directory.
+
+vendor
+  External libraries that the application depends on. Also includes the plugins
+  subdirectory. If the app has frozen rails, those gems also go here, under
+  vendor/rails/. This directory is in the load path.