suzanne.soy/travis-api
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

start working on post_message auth flow

Browse Source 
Conflicts:
	Gemfile.lock
This commit is contained in:
Konstantin Haase 2012-09-17 23:58:57 +02:00 committed by Sven Fuchs
parent ea96905e8a
commit 6606af4b43
2 changed files with 43 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

48
lib/travis/api/app/endpoint/authorization.rb
View File

@ -1,4 +1,6 @@
require 'travis/api/app' require 'travis/api/app'
require 'addressable/uri'
require 'faraday'
class Travis::Api::App class Travis::Api::App
class Endpoint class Endpoint
@ -58,14 +60,31 @@ class Travis::Api::App
# #
# * **token**: GitHub token for checking authorization (required) # * **token**: GitHub token for checking authorization (required)
post '/github' do post '/github' do
data = GH.with(token: params[:token].to_s) { GH['user'] } { 'access_token' => github_to_travis(params[:token]) }
scopes = parse_scopes data.headers['x-oauth-scopes'] end
user = User.find_by_login(data['login'])
halt 403, 'not a Travis user' if user.nil? get '/post_message' do
halt 403, 'insufficient access' unless acceptable? scopes config = Travis.config.oauth2
endpoint = Addressable::URI.parse(config.authorization_server)
values = {
client_id: config.client_id,
scope: config.scope,
redirect_uri: url
}
{ 'access_token' => generate_token(user) } if params[:code]
endpoint.path = config.access_token_path
values[:code] = params[:code]
values[:state] = params[:state] if params[:state]
values[:client_secret] = config.client_secret
token = github_to_travis get_token(endpoint.to_s, values)
{ 'access_token' => token }
else
endpoint.path = config.authorize_path
endpoint.query_values = values
redirect to(endpoint.to_s)
end
end end
error Faraday::Error::ClientError do error Faraday::Error::ClientError do
@ -74,6 +93,23 @@ class Travis::Api::App
private private
def github_to_travis(token)
data = GH.with(token: token.to_s) { GH['user'] }
scopes = parse_scopes data.headers['x-oauth-scopes']
user = User.find_by_login(data['login'])
halt 403, 'not a Travis user' if user.nil?
halt 403, 'insufficient access' unless acceptable? scopes
generate_token(user)
end
def get_token(endoint, value)
response = Faraday.get(endoint, value)
parameters = Addressable::URI.form_unencode(response.body)
parameters.assoc("access_token").last
end
def parse_scopes(data) def parse_scopes(data)
data.gsub(/\s/,'').split(',') if data data.gsub(/\s/,'').split(',') if data
end end

2
script/server
View File

@ -1,6 +1,6 @@
#!/usr/bin/env bash #!/usr/bin/env bash
cd "$(dirname "$0")/.." cd "$(dirname "$0")/.."
[ $PORT ] || PORT=5000 [ $PORT ] || PORT=3000
[ $RACK_ENV ] || RACK_ENV=development [ $RACK_ENV ] || RACK_ENV=development
cmd="ruby -I lib -S bundle exec ruby -I lib -S thin start -p $PORT -e $RACK_ENV --threaded" cmd="ruby -I lib -S bundle exec ruby -I lib -S thin start -p $PORT -e $RACK_ENV --threaded"