master
all branches
all tags
- v0.0.8
- v0.0.7
- v0.0.6
- v0.0.5
- v0.0.4
- v0.0.3

atmos / hancock

139

Description:	An OpenID Provider with an API, written in Sinatra. edit
Homepage:	http://github.com/atmos/hancock edit
Public Clone URL:	git://github.com/atmos/hancock.git Give this clone URL to anyone. `git clone git://github.com/atmos/hancock.git`
Your Clone URL:	git@github.com:atmos/hancock.git Use this clone URL yourself. `git clone git@github.com:atmos/hancock.git`

adding diagrams for where it fails

atmos (author)

Mon Nov 09 21:47:38 -0800 2009

commit a0b6b7e2251ce0d3087aeaf7817bd549ffdc721b
tree e12e7ba0307031badbead0862aa526505395fabe
parent 3ec5f73a3d14fb606814073f4ea6bed5c19a201f

hancock /

name	age	history message
.gitignore	Sun Aug 09 10:44:13 -0700 2009	remove enable :session from default app in favo... [atmos]
AUTHORS	Sat Mar 07 22:37:36 -0800 2009	doc shuffling [atmos]
Gemfile	Mon Nov 09 21:47:38 -0800 2009	adding diagrams for where it fails [atmos]
LICENSE	Sun Mar 01 15:51:26 -0800 2009	tim too [atmos]
README.md	Fri Oct 30 01:50:13 -0700 2009	README tweak [atmos]
Rakefile	Mon Nov 09 21:47:38 -0800 2009	adding diagrams for where it fails [atmos]
examples/	Thu Oct 29 23:56:22 -0700 2009	nuking code feels good, more signup stuff getti... [atmos]
features/	Fri Oct 30 00:43:35 -0700 2009	removing, renaming, refactoring, simplifying [atmos]
hancock.graffle	Mon Nov 09 21:47:38 -0800 2009	adding diagrams for where it fails [atmos]
lib/	Mon Nov 09 21:47:38 -0800 2009	adding diagrams for where it fails [atmos]
spec/	Mon Nov 09 21:47:38 -0800 2009	adding diagrams for where it fails [atmos]

README.md

hancock

It's like your John Hancock for all of your company's apps.

A lot of this is extracted from our internal single sign on server at Engine Yard. We use a different datamapper backend but it should be a great start for most people.

Features

An OpenID based Single Sign On server that provides:

a single authoritative source for user authentication
a whitelist for consumer applications
integration with the big ruby frameworks via rack.
configurable sreg parameters to consumers

Your Rackup File

require 'hancock'

DataMapper.setup(:default, "sqlite3:///#{Dir.pwd}/development.db")

class OneLove < Hancock::App
  set :views,  'views'
  set :public, 'public'

  get '/' do
    redirect '/sso/login' unless session['hancock_server_user_id']
    erb :home
  end
end
run OneLove

How it Works

SSO Handshake

This handshake seems kind of complex but it only happens when you need to validate a user session on the consumer.

Testing/Developing Locally

You need the Gem Bundler to function, and you MUST use the files in bin/ for generated gem executables.

% sudo gem install bundler
% gem bundle
% bin/rake

Deployment Setup

You can deploy hancock on any rack compatible setup. You need a database that datamapper can connect to. Generate an example rackup file for yourself based on the example above.

% irb
>> require 'rubygems'
=> false
>> require 'hancock'
=> true
>> DataMapper.setup(:default, "sqlite3:///#{Dir.pwd}/development.db")
=> #<DataMapper::Adapters::Sqlite3Adapter:0x1ae639c ...>
>> DataMapper.auto_migrate!
=> [Hancock::User, Hancock::Consumer]

Consult the datamapper documentation if you need to connect to something other than sqlite. This runs the initial user migration to bootstrap your db.

>> Hancock::Consumer.create(:url => 'http://localhost:3000/sso/login', :label => 'Local Rails Dev', :internal => false)
=> ...
>> Hancock::Consumer.create(:url => 'http://localhost:4000/sso/login', :label => 'Local Merb Dev', :internal => false)
=> ...
>> Hancock::Consumer.create(:url => 'http://localhost:4567/sso/login', :label => 'Local Sinatra Dev', :internal => false)

Here's how you setup most frameworks as consumers. In a production environment you'd lock this down

Feedback

Github Issues