pelle / oauth-plugin
watch download tarball
public
Forks26Right
Watchers216Right
Description: Rails plugin for OAuth
Homepage: http://stakeventures.com/articles/2009/07/21/consuming-oauth-intelligently-in-rails
Clone URL: git://github.com/pelle/oauth-plugin.git
oauth-plugin / CHANGELOG
100644 118 lines (95 sloc) 4.383 kb
raw blame history 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118

10/08/2009
  0.3.14
  - Fixed the class generation when you have a custom token defined. [Brian Morearty]
10/05/2009
  0.3.13
  - Got rid of yahoo token. To support it correctly requires way too much work. Let them suffer the consequences of their decissions.
  - GoogleToken now uses portablecontacts gem
9/30/2009
  0.3.12
  - Added a simple PortableContacts adapter for GoogleToken
  - Added a SimpleClient wrapper to provide really simple wrapper for OAuth based json web services
  - Increased token size in consumer_tokens table because of Yahoo's oversized tokens 
  - Added support for Yahoo
  - Added support for Google (Boon Low)
9/26/2009
  0.3.11
  - Moved twitter tokens dependency back to regular twitter gem
7/29/2009
  0.3.10
  - Closed blocks in erb template (jcrosby) while pelle is hiding under his desk
  - Handled error case on authorize with non existent token
  - Fixed Agree2 token
  - Security Fix: Only skip verify_authenticity_token for specific oauth token requests in provider controller
7/25/2009
  0.3.9
  - Added an Index to oauth consumers controller. Rerun generator to create index template
  - Added invalidate action to provider, which allows a token to invalidate itself /oauth/invalidate
  - Added capabilities action to provider. Lets you expand to allow auto discovery of permissions and services that token provides.
  - Can override how authorize form indicates an authorization. To get around ugly checkbox
  
    def user_authorizes_token?
      params[:commit] == 'Authorize'
    end
  
7/23/2009
  0.3.8
  - Fixed Gem Plugins Loading
7/21/2009
  0.3.7
  - A blushing Pelle adds a missing file
  0.3.6
  - Twitter, Agree2 and FireEagle tokens are working in consumer.
  0.3.5
  - made it a gem
  - more thorough tests of OAuth 1.0 consumer
  - Add support for a OAUTH_10_SUPPORT constant to switch on support for OAuth 1.0 in provider
7/19/2009
  - Added support for OAuth 1.0 consumers (nov)
7/17/2009
  - Added back support for OAuth 1.0 for providers (nov)
7/14/2009
  - Added OAuth Consumer generator
  - Moved oauth controller code to a module to make it easier to upgrade in the future
7/11/2009
  - Added support for OAuth version 1.0a
  - Added haml support
  - Improved OAuth Client Controller gui (alec-c4)
2/11/2009
- Fixed escaping error and file path error in the generator simultaneously reported and fixed by Ivan Valdes and Mike Demers thanks
 
2/9/2009
- Fixed compatibility issue with OAuth Gem 3.1 (wr0ngway and aeden)
- Added Test:Unit tests to generator (Ed Hickey)
- added missing oauth_clients/edit.html.erb view template (Ed Hickey)
- added missing :oauth_clients resource route in USAGE (Ed Hickey)
- Don't throw NPE it token is not in db (Haruska)
- Cleaned up whitespace (bricolage, Nicholas Nam)
- Fixed bug in default verify_oauth_signature (igrigorik)
- Doc fixes (skippy)
 
6/23/2008
 
- Split OAuth controller into two parts: OAuth and OAuth clients. [jcrosby]
 
revision 31
 
- patch that fixes a problem in oauth_required from Hannes Tyden and Sean Treadway from SoundCloud. Thanks.
 
revision 30
 
- updated to use oauth gem 0.2.1
 
 
revision 23
 
- removed all core libraries from plugin. They are now in the oauth gem.
 
# oauth-plugin-pre-gem Branch created
 
revision 18
- added a generator for creation oauth_providers
 
revision 12
- the bug with post and put has now been fixed.
- better documentation
 
revision 9
- added a test helper. Include OAuth::TestHelper in your tests or specs to mock incoming requests
 
revision: 8
- moved tests into oauth folder and renamed them to make them work with autotest by default
- Refactored the request methods to make them more flexible and ready for integrating with ActiveResource
- There are a few tests that fail. All of them to do with put and post requests with payload data. I decided to commit anyway, to get the new api out.
 
revision: 7
 
- Done a lot of work on the Server side of things. The Server class has changed a lot and is likely to be incompatible with previous versions
 
revision: 6
 
- Throws InsecureSignatureMethod exception if attempting to use straight sha1 or md5.
- Disables plaintext signature over http (throws an InsecureSignatureMethod)
- Better testing of signature methods - the prior tests were seriously flawed.
 
revision: 5
 
- Removed support for sha1 and md5
- Implemented draft 6 support of OAuth removing secrets from base string