12 oauth

.ruby-version

@@ -1 +1 @@
-ruby-2.3-head
+ruby-2.3.1

Gemfile

@@ -2,6 +2,7 @@ source 'https://rubygems.org'
 
 gem 'rails', '4.2.6'
 gem 'pg', '~> 0.15'
+gem 'sprockets', '3.6.3'
 gem 'sass-rails', '~> 5.0'
 gem 'uglifier', '>= 1.3.0'
 gem 'coffee-rails', '~> 4.1.0'
@@ -22,6 +23,9 @@ gem 'private_pub'
 gem 'skim'
 gem 'gon'
 gem 'responders'
+gem 'omniauth'
+gem 'omniauth-facebook'
+gem 'omniauth-twitter'
 
 # gem 'unicorn'
 gem 'thin'
@@ -43,6 +47,8 @@ group :test do
   gem 'capybara-webkit'
 end
 
+gem 'capybara-email'
+
 group :development do
   gem 'web-console', '~> 2.0'
   gem 'pry'
@@ -57,4 +63,6 @@ group :development do
   gem 'rails_best_practices'
 
   gem 'spring'
+
+  gem 'letter_opener'
 end

Gemfile.lock

@@ -39,7 +39,7 @@ GEM
     addressable (2.4.0)
     arel (6.0.3)
     ast (2.3.0)
-    autoprefixer-rails (6.3.7)
+    autoprefixer-rails (6.4.0.3)
       execjs
     bcrypt (3.1.11)
     better_errors (2.1.1)
@@ -61,6 +61,9 @@ GEM
       rack (>= 1.0.0)
       rack-test (>= 0.5.4)
       xpath (~> 2.0)
+    capybara-email (2.5.0)
+      capybara (~> 2.4)
+      mail
     capybara-webkit (1.11.1)
       capybara (>= 2.3.0, < 2.8.0)
       json
@@ -71,7 +74,7 @@ GEM
       mime-types (>= 1.16)
       mimemagic (>= 0.3.0)
     cocoon (1.2.9)
-    code_analyzer (0.4.5)
+    code_analyzer (0.4.7)
       sexp_processor
     coderay (1.1.1)
     coffee-rails (4.1.1)
@@ -83,7 +86,7 @@ GEM
     coffee-script-source (1.10.0)
     concurrent-ruby (1.0.2)
     cookiejar (0.3.3)
-    daemons (1.2.3)
+    daemons (1.2.4)
     database_cleaner (1.5.3)
     debug_inspector (0.0.2)
     devise (4.2.0)
@@ -111,6 +114,8 @@ GEM
       railties (>= 3.0.0)
     faker (1.6.6)
       i18n (~> 0.5)
+    faraday (0.9.2)
+      multipart-post (>= 1.2, < 3)
     faye (1.2.2)
       cookiejar (>= 0.3.0)
       em-http-request (>= 0.3.0)
@@ -142,22 +147,26 @@ GEM
       shellany (~> 0.0)
       thor (>= 0.18.1)
     guard-compat (1.2.1)
-    guard-rspec (4.7.2)
+    guard-rspec (4.7.3)
       guard (~> 2.1)
       guard-compat (~> 1.1)
       rspec (>= 2.99.0, < 4.0)
+    hashie (3.4.4)
     http_parser.rb (0.6.0)
     i18n (0.7.0)
     jbuilder (2.6.0)
       activesupport (>= 3.0.0, < 5.1)
       multi_json (~> 1.2)
-    jquery-rails (4.1.1)
+    jquery-rails (4.2.1)
       rails-dom-testing (>= 1, < 3)
       railties (>= 4.2.0)
       thor (>= 0.14, < 2.0)
     json (1.8.3)
+    jwt (1.5.4)
     launchy (2.4.3)
       addressable (~> 2.3)
+    letter_opener (1.4.1)
+      launchy (~> 2.2)
     listen (3.1.5)
       rb-fsevent (~> 0.9, >= 0.9.4)
       rb-inotify (~> 0.9, >= 0.9.7)
@@ -175,17 +184,40 @@ GEM
     mime-types (3.1)
       mime-types-data (~> 3.2015)
     mime-types-data (3.2016.0521)
-    mimemagic (0.3.1)
+    mimemagic (0.3.2)
     mini_portile2 (2.1.0)
     minitest (5.9.0)
     multi_json (1.12.1)
+    multi_xml (0.5.5)
+    multipart-post (2.0.0)
     nenv (0.3.0)
     nokogiri (1.6.8)
       mini_portile2 (~> 2.1.0)
       pkg-config (~> 1.1.7)
-    notiffany (0.1.0)
+    notiffany (0.1.1)
       nenv (~> 0.1)
       shellany (~> 0.0)
+    oauth (0.5.1)
+    oauth2 (1.2.0)
+      faraday (>= 0.8, < 0.10)
+      jwt (~> 1.0)
+      multi_json (~> 1.3)
+      multi_xml (~> 0.5)
+      rack (>= 1.2, < 3)
+    omniauth (1.3.1)
+      hashie (>= 1.2, < 4)
+      rack (>= 1.0, < 3)
+    omniauth-facebook (4.0.0)
+      omniauth-oauth2 (~> 1.2)
+    omniauth-oauth (1.1.0)
+      oauth
+      omniauth (~> 1.0)
+    omniauth-oauth2 (1.4.0)
+      oauth2 (~> 1.0)
+      omniauth (~> 1.2)
+    omniauth-twitter (1.2.1)
+      json (~> 1.3)
+      omniauth-oauth (~> 1.1)
     orm_adapter (0.5.0)
     parser (2.3.1.2)
       ast (~> 2.2)
@@ -253,21 +285,21 @@ GEM
     remotipart (1.2.1)
     request_store (1.3.1)
     require_all (1.3.3)
-    responders (2.2.0)
+    responders (2.3.0)
       railties (>= 4.2.0, < 5.1)
     rspec (3.5.0)
       rspec-core (~> 3.5.0)
       rspec-expectations (~> 3.5.0)
       rspec-mocks (~> 3.5.0)
-    rspec-core (3.5.1)
+    rspec-core (3.5.2)
       rspec-support (~> 3.5.0)
     rspec-expectations (3.5.0)
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.5.0)
     rspec-mocks (3.5.0)
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.5.0)
-    rspec-rails (3.5.1)
+    rspec-rails (3.5.2)
       actionpack (>= 3.0)
       activesupport (>= 3.0)
       railties (>= 3.0)
@@ -283,7 +315,7 @@ GEM
       ruby-progressbar (~> 1.7)
       unicode-display_width (~> 1.0, >= 1.0.1)
     ruby-progressbar (1.8.1)
-    ruby_dep (1.3.1)
+    ruby_dep (1.4.0)
     sass (3.4.22)
     sass-rails (5.0.6)
       railties (>= 4.0.0, < 6)
@@ -314,7 +346,7 @@ GEM
     spring (1.7.2)
     spring-commands-rspec (1.0.4)
       spring (>= 0.9.1)
-    sprockets (3.7.0)
+    sprockets (3.6.3)
       concurrent-ruby (~> 1.0)
       rack (> 1, < 3)
     sprockets-rails (3.1.1)
@@ -329,12 +361,12 @@ GEM
     thor (0.19.1)
     thread_safe (0.3.5)
     tilt (2.0.5)
-    turbolinks (5.0.0)
+    turbolinks (5.0.1)
       turbolinks-source (~> 5)
     turbolinks-source (5.0.0)
     tzinfo (1.2.2)
       thread_safe (~> 0.1)
-    uglifier (3.0.0)
+    uglifier (3.0.2)
       execjs (>= 0.3.0, < 3)
     unicode-display_width (1.1.0)
     warden (1.2.6)
@@ -359,6 +391,7 @@ DEPENDENCIES
   bootstrap-sass (~> 3.3.6)
   byebug (~> 8.0)
   capybara
+  capybara-email
   capybara-webkit
   carrierwave
   cocoon
@@ -372,7 +405,11 @@ DEPENDENCIES
   jbuilder (~> 2.0)
   jquery-rails
   launchy
+  letter_opener
   meta_request
+  omniauth
+  omniauth-facebook
+  omniauth-twitter
   pg (~> 0.15)
   private_pub
   pry
@@ -393,6 +430,7 @@ DEPENDENCIES
   slim-rails
   spring
   spring-commands-rspec
+  sprockets (= 3.6.3)
   thin
   turbolinks
   uglifier (>= 1.3.0)

app/controllers/account_controller.rb

@@ -0,0 +1,47 @@
+class AccountController < ApplicationController
+  before_action :check_already_signed_in, only: [:confirm_email]
+  before_action :check_oauth_in_session, only: [:confirm_email]
+
+  def confirm_email
+    if request.patch?
+      email = nil
+      email = params[:user][:email] if params[:user] && params[:user][:email]
+      user = User.where(email: email).first
+      provider = session['devise.oauth_provider']
+      if user.present?
+        set_flash :alert, 'Email already taken.'
+      else
+        User.transaction do
+          @user = User.create(email: email, password: Devise.friendly_token[0, 20])
+          if @user.persisted?
+            @user.identities.create!({
+                provider: provider,
+                uid: session['devise.oauth_uid'].to_s})
+          end
+        end
+        if @user.persisted?
+          set_flash :notice, t('devise.omniauth_callbacks.success', kind: provider.to_s.capitalize)
+          sign_in_and_redirect @user, event: :authentication
+        end
+      end
+    end
+  end
+
+  private
+
+  def check_already_signed_in
+    redirect_to questions_path if signed_in?
+  end
+
+  def check_oauth_in_session
+    if !session['devise.oauth_provider'] && !session['devise.oauth_uid']
+      set_flash :notice, 'Registration done'
+      redirect_to questions_path
+    elsif !session['devise.oauth_provider'] || !session['devise.oauth_uid']
+      session['devise.oauth_provider'] = nil
+      session['devise.oauth_uid'] = nil
+      set_flash :alert, 'Authentication error, try again'
+      redirect_to new_user_session_path
+    end
+  end
+end

app/controllers/application_controller.rb

@@ -10,6 +10,12 @@ class ApplicationController < ActionController::Base
 
   before_action :set_js_current_user
 
+  protected
+
+  def set_flash(scope, message)
+    flash[scope] = message if is_navigational_format?
+  end
+
   private
 
   def set_js_current_user

app/controllers/omniauth_callbacks_controller.rb

@@ -0,0 +1,43 @@
+class OmniauthCallbacksController < Devise::OmniauthCallbacksController
+  before_action :oauth
+
+  def facebook
+  end
+
+  def twitter
+  end
+
+  private
+
+  def oauth
+    email = nil
+    email = params[:user][:email] if params[:user] && params[:user][:email]
+    auth = request.env['omniauth.auth'] || OmniAuth::AuthHash.new(
+        provider: session['oauth_provider'],
+        uid: session['oauth_uid'],
+        info: {email: email})
+    if auth
+      @user = User.find_for_oauth(auth)
+      if @user.nil? && auth && auth.provider && auth.uid
+        store_auth auth
+        redirect_to account_confirm_email_path
+      elsif @user&.persisted?
+        set_flash_message :notice, :success, kind: auth.provider.to_s.capitalize if is_navigational_format?
+        sign_in_and_redirect @user, event: :authentication
+      else
+        failure_redirect
+      end
+    else
+      failure_redirect
+    end
+  end
+
+  def store_auth(auth)
+    session['devise.oauth_provider'] = auth.provider
+    session['devise.oauth_uid'] = auth.uid
+  end
+
+  def failure_redirect
+    redirect_to new_user_registration_path, alert: 'Authentication failure'
+  end
+end

app/models/identity.rb

@@ -0,0 +1,6 @@
+class Identity < ActiveRecord::Base
+  belongs_to :user
+
+  validates :user_id, :provider, presence: true
+  validates :uid, presence: true, uniqueness: {scope: :provider}
+end

app/models/user.rb

@@ -2,9 +2,34 @@ class User < ActiveRecord::Base
   # Include default devise modules. Others available are:
   # :confirmable, :lockable, :timeoutable and :omniauthable
   devise :database_authenticatable, :registerable,
-         :recoverable, :rememberable, :trackable, :validatable
+      :recoverable, :rememberable, :trackable, :validatable,
+      :confirmable,
+      :omniauthable, omniauth_providers: [:facebook, :twitter]
 
+  has_many :identities, dependent: :destroy
   has_many :questions, dependent: :destroy
   has_many :answers, dependent: :destroy
   has_many :comments, dependent: :destroy
+
+  class << self
+    def find_for_oauth(auth)
+      return nil unless auth
+
+      identity = Identity.where(provider: auth.provider, uid: auth.uid.to_s).first
+      return identity.user if identity
+
+      email = auth.info[:email] if auth.info
+      return nil unless email
+
+      user = User.where(email: email).first
+      unless user
+        password = Devise.friendly_token(20)
+        user = User.new(email: email, password: password, password_confirmation: password)
+        user.save
+      end
+
+      user.identities.create(provider: auth.provider, uid: auth.uid) if user
+      user
+    end
+  end
 end