1 files changed, 0 insertions, 391 deletions
diff --git a/rest/oauth-proxy-call.c b/rest/oauth-proxy-call.c
deleted file mode 100644
index 560e928..0000000
--- a/rest/oauth-proxy-call.c
+++ /dev/null
@@ -1,391 +0,0 @@
-/*
- * librest - RESTful web services access
- * Copyright (c) 2008, 2009, Intel Corporation.
- *
- * Authors: Rob Bradford <rob@linux.intel.com>
- *          Ross Burton <ross@linux.intel.com>
- *
- * This program is free software; you can redistribute it and/or modify it
- * under the terms and conditions of the GNU Lesser General Public License,
- * version 2.1, as published by the Free Software Foundation.
- *
- * This program is distributed in the hope it will be useful, but WITHOUT ANY
- * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
- * FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public License for
- * more details.
- *
- * You should have received a copy of the GNU Lesser General Public License
- * along with this program; if not, write to the Free Software Foundation,
- * Inc., 51 Franklin St - Fifth Floor, Boston, MA 02110-1301 USA.
- *
- */
-
-#include <string.h>
-#include <libsoup/soup.h>
-#include <rest/rest-proxy-call.h>
-#include "oauth-proxy-call.h"
-#include "oauth-proxy.h"
-#include "rest-proxy-call-private.h"
-#include "sha1.h"
-
-G_DEFINE_TYPE (OAuthProxyCall, oauth_proxy_call, REST_TYPE_PROXY_CALL)
-
-#define OAUTH_ENCODE_STRING(x_) (x_ ? g_uri_escape_string( (x_), NULL, TRUE) : g_strdup (""))
-
-static char *
-sign_plaintext (OAuthProxy *proxy)
-{
-  char *cs;
-  char *ts;
-  char *rv;
-
-  cs = OAUTH_ENCODE_STRING (oauth_proxy_get_consumer_secret (proxy));
-  ts = OAUTH_ENCODE_STRING (oauth_proxy_get_token_secret (proxy));
-  rv = g_strconcat (cs, "&", ts, NULL);
-
-  g_free (cs);
-  g_free (ts);
-
-  return rv;
-}
-
-static char *
-encode_params (GHashTable *hash)
-{
-  GList *l, *keys;
-  GString *s;
-
-  s = g_string_new (NULL);
-
-  keys = g_hash_table_get_keys (hash);
-  keys = g_list_sort (keys, (GCompareFunc)strcmp);
-
-  for (l = keys; l; l = l->next) {
-    const char *key;
-    const char *value;
-    char *k, *v;
-
-    key = l->data;
-    value = g_hash_table_lookup (hash, key);
-
-    k = OAUTH_ENCODE_STRING (key);
-    v = OAUTH_ENCODE_STRING (value);
-
-    if (s->len)
-      g_string_append (s, "&");
-
-    g_string_append_printf (s, "%s=%s", k, v);
-
-    g_free (k);
-    g_free (v);
-  }
-
-  g_list_free (keys);
-
-  return g_string_free (s, FALSE);
-}
-
-/*
- * Add the keys in @from to @hash.
- */
-static void
-merge_hashes (GHashTable *hash, GHashTable *from)
-{
-  GHashTableIter iter;
-  gpointer key, value;
-
-  g_hash_table_iter_init (&iter, from);
-  while (g_hash_table_iter_next (&iter, &key, &value)) {
-    g_hash_table_insert (hash, key, value);
-  }
-}
-
-static void
-merge_params (GHashTable *hash, RestParams *params)
-{
-  RestParamsIter iter;
-  const char *name;
-  RestParam *param;
-
-  rest_params_iter_init (&iter, params);
-  while (rest_params_iter_next (&iter, &name, &param)) {
-    if (rest_param_is_string (param))
-      g_hash_table_insert (hash, (gpointer)name, (gpointer)rest_param_get_content (param));
-  }
-}
-
-static char *
-sign_hmac (OAuthProxy *proxy, RestProxyCall *call, GHashTable *oauth_params)
-{
-  const char *url_str;
-  char *key, *signature, *ep, *eep;
-  const char *content_type;
-  GString *text;
-  GHashTable *all_params;
-  RestParamsIter params_iter;
-  RestParam *param;
-  gboolean encode_query_params = TRUE;
-
-  url_str = rest_proxy_call_get_url (call);
-
-  text = g_string_new (NULL);
-  g_string_append (text, rest_proxy_call_get_method (call));
-  g_string_append_c (text, '&');
-  if (oauth_proxy_is_echo (proxy))
-    g_string_append_uri_escaped (text, oauth_proxy_get_service_url (proxy), NULL, FALSE);
-  else if (oauth_proxy_get_signature_host (proxy) != NULL) {
-    GUri *url = g_uri_parse (url_str, G_URI_FLAGS_ENCODED, NULL);
-    GUri *new_url;
-    gchar *signing_url;
-
-    new_url = g_uri_build (g_uri_get_flags (url),
-                           g_uri_get_scheme (url),
-                           g_uri_get_userinfo (url),
-                           oauth_proxy_get_signature_host (proxy),
-                           g_uri_get_port (url),
-                           g_uri_get_path (url),
-                           g_uri_get_query (url),
-                           g_uri_get_fragment (url));
-    signing_url = g_uri_to_string (new_url);
-
-    g_string_append_uri_escaped (text, signing_url, NULL, FALSE);
-
-    g_uri_unref (new_url);
-    g_uri_unref (url);
-    g_free (signing_url);
-  } else {
-    g_string_append_uri_escaped (text, url_str, NULL, FALSE);
-  }
-  g_string_append_c (text, '&');
-
-
-
-  /* If one of the call's parameters is a multipart/form-data parameter, the
-     signature base string must be generated with only the oauth parameters */
-  rest_params_iter_init(&params_iter, rest_proxy_call_get_params (call));
-  while(rest_params_iter_next(&params_iter, (gpointer)&key, (gpointer)&param)) {
-    content_type = rest_param_get_content_type(param);
-    if (strcmp(content_type, "multipart/form-data") == 0){
-      encode_query_params = FALSE;
-      break;
-    }
-  }
-
-
-
-  /* Merge the OAuth parameters with the query parameters */
-  all_params = g_hash_table_new (g_str_hash, g_str_equal);
-  merge_hashes (all_params, oauth_params);
-  if (encode_query_params && !oauth_proxy_is_echo (proxy)) {
-      merge_params (all_params, rest_proxy_call_get_params (call));
-  }
-
-
-  ep = encode_params (all_params);
-  eep = OAUTH_ENCODE_STRING (ep);
-  g_string_append (text, eep);
-  g_free (ep);
-  g_free (eep);
-  g_hash_table_destroy (all_params);
-
-  /* PLAINTEXT signature value is the HMAC-SHA1 key value */
-  key = sign_plaintext (proxy);
-
-  signature = hmac_sha1 (key, text->str);
-
-  g_free (key);
-  g_string_free (text, TRUE);
-
-  return signature;
-}
-
-/*
- * From the OAuth parameters in @params, construct a HTTP Authorized header.
- */
-static char *
-make_authorized_header (GHashTable *oauth_params)
-{
-  GString *auth;
-  GHashTableIter iter;
-  const char *key, *value;
-
-  g_assert (oauth_params);
-
-  /* TODO: is "" okay for the realm, or should this be magically calculated or a
-     parameter? */
-  auth = g_string_new ("OAuth realm=\"\"");
-
-  g_hash_table_iter_init (&iter, oauth_params);
-  while (g_hash_table_iter_next (&iter, (gpointer)&key, (gpointer)&value)) {
-    gchar *encoded_value = OAUTH_ENCODE_STRING (value);
-    g_string_append_printf (auth, ", %s=\"%s\"", key, encoded_value);
-    g_free (encoded_value);
-  }
-
-  return g_string_free (auth, FALSE);
-}
-
-/*
- * Remove any OAuth parameters from the @call parameters and add them to
- * @oauth_params for building an Authorized header with.
- */
-static void
-steal_oauth_params (RestProxyCall *call, GHashTable *oauth_params)
-{
-  RestParams *params;
-  RestParamsIter iter;
-  const char *name;
-  RestParam *param;
-  GList *to_remove = NULL;
-
-  params = rest_proxy_call_get_params (call);
-
-  rest_params_iter_init (&iter, params);
-  while (rest_params_iter_next (&iter, &name, &param)) {
-    if (rest_param_is_string (param) && g_str_has_prefix (name, "oauth_")) {
-      g_hash_table_insert (oauth_params,
-                           g_strdup (name),
-                           g_strdup (rest_param_get_content (param)));
-      to_remove = g_list_prepend (to_remove, g_strdup (name));
-    }
-  }
-
-  while (to_remove) {
-    rest_params_remove (params, to_remove->data);
-    g_free (to_remove->data);
-    to_remove = g_list_delete_link (to_remove, to_remove);
-  }
-}
-
-static gboolean
-_prepare (RestProxyCall *call, GError **error)
-{
-  OAuthProxy *proxy = NULL;
-  char *s;
-  GHashTable *oauth_params;
-
-  g_object_get (call, "proxy", &proxy, NULL);
-
-  /* We have to make this hash free the strings and thus duplicate when we put
-   * them in since when we call call steal_oauth_params that has to duplicate
-   * the param names since it removes them from the main hash
-   */
-  oauth_params = g_hash_table_new_full (g_str_hash, g_str_equal, g_free, g_free);
-
-  /* First, steal any OAuth properties in the regular params */
-  steal_oauth_params (call, oauth_params);
-
-  g_hash_table_insert (oauth_params, g_strdup ("oauth_version"), g_strdup ("1.0"));
-
-  s = g_strdup_printf ("%"G_GINT64_FORMAT , (gint64) time (NULL));
-  g_hash_table_insert (oauth_params, g_strdup ("oauth_timestamp"), s);
-
-  s = g_strdup_printf ("%u", g_random_int ());
-  g_hash_table_insert (oauth_params, g_strdup ("oauth_nonce"), s);
-
-  g_hash_table_insert (oauth_params, g_strdup ("oauth_consumer_key"),
-                       g_strdup (oauth_proxy_get_consumer_key (proxy)));
-
-  if (oauth_proxy_get_token (proxy))
-    g_hash_table_insert (oauth_params, g_strdup ("oauth_token"), g_strdup (oauth_proxy_get_token (proxy)));
-
-  switch (oauth_proxy_get_sign_method (proxy)) {
-  case PLAINTEXT:
-    g_hash_table_insert (oauth_params, g_strdup ("oauth_signature_method"), g_strdup ("PLAINTEXT"));
-    s = sign_plaintext (proxy);
-    break;
-  case HMAC_SHA1:
-    g_hash_table_insert (oauth_params, g_strdup ("oauth_signature_method"), g_strdup ("HMAC-SHA1"));
-    s = sign_hmac (proxy, call, oauth_params);
-    break;
-  }
-  g_hash_table_insert (oauth_params, g_strdup ("oauth_signature"), s);
-
-  s = make_authorized_header (oauth_params);
-  if (oauth_proxy_is_echo (proxy)) {
-    rest_proxy_call_add_header (call, "X-Verify-Credentials-Authorization", s);
-    rest_proxy_call_add_param (call, "X-Auth-Service-Provider", oauth_proxy_get_service_url (proxy));
-  } else {
-    rest_proxy_call_add_header (call, "Authorization", s);
-  }
-  g_free (s);
-  g_hash_table_destroy (oauth_params);
-
-  g_object_unref (proxy);
-
-  return TRUE;
-}
-
-static void
-oauth_proxy_call_class_init (OAuthProxyCallClass *klass)
-{
-  RestProxyCallClass *call_class = REST_PROXY_CALL_CLASS (klass);
-
-  call_class->prepare = _prepare;
-}
-
-static void
-oauth_proxy_call_init (OAuthProxyCall *self)
-{
-}
-
-void
-oauth_proxy_call_parse_token_response (OAuthProxyCall *call)
-{
-  GHashTable *form;
-  OAuthProxy *proxy;
-  g_autofree gchar *formstr = NULL;
-
-  /* TODO: sanity checks, error handling, probably return gboolean */
-
-  g_return_if_fail (OAUTH_IS_PROXY_CALL (call));
-
-  g_object_get (call, "proxy", &proxy, NULL);
-  g_object_unref (proxy);
-
-  formstr = g_strndup (rest_proxy_call_get_payload (REST_PROXY_CALL (call)), rest_proxy_call_get_payload_length (REST_PROXY_CALL (call)));
-  form = soup_form_decode (formstr);
-
-  oauth_proxy_set_token (proxy, g_hash_table_lookup (form, "oauth_token"));
-  oauth_proxy_set_token_secret (proxy, g_hash_table_lookup (form, "oauth_token_secret"));
-  /* This header should only exist for request_token replies, but its easier just to always check it */
-  oauth_proxy_set_oauth10a (proxy, g_hash_table_lookup (form, "oauth_callback_confirmed") != NULL);
-
-  g_hash_table_destroy (form);
-}
-
-#if BUILD_TESTS
-/* Test cases from http://wiki.oauth.net/TestCases */
-void
-test_param_encoding (void)
-{
-  GHashTable *hash;
-  char *s;
-
-#define TEST(expected) \
-  s = encode_params (hash);                      \
-  g_assert_cmpstr (s, ==, expected);             \
-  g_free (s);                                    \
-  g_hash_table_remove_all (hash);
-
-  hash = g_hash_table_new (g_str_hash, g_str_equal);
-
-  g_hash_table_insert (hash, "name", NULL);
-  TEST("name=");
-
-  g_hash_table_insert (hash, "a", "b");
-  TEST("a=b");
-
-  g_hash_table_insert (hash, "a", "b");
-  g_hash_table_insert (hash, "c", "d");
-  TEST("a=b&c=d");
-
-  /* Because we don't (yet) support multiple parameters with the same key we've
-     changed this case slightly */
-  g_hash_table_insert (hash, "b", "x!y");
-  g_hash_table_insert (hash, "a", "x y");
-  TEST("a=x%20y&b=x%21y");
-
-#undef TEST
-}
-#endif