diff options
Diffstat (limited to 'packages/chef-server/app/controllers/openid_consumer.rb')
-rw-r--r-- | packages/chef-server/app/controllers/openid_consumer.rb | 66 |
1 files changed, 66 insertions, 0 deletions
diff --git a/packages/chef-server/app/controllers/openid_consumer.rb b/packages/chef-server/app/controllers/openid_consumer.rb new file mode 100644 index 0000000000..5b3142262e --- /dev/null +++ b/packages/chef-server/app/controllers/openid_consumer.rb @@ -0,0 +1,66 @@ +require 'pathname' + +require "openid" +require 'openid/store/filesystem' + +class OpenidConsumer < Application + layout nil + + def index + # render an openid form + end + + def start + begin + oidreq = consumer.begin(params[:openid_identifier]) + rescue OpenID::OpenIDError => e + flash[:error] = "Discovery failed for #{params[:openid_identifier]}: #{e}" + redirect_to :action => 'index' + return + end + return_to = url_for :action => 'complete', :only_path => false + realm = url_for :action => 'index', :only_path => false + + if oidreq.send_redirect?(realm, return_to, params[:immediate]) + redirect_to oidreq.redirect_url(realm, return_to, params[:immediate]) + else + @form_text = oidreq.form_markup(realm, return_to, params[:immediate], {'id' => 'openid_form'}) + end + end + + def complete + # FIXME - url_for some action is not necessarily the current URL. + current_url = url_for(:action => 'complete', :only_path => false) + parameters = params.reject{|k,v|request.path_parameters[k]} + oidresp = consumer.complete(parameters, current_url) + case oidresp.status + when OpenID::Consumer::FAILURE + if oidresp.display_identifier + flash[:error] = ("Verification of #{oidresp.display_identifier}"\ + " failed: #{oidresp.message}") + else + flash[:error] = "Verification failed: #{oidresp.message}" + end + when OpenID::Consumer::SUCCESS + flash[:success] = ("Verification of #{oidresp.display_identifier}"\ + " succeeded.") + when OpenID::Consumer::SETUP_NEEDED + flash[:alert] = "Immediate request failed - Setup Needed" + when OpenID::Consumer::CANCEL + flash[:alert] = "OpenID transaction cancelled." + else + end + redirect_to :action => 'index' + end + + private + + def consumer + if @consumer.nil? + dir = Pathname.new(RAILS_ROOT).join('db').join('cstore') + store = OpenID::Store::Filesystem.new(dir) + @consumer = OpenID::Consumer.new(session, store) + end + return @consumer + end +end |