Class: Koala::Facebook::OAuth

Inherits:

Object

• Object
• Koala::Facebook::OAuth

Defined in:

lib/koala.rb

Instance Attribute Summary

• #app_id ⇒ Object readonly

  Returns the value of attribute app_id.

• #app_secret ⇒ Object readonly

  Returns the value of attribute app_secret.

• #oauth_callback_url ⇒ Object readonly

  Returns the value of attribute oauth_callback_url.

Instance Method Summary

• #get_access_token(code) ⇒ Object
• #get_access_token_info(code) ⇒ Object
• #get_app_access_token ⇒ Object
• #get_app_access_token_info ⇒ Object
• #get_token_from_session_key(session) ⇒ Object
• #get_token_info_from_session_keys(sessions) ⇒ Object

  from session keys.

• #get_tokens_from_session_keys(sessions) ⇒ Object
• #get_user_from_cookie(cookies) ⇒ Object (also: #get_user_from_cookies)
• #get_user_info_from_cookie(cookie_hash) ⇒ Object (also: #get_user_info_from_cookies)
• #initialize(app_id, app_secret, oauth_callback_url = nil) ⇒ OAuth constructor

  A new instance of OAuth.

• #url_for_access_token(code, options = {}) ⇒ Object
• #url_for_oauth_code(options = {}) ⇒ Object

  URLs.

Constructor Details

#initialize(app_id, app_secret, oauth_callback_url = nil) ⇒ OAuth

Returns a new instance of OAuth.

# File 'lib/koala.rb', line 105

def initialize(app_id, app_secret, oauth_callback_url = nil)
  @app_id = app_id
  @app_secret = app_secret
  @oauth_callback_url = oauth_callback_url 
end

Instance Attribute Details

#app_id ⇒ Object (readonly)

Returns the value of attribute app_id.

# File 'lib/koala.rb', line 104

def app_id
  @app_id
end

#app_secret ⇒ Object (readonly)

Returns the value of attribute app_secret.

# File 'lib/koala.rb', line 104

def app_secret
  @app_secret
end

#oauth_callback_url ⇒ Object (readonly)

Returns the value of attribute oauth_callback_url.

# File 'lib/koala.rb', line 104

def oauth_callback_url
  @oauth_callback_url
end

Instance Method Details

#get_access_token(code) ⇒ Object

# File 'lib/koala.rb', line 182

def get_access_token(code)
  info = get_access_token_info(code)
  # upstream methods will throw errors if needed
  string = info["access_token"]

  overload_as_hash(string, info)          
end

#get_access_token_info(code) ⇒ Object

# File 'lib/koala.rb', line 176

def get_access_token_info(code)
  # convenience method to get a parsed token from Facebook for a given code
  # should this require an OAuth callback URL?
  get_token_from_server(:code => code, :redirect_uri => @oauth_callback_url)
end

#get_app_access_token ⇒ Object

# File 'lib/koala.rb', line 195

def get_app_access_token
  info = get_app_access_token_info
  string = info["access_token"]

  overload_as_hash(string, info)
end

#get_app_access_token_info ⇒ Object

# File 'lib/koala.rb', line 190

def get_app_access_token_info
  # convenience method to get a the application's sessionless access token 
  get_token_from_server({:type => 'client_cred'}, true)
end

#get_token_from_session_key(session) ⇒ Object

# File 'lib/koala.rb', line 231

def get_token_from_session_key(session)
  # convenience method for a single key
  # gets the overlaoded strings automatically
  get_tokens_from_session_keys([session])[0]
end

#get_token_info_from_session_keys(sessions) ⇒ Object

from session keys

# File 'lib/koala.rb', line 203

def get_token_info_from_session_keys(sessions)
  # fetch the OAuth tokens from Facebook
  response = fetch_token_string({
    :type => 'client_cred',
    :sessions => sessions.join(",")
  }, true, "exchange_sessions")
  
  # get_token_from_session_key should return an empty body if an empty string or nil is provided
  # if invalid tokens are provided, it returns an array of nulls, which is a valid result
  if response == ""
    raise APIError.new("ArgumentError", "get_token_from_session_key received an error (empty response body) for sessions #{sessions.inspect}!")
  end
  
  JSON.parse(response)
end

#get_tokens_from_session_keys(sessions) ⇒ Object

# File 'lib/koala.rb', line 219

def get_tokens_from_session_keys(sessions)
  # get the original hash results
  results = get_token_info_from_session_keys(sessions)
  # now recollect them as backward-compatible strings
  # for easier use
  results.collect do |r|
    string = r["access_token"]

    overload_as_hash string, r
  end
end

#get_user_from_cookie(cookies) ⇒ Object Also known as: get_user_from_cookies

# File 'lib/koala.rb', line 141

def get_user_from_cookie(cookies)
  # overload this to be backward compatible with older implementations
  # icky ruby magic, but it's _really_ cool we can do this
  info = get_user_info_from_cookies(cookies)
  string = info["uid"]

  overload_as_hash(string, info)
end

#get_user_info_from_cookie(cookie_hash) ⇒ Object Also known as: get_user_info_from_cookies

# File 'lib/koala.rb', line 111

def get_user_info_from_cookie(cookie_hash)
  # Parses the cookie set by the official Facebook JavaScript SDK.
  # 
  # cookies should be a Hash, like the one Rails provides
  # 
  # If the user is logged in via Facebook, we return a dictionary with the
  # keys "uid" and "access_token". The former is the user's Facebook ID,
  # and the latter can be used to make authenticated requests to the Graph API.
  # If the user is not logged in, we return None.
  # 
  # Download the official Facebook JavaScript SDK at
  # http://github.com/facebook/connect-js/. Read more about Facebook
  # authentication at http://developers.facebook.com/docs/authentication/.

  if fb_cookie = cookie_hash["fbs_" + @app_id.to_s]
    # remove the opening/closing quote
    fb_cookie = fb_cookie.gsub(/\"/, "")

    # since we no longer get individual cookies, we have to separate out the components ourselves
    components = {}
    fb_cookie.split("&").map {|param| param = param.split("="); components[param[0]] = param[1]}

    # generate the signature and make sure it matches what we expect
    auth_string = components.keys.sort.collect {|a| a == "sig" ? nil : "#{a}=#{components[a]}"}.reject {|a| a.nil?}.join("")
    sig = Digest::MD5.hexdigest(auth_string + @app_secret)          
    sig == components["sig"] && (components["expires"] == "0" || Time.now.to_i < components["expires"].to_i) ? components : nil
  end
end

#url_for_access_token(code, options = {}) ⇒ Object

Raises:

• (ArgumentError)

# File 'lib/koala.rb', line 165

def url_for_access_token(code, options = {})
  # Creates the URL for the token corresponding to a given code generated by Facebook
  if options.is_a?(String) # changing the arguments
    puts "Deprecation warning: url_for_access_token now takes an options hash as the second argument; pass the callback as :callback."
    options = {:callback => options}
  end
  callback = options[:callback] || @oauth_callback_url
  raise ArgumentError, "url_for_access_token must get a callback either from the OAuth object or in the parameters!" unless callback
  "https://#{GRAPH_SERVER}/oauth/access_token?client_id=#{@app_id}&redirect_uri=#{callback}&client_secret=#{@app_secret}&code=#{code}"
end

#url_for_oauth_code(options = {}) ⇒ Object

URLs

Raises:

• (ArgumentError)

# File 'lib/koala.rb', line 153

def url_for_oauth_code(options = {})
  # for permissions, see http://developers.facebook.com/docs/authentication/permissions
  permissions = options[:permissions]
  scope = permissions ? "&scope=#{permissions.is_a?(Array) ? permissions.join(",") : permissions}" : ""

  callback = options[:callback] || @oauth_callback_url
  raise ArgumentError, "url_for_oauth_code must get a callback either from the OAuth object or in the options!" unless callback

  # Creates the URL for oauth authorization for a given callback and optional set of permissions
  "https://#{GRAPH_SERVER}/oauth/authorize?client_id=#{@app_id}&redirect_uri=#{callback}#{scope}"    
end