Module: Sinatra::BrowserID

Defined in:: lib/sinatra/browserid.rb

Defined Under Namespace

Class Method Summary collapse

.registered(app) ⇒ Object

module Helpers.

Class Method Details

.registered(app) ⇒ `Object`

module Helpers

# File 'lib/sinatra/browserid.rb', line 65

def self.registered(app)
  app.helpers BrowserID::Helpers

  app.set :browserid_url, "https://browserid.org"
  app.set :browserid_login_button, :red
  app.set :browserid_login_url, "/_browserid_login"

  app.get '/_browserid_login' do
    # TODO(petef): render a page that initiates login without
    # waiting for a user click.
    render_login_button
  end

  app.post '/_browserid_assert' do
    # TODO(petef): do verification locally, without a callback
    audience = request.host_with_port
    bid_uri = URI.parse(settings.browserid_url)
    http = Net::HTTP.new(bid_uri.host, bid_uri.port)
    http.use_ssl = true
    data = {
      "assertion" => params[:assertion],
      "audience" => audience,
    }
    data_str = data.collect { |k, v| "#{k}=#{v}" }.join("&")
    res, body = http.post("/verify", data_str)

    # TODO: check res is a 200
    verify = JSON.parse(body) || nil
    if verify.nil?
      # JSON parsing error
      return
    end

    if verify["status"] != "okay"
      $stderr.puts "status was not OK. #{verify.inspect}"
      return
    end

    session[:browserid_email] = verify["email"]
    session[:browserid_expires] = verify["expires"].to_f / 1000

    redirect params[:redirect] || "/"
  end
end

Module: Sinatra::BrowserID

Defined Under Namespace

Class Method Summary collapse

Class Method Details

.registered(app) ⇒ Object

.registered(app) ⇒ `Object`