Class: CS50

Inherits:

Object

• Object
• CS50

Defined in:

lib/cs50.rb

Overview

User authentication using CS50 ID.

Licensed under the / Creative Commons Attribution-ShareAlike 3.0 Unported License

See Also:

• https://manual.cs50.net/CS50_Library

Author:

• Tommy MacWilliam

Version:

• 0.1

Class Method Summary

• .getLoginUrl(directory, trust_root, return_to, session, fields = ["email", "fullname"], attributes = []) ⇒ String

  Get URL to which user can be redirected to authenticate using CS50 ID.

• .getUser(directory, return_to, session, params) ⇒ Hash

  If user has been authenticated by CS50 ID, get the user’s information.

Class Method Details

.getLoginUrl(directory, trust_root, return_to, session, fields = ["email", "fullname"], attributes = []) ⇒ String

Get URL to which user can be redirected to authenticate using CS50 ID.

Parameters:

• directory (String) —

  Path to directory used to store state (i.e., Rails.root.join("tmp") for Ruby on Rails)

• trust_root (String) —

  URL that CS50 ID should prompt user to trust

• return_to (String) —

  URL to which CS50 should return user after login

• session —

  Session variable (i.e. session for Ruby on Rails)

• fields (Array) (defaults to: ["email", "fullname"]) —

  Simple registration fields

• attributes (Array) (defaults to: []) —

  Attribute exchange fields

Returns:

• (String) —

  URL for CS50 ID authentication

# File 'lib/cs50.rb', line 27

def self.getLoginUrl(directory, trust_root, return_to, session, fields = ["email", "fullname"], attributes = [])
    # prepare request
    store = OpenID::Store::Filesystem.new(Pathname.new(directory))
    consumer = OpenID::Consumer.new(session, store)
    auth_request = consumer.begin("https://id.cs50.net/")

    # simple registration fields
    if (fields.kind_of?(Array) && fields.length > 0)
        auth_request.add_extension(OpenID::SReg::Request.new(nil, fields))
    end

    # attribute exchange fields
    if (attributes.kind_of?(Array) && attributes.length > 0)
        ax_request = OpenID::AX::FetchRequest.new
        attributes.each do |attribute|
            ax_request.add(OpenID::AX::AttrInfo.new(attribute, 1, false))
        end
        auth_request.add_extension(ax_request)
    end

    # generate url for redirection
    return auth_request.redirect_url(trust_root, return_to)
end

.getUser(directory, return_to, session, params) ⇒ Hash

Note:

A unique ID for the user will be returned, and the user’s email and name may be returned.

If user has been authenticated by CS50 ID, get the user’s information.

Parameters:

• directory (String) —

  Path to directory used to store state (i.e., Rails.root.join("tmp") for Ruby on Rails)

• return_to (String) —

  URL to which CS50 should return user after login

• session —

  Session variable (i.e., session for Ruby on Rails)

• params —

  Parameters array (i.e., params for Ruby on Rails)

Returns:

• (Hash) —

  User’s :id, :email and :name

# File 'lib/cs50.rb', line 60

def self.getUser(directory, return_to, session, params)
    # clean rails parameters from the URL (else Janrain fails)
    parameters = params.clone
    parameters.delete(:controller)
    parameters.delete(:action)

    # get response
    store = OpenID::Store::Filesystem.new(Pathname.new(directory))
    consumer = OpenID::Consumer.new(session, store)
    response = consumer.complete(parameters, return_to)

    if (response.status == OpenID::Consumer::SUCCESS)
        user = { "identity" => response.identity_url }

        # simple registration fields
        sreg_resp = OpenID::SReg::Response.from_success_response(response)
        if (sreg_resp)
            user.merge!(sreg_resp.data)
        end
        
        # get attribute exchange attributes
        ax_resp = OpenID::AX::FetchResponse.from_success_response(response)
        if (ax_resp)
            user.merge!(ax_resp.data)
        end

        return user
        
    # response failure
    else
        return false
    end
end