FEATURE: single sign on support

Added support for outsourcing auth to a different website, documentation on meta
2025-05-23 23:31:18 +08:00 · 2014-02-25 14:30:49 +11:00
parent 46d1c8c1e0
commit 6f31d3f0e5
13 changed files with 357 additions and 2 deletions
--- a/spec/models/discourse_single_sign_on_spec.rb
+++ b/spec/models/discourse_single_sign_on_spec.rb
@ -0,0 +1,55 @@
+require "spec_helper"
+
+describe DiscourseSingleSignOn do
+  before do
+    @sso_url = "http://somesite.com/discourse_sso"
+    @sso_secret = "shjkfdhsfkjh"
+
+    SiteSetting.stubs("enable_sso").returns(true)
+    SiteSetting.stubs("sso_url").returns(@sso_url)
+    SiteSetting.stubs("sso_secret").returns(@sso_secret)
+  end
+
+  it "can fill in data on way back" do
+    sso = SingleSignOn.new
+    sso.sso_url = "http://meta.discorse.org/topics/111"
+    sso.sso_secret = "supersecret"
+    sso.nonce = "testing"
+    sso.email = "some@email.com"
+    sso.username = "sam"
+    sso.name = "sam saffron"
+    sso.external_id = "100"
+
+    url, payload = sso.to_url.split("?")
+    url.should == sso.sso_url
+    parsed = SingleSignOn.parse(payload, "supersecret")
+
+    parsed.nonce.should == sso.nonce
+    parsed.email.should == sso.email
+    parsed.username.should == sso.username
+    parsed.name.should == sso.name
+    parsed.external_id.should == sso.external_id
+
+  end
+
+  it "validates nonce" do
+    _ , payload = DiscourseSingleSignOn.generate_url.split("?")
+
+    sso = DiscourseSingleSignOn.parse(payload)
+    sso.nonce_valid?.should == true
+
+    sso.expire_nonce!
+
+    sso.nonce_valid?.should == false
+
+  end
+
+  it "generates a correct sso url" do
+
+    url, payload = DiscourseSingleSignOn.generate_url.split("?")
+    url.should == @sso_url
+
+    sso = DiscourseSingleSignOn.parse(payload)
+    sso.nonce.should_not be_nil
+  end
+end