pandastic
diff --git a/‎.gitignore
+4 b/‎.gitignore
+4
diff --git a/‎.rspec
+1 b/‎.rspec
+1
diff --git a/‎Gemfile
+35 b/‎Gemfile
+35
diff --git a/‎Gemfile.lock
+156 b/‎Gemfile.lock
+156
diff --git a/‎README.md
+1 b/‎README.md
+1
diff --git a/‎Rakefile
+7 b/‎Rakefile
+7
diff --git a/‎app/controllers/application_controller.rb
+22 b/‎app/controllers/application_controller.rb
+22
diff --git a/‎app/controllers/services_controller.rb
+150 b/‎app/controllers/services_controller.rb
+150
diff --git a/‎app/controllers/sessions_controller.rb
+7 b/‎app/controllers/sessions_controller.rb
+7
@@ -0,0 +1,4 @@
+.bundle
+db/*.sqlite3
+log/*.log
+tmp/
@@ -0,0 +1 @@
+--colour
@@ -0,0 +1,35 @@
+source 'http://rubygems.org'
+
+gem 'rails', '3.0.9'
+
+# Bundle edge Rails instead:
+# gem 'rails', :git => 'git://github.com/rails/rails.git'
+
+gem 'mysql2', '< 0.3'
+
+# Use unicorn as the web server
+# gem 'unicorn'
+
+# Deploy with Capistrano
+# gem 'capistrano'
+
+# To use debugger (ruby-debug for Ruby 1.8.7+, ruby-debug19 for Ruby 1.9.2+)
+# gem 'ruby-debug'
+# gem 'ruby-debug19', :require => 'ruby-debug'
+
+# Bundle the extra gems:
+# gem 'bj'
+# gem 'nokogiri'
+# gem 'sqlite3-ruby', :require => 'sqlite3'
+# gem 'aws-s3', :require => 'aws/s3'
+
+# Bundle gems for the local environment. Make sure to
+# put test-only gems in this group so their generators
+# and rake tasks are available in development mode:
+# group :development, :test do
+#   gem 'webrat'
+# end
+gem "haml", ">= 3.0.0"
+gem "haml-rails"
+gem "omniauth", "0.2.0"
+gem "rspec-rails", ">= 2.0.1", :group => [:development, :test]
@@ -0,0 +1,156 @@
+GEM
+  remote: http://rubygems.org/
+  specs:
+    abstract (1.0.0)
+    actionmailer (3.0.9)
+      actionpack (= 3.0.9)
+      mail (~> 2.2.19)
+    actionpack (3.0.9)
+      activemodel (= 3.0.9)
+      activesupport (= 3.0.9)
+      builder (~> 2.1.2)
+      erubis (~> 2.6.6)
+      i18n (~> 0.5.0)
+      rack (~> 1.2.1)
+      rack-mount (~> 0.6.14)
+      rack-test (~> 0.5.7)
+      tzinfo (~> 0.3.23)
+    activemodel (3.0.9)
+      activesupport (= 3.0.9)
+      builder (~> 2.1.2)
+      i18n (~> 0.5.0)
+    activerecord (3.0.9)
+      activemodel (= 3.0.9)
+      activesupport (= 3.0.9)
+      arel (~> 2.0.10)
+      tzinfo (~> 0.3.23)
+    activeresource (3.0.9)
+      activemodel (= 3.0.9)
+      activesupport (= 3.0.9)
+    activesupport (3.0.9)
+    addressable (2.2.4)
+    arel (2.0.10)
+    builder (2.1.2)
+    diff-lcs (1.1.2)
+    erubis (2.6.6)
+      abstract (>= 1.0.0)
+    faraday (0.5.7)
+      addressable (~> 2.2.4)
+      multipart-post (~> 1.1.0)
+      rack (>= 1.1.0, < 2)
+    haml (3.1.2)
+    haml-rails (0.3.4)
+      actionpack (~> 3.0)
+      activesupport (~> 3.0)
+      haml (~> 3.0)
+      railties (~> 3.0)
+    i18n (0.5.0)
+    mail (2.2.19)
+      activesupport (>= 2.3.6)
+      i18n (>= 0.4.0)
+      mime-types (~> 1.16)
+      treetop (~> 1.4.8)
+    mime-types (1.16)
+    multi_json (0.0.5)
+    multipart-post (1.1.2)
+    mysql2 (0.2.11)
+    net-ldap (0.1.1)
+    nokogiri (1.4.7)
+    oa-basic (0.2.0)
+      multi_json (~> 0.0.2)
+      nokogiri (~> 1.4.2)
+      oa-core (= 0.2.0)
+      rest-client (~> 1.6.0)
+    oa-core (0.2.0)
+      rack (~> 1.1)
+    oa-enterprise (0.2.0)
+      net-ldap (~> 0.1.1)
+      nokogiri (~> 1.4.2)
+      oa-core (= 0.2.0)
+      pyu-ruby-sasl (~> 0.0.3.1)
+      rubyntlm (~> 0.1.1)
+    oa-more (0.2.0)
+      multi_json (~> 0.0.2)
+      oa-core (= 0.2.0)
+      rest-client (~> 1.6.0)
+    oa-oauth (0.2.0)
+      multi_json (~> 0.0.2)
+      nokogiri (~> 1.4.2)
+      oa-core (= 0.2.0)
+      oauth (~> 0.4.0)
+      oauth2 (~> 0.1.1)
+    oa-openid (0.2.0)
+      oa-core (= 0.2.0)
+      rack-openid (~> 1.2.0)
+      ruby-openid-apps-discovery
+    oauth (0.4.5)
+    oauth2 (0.1.1)
+      faraday (~> 0.5.0)
+      multi_json (~> 0.0.4)
+    omniauth (0.2.0)
+      oa-basic (= 0.2.0)
+      oa-core (= 0.2.0)
+      oa-enterprise (= 0.2.0)
+      oa-more (= 0.2.0)
+      oa-oauth (= 0.2.0)
+      oa-openid (= 0.2.0)
+    polyglot (0.3.1)
+    pyu-ruby-sasl (0.0.3.3)
+    rack (1.2.3)
+    rack-mount (0.6.14)
+      rack (>= 1.0.0)
+    rack-openid (1.2.0)
+      rack (>= 1.1.0)
+      ruby-openid (>= 2.1.8)
+    rack-test (0.5.7)
+      rack (>= 1.0)
+    rails (3.0.9)
+      actionmailer (= 3.0.9)
+      actionpack (= 3.0.9)
+      activerecord (= 3.0.9)
+      activeresource (= 3.0.9)
+      activesupport (= 3.0.9)
+      bundler (~> 1.0)
+      railties (= 3.0.9)
+    railties (3.0.9)
+      actionpack (= 3.0.9)
+      activesupport (= 3.0.9)
+      rake (>= 0.8.7)
+      rdoc (~> 3.4)
+      thor (~> 0.14.4)
+    rake (0.9.2)
+    rdoc (3.8)
+    rest-client (1.6.3)
+      mime-types (>= 1.16)
+    rspec (2.6.0)
+      rspec-core (~> 2.6.0)
+      rspec-expectations (~> 2.6.0)
+      rspec-mocks (~> 2.6.0)
+    rspec-core (2.6.4)
+    rspec-expectations (2.6.0)
+      diff-lcs (~> 1.1.2)
+    rspec-mocks (2.6.0)
+    rspec-rails (2.6.1)
+      actionpack (~> 3.0)
+      activesupport (~> 3.0)
+      railties (~> 3.0)
+      rspec (~> 2.6.0)
+    ruby-openid (2.1.8)
+    ruby-openid-apps-discovery (1.2.0)
+      ruby-openid (>= 2.1.7)
+    rubyntlm (0.1.1)
+    thor (0.14.6)
+    treetop (1.4.9)
+      polyglot (>= 0.3.1)
+    tzinfo (0.3.29)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  haml (>= 3.0.0)
+  haml-rails
+  mysql2 (< 0.3)
+  omniauth (= 0.2.0)
+  rails (= 3.0.9)
+  rspec-rails (>= 2.0.1)
@@ -0,0 +1 @@
+== Buffset
@@ -0,0 +1,7 @@
+# Add your own tasks in files placed in lib/tasks ending in .rake,
+# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
+
+require File.expand_path('../config/application', __FILE__)
+require 'rake'
+
+Buffset::Application.load_tasks
@@ -0,0 +1,22 @@
+class ApplicationController < ActionController::Base
+  protect_from_forgery
+
+  helper_method :current_user
+  helper_method :user_signed_in?
+
+  private
+    def current_user
+      @current_user ||= User.find_by_id(session[:user_id]) if session[:user_id]
+    end
+
+    def user_signed_in?
+      return 1 if current_user
+    end
+
+    def authenticate_user!
+      if !current_user
+        flash[:error] = 'You need to sign in before accessing this page!'
+        redirect_to signin_services_path
+      end
+    end
+end
@@ -0,0 +1,150 @@
+class ServicesController < ApplicationController
+  before_filter :authenticate_user!, :except => [:create, :signin, :signup, :newaccount, :failure]
+  protect_from_forgery :except => :create
+
+  # GET all authentication services assigned to the current user
+  def index
+    @services = current_user.services.order('provider asc')
+  end
+
+  def signin
+    redirect_to users_path if current_user.present?
+  end
+
+  # POST to remove an authentication service
+  def destroy
+    # remove an authentication service linked to the current user
+    @service = current_user.services.find(params[:id])
+
+    if session[:service_id] == @service.id
+      flash[:error] = 'You are currently signed in with this account!'
+    else
+      @service.destroy
+    end
+
+    redirect_to services_path
+  end
+
+  # POST from signup view
+  def newaccount
+    if params[:commit] == "Cancel"
+      session[:authhash] = nil
+      session.delete :authhash
+      redirect_to root_url
+    else  # create account
+      @newuser = User.new
+      @newuser.name = session[:authhash][:name]
+      @newuser.email = session[:authhash][:email]
+      @newuser.services.build(:provider => session[:authhash][:provider], :uid => session[:authhash][:uid], :uname => session[:authhash][:name], :uemail => session[:authhash][:email])
+
+      if @newuser.save!
+        # signin existing user
+        # in the session his user id and the service id used for signing in is stored
+        session[:user_id] = @newuser.id
+        session[:service_id] = @newuser.services.first.id
+
+        flash[:notice] = 'Your account has been created and you have been signed in!'
+        redirect_to root_url
+      else
+        flash[:error] = 'This is embarrassing! There was an error while creating your account from which we were not able to recover.'
+        redirect_to root_url
+      end
+    end
+  end
+
+  # Sign out current user
+  def signout
+    if current_user
+      session[:user_id] = nil
+      session[:service_id] = nil
+      session.delete :user_id
+      session.delete :service_id
+      flash[:notice] = 'You have been signed out!'
+    end
+    redirect_to root_url
+  end
+
+  # callback: success
+  # This handles signing in and adding an authentication service to existing accounts itself
+  # It renders a separate view if there is a new user to create
+  def create
+    # get the service parameter from the Rails router
+    params[:service] ? service_route = params[:service] : service_route = 'No service recognized (invalid callback)'
+
+    # get the full hash from omniauth
+    omniauth = request.env['omniauth.auth']
+
+    # continue only if hash and parameter exist
+    if omniauth and params[:service]
+
+      # map the returned hashes to our variables first - the hashes differs for every service
+
+      # create a new hash
+      @authhash = Hash.new
+
+      if service_route == 'facebook'
+        omniauth['extra']['user_hash']['email'] ? @authhash[:email] =  omniauth['extra']['user_hash']['email'] : @authhash[:email] = ''
+        omniauth['extra']['user_hash']['name'] ? @authhash[:name] =  omniauth['extra']['user_hash']['name'] : @authhash[:name] = ''
+        omniauth['extra']['user_hash']['id'] ?  @authhash[:uid] =  omniauth['extra']['user_hash']['id'].to_s : @authhash[:uid] = ''
+        omniauth['provider'] ? @authhash[:provider] = omniauth['provider'] : @authhash[:provider] = ''
+      elsif service_route == 'github'
+        omniauth['user_info']['email'] ? @authhash[:email] =  omniauth['user_info']['email'] : @authhash[:email] = ''
+        omniauth['user_info']['name'] ? @authhash[:name] =  omniauth['user_info']['name'] : @authhash[:name] = ''
+        omniauth['extra']['user_hash']['id'] ? @authhash[:uid] =  omniauth['extra']['user_hash']['id'].to_s : @authhash[:uid] = ''
+        omniauth['provider'] ? @authhash[:provider] =  omniauth['provider'] : @authhash[:provider] = ''
+      elsif ['google', 'yahoo', 'twitter', 'myopenid', 'open_id'].index(service_route) != nil
+        omniauth['user_info']['email'] ? @authhash[:email] =  omniauth['user_info']['email'] : @authhash[:email] = ''
+        omniauth['user_info']['name'] ? @authhash[:name] =  omniauth['user_info']['name'] : @authhash[:name] = ''
+        omniauth['uid'] ? @authhash[:uid] = omniauth['uid'].to_s : @authhash[:uid] = ''
+        omniauth['provider'] ? @authhash[:provider] = omniauth['provider'] : @authhash[:provider] = ''
+      else
+        # debug to output the hash that has been returned when adding new services
+        render :text => omniauth.to_yaml
+        return
+      end
+
+      if @authhash[:uid] != '' and @authhash[:provider] != ''
+
+        auth = Service.find_by_provider_and_uid(@authhash[:provider], @authhash[:uid])
+
+        # if the user is currently signed in, he/she might want to add another account to signin
+        if user_signed_in?
+          if auth
+            flash[:notice] = 'Your account at ' + @authhash[:provider].capitalize + ' is already connected with this site.'
+            redirect_to services_path
+          else
+            current_user.services.create!(:provider => @authhash[:provider], :uid => @authhash[:uid], :uname => @authhash[:name], :uemail => @authhash[:email])
+            flash[:notice] = 'Your ' + @authhash[:provider].capitalize + ' account has been added for signing in at this site.'
+            redirect_to services_path
+          end
+        else
+          if auth
+            # signin existing user
+            # in the session his user id and the service id used for signing in is stored
+            session[:user_id] = auth.user.id
+            session[:service_id] = auth.id
+
+            flash[:notice] = 'Signed in successfully via ' + @authhash[:provider].capitalize + '.'
+            redirect_to root_url
+          else
+            # this is a new user; show signup; @authhash is available to the view and stored in the sesssion for creation of a new user
+            session[:authhash] = @authhash
+            render signup_services_path
+          end
+        end
+      else
+        flash[:error] =  'Error while authenticating via ' + service_route + '/' + @authhash[:provider].capitalize + '. The service returned invalid data for the user id.'
+        redirect_to signin_path
+      end
+    else
+      flash[:error] = 'Error while authenticating via ' + service_route.capitalize + '. The service did not return valid data.'
+      redirect_to signin_path
+    end
+  end
+
+  # callback: failure
+  def failure
+    flash[:error] = 'There was an error at the remote authentication service. You have not been signed in.'
+    redirect_to root_url
+  end
+end
@@ -0,0 +1,7 @@
+class SessionsController < ApplicationController
+  def callback
+    auth # Do what you want with the auth hash!
+  end
+
+  def auth; request.env['omniauth.auth'] end
+end