43 lines
925 B
Ruby
43 lines
925 B
Ruby
class RequestToken < OauthToken
|
|
|
|
attr_accessor :provided_oauth_verifier
|
|
|
|
def self.find_by_token(token)
|
|
first(:token => token)
|
|
end
|
|
|
|
def authorize!(user)
|
|
return false if authorized?
|
|
self.user_id = user.id
|
|
self.authorized_at = Time.now
|
|
self.verifier=OAuth::Helper.generate_key(20)[0,20] unless oauth10?
|
|
save_changes
|
|
end
|
|
|
|
def exchange!
|
|
return false unless authorized?
|
|
return false unless oauth10? || verifier==provided_oauth_verifier
|
|
RequestToken.db.transaction do
|
|
access_token = AccessToken.create(:user => user, :client_application => client_application)
|
|
invalidate!
|
|
access_token
|
|
end
|
|
end
|
|
|
|
def to_query
|
|
if oauth10?
|
|
super
|
|
else
|
|
"#{super}&oauth_callback_confirmed=true"
|
|
end
|
|
end
|
|
|
|
def oob?
|
|
self.callback_url=='oob'
|
|
end
|
|
|
|
def oauth10?
|
|
(defined? OAUTH_10_SUPPORT) && OAUTH_10_SUPPORT && self.callback_url.blank?
|
|
end
|
|
|
|
end |